On Sun, Dec 30, 2007 at 09:49:11PM -0600, Chris wrote: > http://seclists.org/fulldisclosure/2007/Dec/0625.html > > Or is this a rehash of something already known about?
The weak random number generator part, and the possibility of a race in the cli_gentemp() function has been known since almost three years (march 2005). See: http://sentinelchicken.com/data/clamav-audit-results.txt This document also describes a setup in which it is most likely to get a successful race: with a cron-started clamscan. Too bad nothing was done with the suggestions on the random generator, I think that article pretty much gives every suggestion that also went to this mailinglist in the past few days (regarding the random generation, at least). -- Jan-Pieter Cornet <[EMAIL PROTECTED]> !! Disclamer: The addressee of this email is not the intended recipient. !! !! This is only a test of the echelon and data retention systems. Please !! !! archive this message indefinitely to allow verification of the logs. !! _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
