389-ds-base / CVE-2018-10871

According to : "Backing out fix as this breaks FreeIPA" and "It's okay to leave this in 1.3.7" For the fix of disabling storing unhash passwords. Anyone know what they mean? -- Brian May https://linuxpenguins.xyz/brian/

src:wpa overlap in Debian LTS?

Hi folks, [With LTS Front Desk hat on] Yesterday carnil noticed that Holger already reserved a DLA for wpa but Andrej had claimed wpa in data/dla-needed list. Was this overlap resolved? We have enough to do with potential duplicated work, after all. Regards, -- ,''`. : :' : C

Re: twitter-bootstrap / CVE-2018-14040 / CVE-2018-14041 / CVE-2018-14042

Paul Wise writes: > Next time try connecting to port 80/443 on the IP address without > sending any data. That would eliminate a HTTP-layer issue. Did this, at least for port 80. It timed out too. It couldn't establish a TCP connection. > Or temporary overload. If it happens again, the curl out

Re: twitter-bootstrap / CVE-2018-14040 / CVE-2018-14041 / CVE-2018-14042

On Thu, 2018-08-09 at 16:57 +1000, Brian May wrote: > I could still ping the host, so probably not a routing problem. Next time try connecting to port 80/443 on the IP address without sending any data. That would eliminate a HTTP-layer issue. > Looks like I can connect today however, so maybe tr