On Tue, Jan 20, 2004 at 11:58:41PM -0500, Hubert Chan wrote:
> > "Johannes" == Johannes Graumann <[EMAIL PROTECTED]> writes:
>
> [...]
>
> Johannes> And on another note: in
> Johannes>
> http://www.mirrors.wiretapped.net/security/cryptography/filesystems/loop-aes/loop-AES.README
> Johannes>
> "Hubert" == Hubert Chan <[EMAIL PROTECTED]> writes:
replying to self...
[...]
Hubert> The comment has nothing to do with whether or not your encrypted
Hubert> filesystem is a journaling filesystem with or without
Hubert> data=ordered. ...
Hmmm. Maybe I should learn to read... :-(
So tha
By studying messages on various information
security mailing lists, I've created a visual depiction of INFOSEC community
trends over time. You can view my report at:http://www.sharp-ideas.net/research/infosec_zeitgeist.html
If you'd like to leave me comments, you can post
them to my blog a
> "Johannes" == Johannes Graumann <[EMAIL PROTECTED]> writes:
[...]
Johannes> And on another note: in
Johannes>
http://www.mirrors.wiretapped.net/security/cryptography/filesystems/loop-aes/loop-AES.README
Johannes> I read the following: "Don't use a journaling file system on
Johannes> top of
On Tue, Jan 20, 2004 at 11:58:41PM -0500, Hubert Chan wrote:
> > "Johannes" == Johannes Graumann <[EMAIL PROTECTED]> writes:
>
> [...]
>
> Johannes> And on another note: in
> Johannes>
> http://www.mirrors.wiretapped.net/security/cryptography/filesystems/loop-aes/loop-AES.README
> Johannes>
> "Hubert" == Hubert Chan <[EMAIL PROTECTED]> writes:
replying to self...
[...]
Hubert> The comment has nothing to do with whether or not your encrypted
Hubert> filesystem is a journaling filesystem with or without
Hubert> data=ordered. ...
Hmmm. Maybe I should learn to read... :-(
So tha
> "Johannes" == Johannes Graumann <[EMAIL PROTECTED]> writes:
[...]
Johannes> And on another note: in
Johannes>
http://www.mirrors.wiretapped.net/security/cryptography/filesystems/loop-aes/loop-AES.README
Johannes> I read the following: "Don't use a journaling file system on
Johannes> top of
Le 12438ième jour après Epoch,
[EMAIL PROTECTED] écrivait:
> Hi,
>
>> can you tell me what the following means in an apache error.log and
>
> The log is the out put of wget command.Most probably the command which
> resulted in this entry is "wget
> http://www.geocities.com/fonias28/psybnc.tgz -o
>
On Wed, 21 Jan 2004 11:28, Markus Schabel <[EMAIL PROTECTED]> wrote:
> hello folks!
>
> can you tell me what the following means in an apache error.log and
> where it comes from? I've searched through all other apache log files
> but didn't find something that could generate this.
> (sure, the serv
Hi,
> can you tell me what the following means in an apache error.log and
The log is the out put of wget command.Most probably the command which
resulted in this entry is "wget
http://www.geocities.com/fonias28/psybnc.tgz -o /var/log/apache/error.log"
Rgds,
Girish.
--
On Wed, Jan 21, 2004 at 01:28:32AM +0100, Markus Schabel wrote:
I don't know what the surrounding lines are, but the core of your
posting is a wget(1) logfile/stderr output :-) This isn't the standard
wget in the main distribution; IIRC, it's the busybox' one. Busybox'
small footprint makes it i
Le 12438ième jour après Epoch,
[EMAIL PROTECTED] écrivait:
> Hi,
>
>> can you tell me what the following means in an apache error.log and
>
> The log is the out put of wget command.Most probably the command which
> resulted in this entry is "wget
> http://www.geocities.com/fonias28/psybnc.tgz -o
>
hello folks!
can you tell me what the following means in an apache error.log and
where it comes from? I've searched through all other apache log files
but didn't find something that could generate this.
(sure, the server got hacked and is out-of-order now...)
/var/log/apache/error.log:
[Sun Ja
On Wed, 21 Jan 2004 11:28, Markus Schabel <[EMAIL PROTECTED]> wrote:
> hello folks!
>
> can you tell me what the following means in an apache error.log and
> where it comes from? I've searched through all other apache log files
> but didn't find something that could generate this.
> (sure, the serv
Hi,
> can you tell me what the following means in an apache error.log and
The log is the out put of wget command.Most probably the command which
resulted in this entry is "wget
http://www.geocities.com/fonias28/psybnc.tgz -o /var/log/apache/error.log"
Rgds,
Girish.
--
--
To UNSUBSCRIBE
On Wed, Jan 21, 2004 at 01:28:32AM +0100, Markus Schabel wrote:
I don't know what the surrounding lines are, but the core of your
posting is a wget(1) logfile/stderr output :-) This isn't the standard
wget in the main distribution; IIRC, it's the busybox' one. Busybox'
small footprint makes it i
hello folks!
can you tell me what the following means in an apache error.log and
where it comes from? I've searched through all other apache log files
but didn't find something that could generate this.
(sure, the server got hacked and is out-of-order now...)
/var/log/apache/error.log:
[Sun Jan 18
On Tue, Jan 20, 2004 at 08:47:40AM -0800, Johannes Graumann wrote:
> Now: how do I make sure this is AES-256 and not some other permutation
> of the cypher?
You use the losetup -k (or --keybits) option.
