Bug#325824: ITP: ninja -- Privilege escalation detection system for GNU\Linux
Package: wnpp Severity: wishlist Owner: William Vera <[EMAIL PROTECTED]> * Package name: ninja Version : 0.1.1 Upstream Author : Tom Rune Flo <[EMAIL PROTECTED]> * URL : http://forkbomb.org/ninja/ * License : GPL Description : Privilege escalation detection system for GNU\Linux Ninja is a privilege escalation detection and prevention system for GNU/Linux hosts. While running, it will monitor process activity on the local host, and keep track of all processes running as root. If a process is spawned with UID or GID zero (root), ninja will log necessary informa- tion about this process, and optionally kill the process if it was spawned by an unauthorized user. A "magic" group can be specified, allowing members of this group to run any setuid/setgid root executable. Individual executables can be whitelisted. Ninja uses a fine grained whitelist that lets you whitelist executables on a group and/or user basis. This can be used to allow specific groups or individual users access to setuid/set- gid root programs, such as su(1) and passwd(1). -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.8-2-386 Locale: LANG=es_MX, LC_CTYPE=es_MX (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#325824: (no subject)
Hi Paul Thanks for your commentaries, with respect to that, I textually mention the author: "The sscanf issues should be of no danger, as the data they are parsing is regulated by the kernel / proc fs, and the maximum size of the data is static, and known on forehand. (In other words, the sscanf's in the proc parsing code cannot be overflowed AFAIK). I will, however, fix the sscanf statements so that they don't look like possible errors. As for circumventing the system, that is possible. As with most systems, security related or otherwise, there is allways a possible way of circumventing it. That is the reason for recommending the use of e.g. kernel hardening patches such as grsecurity. Ninja's strenght lies in the fact that the attacker generally shouldn't know that ninja is running on the system. However, I try to make it a tight and secure as I can, and I will try to fix any problems that are brought to my attention." It seems that there are no serious conflicts that could affect the security Regards! -- .''`.William Vera <[EMAIL PROTECTED]> : :' : PGP Key: 1024D/F5CC22A4 `. `'`Fingerprint: 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 `- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#325824: (no subject)
Thanks David! You can see the package in: http://billy.linuxmerida.org/debian/ninja/ Greetings -- .''`. William Vera <[EMAIL PROTECTED]> : :' : PGP Key: 1024D/F5CC22A4 `. `'`Fingerprint: 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 `- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#325824: ninja sponsoring
Ups! I'll do it Thanks -- .''`. William Vera <[EMAIL PROTECTED]> : :' : PGP Key: 1024D/F5CC22A4 `. `'`Fingerprint: 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 `- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#500355: ITA: recoverjpeg -- Recover jpeg pictures from a filesystem image
There are a new upstream version, fixed some lintian erros and added a watch file and a little patch. Can see the package at mentors: http://mentors.debian.net/debian/pool/main/r/recoverjpeg/ Regards! -- William Vera <[EMAIL PROTECTED]> PGP Key: 1024D/F5CC22A4 Fingerprint: 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#516488: RFH: kernel-patch-exec-shield -- protection against stack smashing and other attacks
Hello Marcus I would like to work with this package, please tell me how I can help Regards! -- William Vera PGP Key: 1024D/F5CC22A4 Fingerprint: 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 -- To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#299754: ITP: NanoBlogger -- small weblog engine for the UNIX command line
Package: wnpp Severity: wishlist Owner: William Vera <[EMAIL PROTECTED]> * Package name: NanoBlogger Version : 3.1 Upstream Author : Kevin Wood <[EMAIL PROTECTED]> * URL : http://nanoblogger.sourceforge.net/ * License : (GPL) Description : small weblog engine for the UNIX command line NanoBlogger is a small weblog engine written in Bash for the command line. It uses common UNIX tools such as cat, grep and sed. It's free to use and modify under the GNU General Public License. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.11-[Lab] Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#301585: ITP: png2html -- transforms a PNG image to a web page
