Reading on the list about the slapper worm I thought I should check what
my servers return when tested with the openssl-sslv2-master script
(http://cert.uni-stuttgart.de/advisories/openssl-sslv2-master.php).
(apache was restarted after upgrade of ssl)
/home/bjarne# ./ssl-test xxx.xxx.xxx.3
> >> No, it checks a large and a small overflow. Jeroen, have you restarted
> >> the httpd? If not, it is still running with the old library.
>
> > I shut the whole apache down (both http and http-ssl).
>
> Oh, in this case, I am really interested in the data Lupe suggested to
> collect. There mig
> >> No, it checks a large and a small overflow. Jeroen, have you restarted
> >> the httpd? If not, it is still running with the old library.
>
> > I shut the whole apache down (both http and http-ssl).
>
> Oh, in this case, I am really interested in the data Lupe suggested to
> collect. There mi
Hi.
Is there any known issue to a http request for a file named "a.out"? I
was just wondering, because I had such a request today from a box which
was in a .mil domain... he/she downloaded the source of slapper there,
watched the index file (which is quite boring so far :)) and then tried
to
On Thu, Sep 19, 2002 at 08:44:18AM +0200, Dietrich Schroff wrote:
> Here my problem:
> If i log in as user in KDE and then use the screensaver, i can not
> unlock my screen. As root this is possible.
> I think the configuration file is /etc/pam.d/kde. It looks like this:
>
> auth required /
Hi.
Is there any known issue to a http request for a file named "a.out"? I
was just wondering, because I had such a request today from a box which
was in a .mil domain... he/she downloaded the source of slapper there,
watched the index file (which is quite boring so far :)) and then tried
to
On Thu, Sep 19, 2002 at 08:44:18AM +0200, Dietrich Schroff wrote:
> Here my problem:
> If i log in as user in KDE and then use the screensaver, i can not
> unlock my screen. As root this is possible.
> I think the configuration file is /etc/pam.d/kde. It looks like this:
>
> auth required
"Jeroen de Leeuw den Bouter" <[EMAIL PROTECTED]> writes:
>> No, it checks a large and a small overflow. Jeroen, have you restarted
>> the httpd? If not, it is still running with the old library.
> I shut the whole apache down (both http and http-ssl).
Oh, in this case, I am really interested in
[...]
> Indeed. A similar case to this is the "Good Samaritan Act" was abolished, or
> at least changed in Australia to the point that if some one was mown down by
> a bus and you pulled them off the road and they still died, you could be
> sued by the family for killing them. It's a load of crud
"Jeroen de Leeuw den Bouter" <[EMAIL PROTECTED]> writes:
>> No, it checks a large and a small overflow. Jeroen, have you restarted
>> the httpd? If not, it is still running with the old library.
> I shut the whole apache down (both http and http-ssl).
Oh, in this case, I am really interested in
[...]
> Indeed. A similar case to this is the "Good Samaritan Act" was abolished, or
> at least changed in Australia to the point that if some one was mown down by
> a bus and you pulled them off the road and they still died, you could be
> sued by the family for killing them. It's a load of cru
Greetings,
I may have missed something on the lists, but I was doing my usual
nightly reading and saw there are some vulnerabilities in kernel 2.4.18 on
security focus, I was wondering if there is or will be patches for these
vulnerabilities?
http://online.securityfocus.com/bid/5539
Greetings,
I may have missed something on the lists, but I was doing my usual
nightly reading and saw there are some vulnerabilities in kernel 2.4.18 on
security focus, I was wondering if there is or will be patches for these
vulnerabilities?
http://online.securityfocus.com/bid/5539
Greetings,
our institute network uses afs and krb5 for home directories and
user authentication.
I got everything working, like logging as user (net) or root (local) in
with wdm or ssh or on console, getting AFS-tokens automatically (for
net-user, not for root).
Here my problem:
If i log in as
someone needs to fix thier anti-spam filter
regards
Thing
Jaroslaw Tabor wrote:
> Your mail has been rejected by anti-spam filter
Geoff Crompton <[EMAIL PROTECTED]> writes:
> (I've been trying to think of a reason that the owner of an infected
> box would not appreciate efforts to sanitize the box).
The big problem is that it's possible your efforts actually damage
important services or data that the virus didn't.
Mach
- Original Message -
From: "thing" <[EMAIL PROTECTED]>
Subject: Re: slapper countermeasures
> Geoff Crompton wrote:
>
> > (I've been trying to think of a reason that the owner of an infected
> > box would not appreciate efforts to sanitize the box).
>
>
> Mind you if you did fix it fo
Geoff Crompton wrote:
> (I've been trying to think of a reason that the owner of an infected
> box would not appreciate efforts to sanitize the box).
simple
gross stupidity
I mean they didnt patch it on the first place...
Mind you if you did fix it for them they would probably never notice
18 matches
Mail list logo