Eg. losetup -e aes -k 256 ...
/Thomas
--
== [EMAIL PROTECTED] | [EMAIL PROTECTED]
== Encrypte
On Tue, Jan 20, 2004 at 08:47:40AM -0800, Johannes Graumann wrote:
> "Don't use a journaling file system on top of file backed loop device,
> unless underlying file system is journaled and guarantees data=ordered
> or data=journal."
AFAIK, This reads as: ``Don't think journalling buys you anything
Hello,
I set out to create an encrypted partition using my new 2.6.1 custom
kernel (compiled from kernel.org sources, loopdevice and cryptoloop
statically compiled in, ciphers present as modules). Following what was
said in several HOWTOs, I said 'modprobe aes' and tried various
permutations of 'l
On Tue, Jan 20, 2004 at 08:47:40AM -0800, Johannes Graumann wrote:
> Now: how do I make sure this is AES-256 and not some other permutation
> of the cypher?
You use the losetup -k (or --keybits) option.
Eg. losetup -e aes -k 256 ...
/Thomas
--
== [EMAIL PROTECTED] | [EMAIL PROTECTED]
== Encrypte
On Tue, Jan 20, 2004 at 08:47:40AM -0800, Johannes Graumann wrote:
> "Don't use a journaling file system on top of file backed loop device,
> unless underlying file system is journaled and guarantees data=ordered
> or data=journal."
AFAIK, This reads as: ``Don't think journalling buys you anything
Hello,
I set out to create an encrypted partition using my new 2.6.1 custom
kernel (compiled from kernel.org sources, loopdevice and cryptoloop
statically compiled in, ciphers present as modules). Following what was
said in several HOWTOs, I said 'modprobe aes' and tried various
permutations of 'l
On Tue, Jan 20, 2004 at 10:00:04AM +0100, Oliver Hitz wrote:
> I think you should be able to avoid such exploits by using PHP's safe
> mode. It allow you, among other things, to specify that only files in
> a particular directory may be executed. This way, even if someone
> succeeds uploading an ex
On Tue, Jan 20, 2004 at 10:00:04AM +0100, Oliver Hitz wrote:
> I think you should be able to avoid such exploits by using PHP's safe
> mode. It allow you, among other things, to specify that only files in
> a particular directory may be executed. This way, even if someone
> succeeds uploading an ex
Camillo Särs wrote:
I will try that out, and will also try to compile against the older
version of gettext. Stay tuned.
...
Installing examples/configure-index to ../build/docs/examples
make[2]: Leaving directory `/usr/local/src/apt-0.6.18/doc'
make[2]: Entering directory `/usr/local/src/apt-0
Chris Morris wrote:
At 10:00 on Tue, 20 Jan 2004, Oliver Hitz wrote:
On 19 Jan 2004, Csan wrote:
The URL is part of a postnuke site and they could start up the telnetd
binary with invoking an URL similar to the above URL! Is this a known
sechole?
I think you should be able to avoid such ex
At 10:00 on Tue, 20 Jan 2004, Oliver Hitz wrote:
> On 19 Jan 2004, Csan wrote:
> > The URL is part of a postnuke site and they could start up the telnetd
> > binary with invoking an URL similar to the above URL! Is this a known
> > sechole?
>
> I think you should be able to avoid such exploits by u
Camillo Särs wrote:
I will try that out, and will also try to compile against the older
version of gettext. Stay tuned.
...
Installing examples/configure-index to ../build/docs/examples
make[2]: Leaving directory `/usr/local/src/apt-0.6.18/doc'
make[2]: Entering directory `/usr/local/src/apt-0.6.
On 19 Jan 2004, Csan wrote:
> The URL is part of a postnuke site and they could start up the telnetd binary
> with invoking an URL similar to the above URL!
> Is this a known sechole?
I think you should be able to avoid such exploits by using PHP's safe
mode. It allow you, among other things, to s
Chris Morris wrote:
At 10:00 on Tue, 20 Jan 2004, Oliver Hitz wrote:
On 19 Jan 2004, Csan wrote:
The URL is part of a postnuke site and they could start up the telnetd
binary with invoking an URL similar to the above URL! Is this a known
sechole?
I think you should be able to avoid such exploits
Matt Zimmerman wrote:
Can you be more specific?
After installing libdb2-dev, which I did not have, the result from attempting
a build is:
[EMAIL PROTECTED]:/usr/local/src/apt-0.6.18$ dpkg-buildpackage -uc -us -B
dpkg-buildpackage: source package is apt
dpkg-buildpackage: source version is 0
At 10:00 on Tue, 20 Jan 2004, Oliver Hitz wrote:
> On 19 Jan 2004, Csan wrote:
> > The URL is part of a postnuke site and they could start up the telnetd
> > binary with invoking an URL similar to the above URL! Is this a known
> > sechole?
>
> I think you should be able to avoid such exploits by u
On 19 Jan 2004, Csan wrote:
> The URL is part of a postnuke site and they could start up the telnetd binary
> with invoking an URL similar to the above URL!
> Is this a known sechole?
I think you should be able to avoid such exploits by using PHP's safe
mode. It allow you, among other things, to s
Matt Zimmerman wrote:
Can you be more specific?
After installing libdb2-dev, which I did not have, the result from attempting
a build is:
[EMAIL PROTECTED]:/usr/local/src/apt-0.6.18$ dpkg-buildpackage -uc -us -B
dpkg-buildpackage: source package is apt
dpkg-buildpackage: source version is 0.6.1
35 matches
Mail list logo