Package: wnpp Severity: wishlist Owner: William Vera <[EMAIL PROTECTED]> * Package name: png2html Version : 1.1 Upstream Author : Geoff Holden <[EMAIL PROTECTED]> * URL : http://www.engr.mun.ca/~holden/png2html.html * License : (GPL) Description : transforms a PNG image to a web page The Png2html takes a PNG image and transforms it pixel per pixel to a web page. It makes use of a text file supplied by the user to do the conversion. This program was inspired by http://rio.dhs.org/penguin.html and http://www.embt.com/tom/FreeBSD/textlogo1.html -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.11-[Lab] Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#662731: O: hwinfo - Hardware identification system
Package: wnpp Severity: normal I orphan this package now. This package requires more attention than I can give, in addition to no longer use and would rather focus on my other packages. Maintaining a package requires time and skills. Please only adopt this package if you are *sure* you will have enough time and attention to work on it. If you want to be the new maintainer, please see http://www.debian.org/devel/wnpp/index.html#howto-o for detailed instructions how to adopt a package properly. -- William Vera | bi...@billy.mx Systems Engineer / Consultant IT / Sysadmin PGP Key: 1024D/F5CC22A4 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 -- To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/capqrxnjvbppurdwemw5gozn3w59yh21_mjdevmfkpk46mhm...@mail.gmail.com
Bug#631213: O: arp-scan -- arp scanning and fingerprinting tool
Hi On Tue, Jun 28, 2011 at 8:25 PM, Tim Brown wrote: > On Tuesday 21 June 2011 15:56:10 Rene Mayorga wrote: > To coin a phrase, I am not dead, just sleeping. The current version of arp- > scan in Debian is functionally complete IMO. There are some open bugs however > a lack of any pressing need to upgrade the version in Debian, along with the > loss of contact with my original sponsor lead to the neglect of the package > for too long. If other people are interested in (co-)maintaining it then > great but I'm more than happy to continue. FWIW of the 3 ourstanding bugs 1 > relates to the release of 1.7 (which didn't IMO add any pressing features) and > 1 related to a change to support a shared OUI database (which floundered with > a > lack of interest from all packagers not just myself). The 3rd was only filed > last week and is one that I could fix fairly quickly if I had a sponsor. > I took the package and I have a ITA open[0], I have a package in mentors.d.n waiting to be uploaded and am awaiting the response from the upstream about a error in the new version compilation. I see you've renamed the this bug, are you still interested in maintaining the package? > Tim > -- > Tim Brown > <mailto:t...@nth-dimension.org.uk> > <http://www.nth-dimension.org.uk/> > Cheers! [0] http://bugs.debian.org/631213 -- William Vera PGP Key: 1024D/F5CC22A4 Fingerprint: 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 -- To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/BANLkTikYucW8-ziptRXOwAfrYKpu==y...@mail.gmail.com
Bug#631213: O: arp-scan -- arp scanning and fingerprinting tool
Hello On Wed, Jun 29, 2011 at 9:31 PM, Rene Mayorga wrote: > On Wed, Jun 29, 2011 at 08:15:34PM -0500, William Vera wrote: >> >> On Tue, Jun 28, 2011 at 8:25 PM, Tim Brown wrote: >> >> I took the package and I have a ITA open[0], I have a package in >> mentors.d.n waiting to be uploaded and am awaiting the response from >> the upstream about a error in the new version compilation. >> I see you've renamed the this bug, are you still interested in >> maintaining the package? > > Tim is still willing to be a co-maint, please try to coordinate with him the > new > upload. Tim, I just uploaded the packaged updated to mentors[0] it appears lintian clean. I think arp-scan is ready for upload while the upstream response my email, unless one of the mentors deems otherwise. Feel free to write me directly to my mail for anything. > > Cheers > > -- > René > Cheers [0] http://mentors.debian.net/debian/pool/main/a/arp-scan/arp-scan_1.6-3.dsc -- William Vera PGP Key: 1024D/F5CC22A4 Fingerprint: 3E73 FA1F 5C57 6005 0439 4D75 1FD2 BF96 F5CC 22A4 -- To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/BANLkTinSaHQ824J=yl2uhcxdqsg2eb4...@mail.gmail.com
Bug#590488: ITP: hydra -- fast network logon cracker.
Package: wnpp Severity: wishlist Owner: William Vera * Package name: hydra Version : 5.7 Upstream Author :Van Hauser * URL : http://freeworld.thc.org/thc-hydra/ * License : GPLv3 Programming Lang: C Description : very fast network logon cracker which support many different services. Hydra is now GPLv3 :) -- To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/aanlktimwr_mh1ph1vlwqztubmokys78sne20-7ckt...@mail.gmail.com
