Hi,
> They seem to be real security issues.
>
> The requester's attitude that his work is done since he's submitted the
> report is slightly annoying but I can see his perspective.
Please don't get me wrong here. I'm not requesting any work to be
done for me, however I expect from the debian pr
Hi,
I just noticed this thread ...
> Now, a specific switch passed onto ghostscript needs to be used to fix
> the issue.
>
> From the gs man page:
>
> -dSAFER
> Disables the "deletefile" and "renamefile" operators and
> the ability to open files in any m
On Thu, Jul 29, 2004 at 11:27:55AM +0200, Roman Medina-Heigl Hernandez wrote:
> On Thu, 22 Jul 2004 20:28:23 +0200 (CEST), you wrote:
>
> >About security fixes in the SquirrelMail code; SquirrelMail does not
> >(contrary to Roman's standpoint) adhere to a obscurity-policy but in
> >stead openly d
hanasaki wrote:
Any package in Debian that will automatically run all /etc/init.d
based deamons in jail / chroot?
Whilst it is not automatic, you may wish to investigate the Linux
vserver project;
http://www.linux-vserver.net/
There is a package in Debian for it (util-vserver, and
kernel-patc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have completed an in-house test of a PaX demonstration. The demo
includes the PaX patch; a patch I made to suppliment PaX with boot-time
selection of NX mode; a script `pax-flags` to mark binaries with
chpax/paxctl and execstack (to turn the executab
5 matches
Mail list logo
