processing details

2004-10-28 Thread Ariel Betts
R e finance before Election when the r a tes will rise! It is your last chance http://www.dolmara.com/ You are already approv e d with 3.0 point Thank you. Ariel Betts --- cortege adoptive at with australite britten fredericksburg diploid from itspocketful of the a dickson -- To UN

Re: forming a security team for testing

2004-10-28 Thread Alvin Oga
hi joey On Thu, 28 Oct 2004, Joey Hess wrote: > I've added a CVE/list also, with about 80 CVE's per year to add to the > things to check. We've only got 130 more CAN's to check for 2004, plus > the CVE's, and then we can start on 2003. > > Current list of security problems apparently unfixed in

Re: owner for /dev/vcsa*

2004-10-28 Thread Frank Dietrich
Hi Matthias, Matthias Kestenholz <[EMAIL PROTECTED]> wrote: > On Thu, 2004-10-28 at 08:31 +0200, Frank Dietrich wrote: > > can I get into some failures when I change the owner for all > > /dev/vcsa devices to an other user the root, e.g. vcsa? > > > > Background: The /usr/lib/mc/cons.saver needs

Re: forming a security team for testing

2004-10-28 Thread Joey Hess
I wrote: > - Edit the CAN/list file and claim a range of CANs to check. Note that >CANs that have already been checked as part of the DSA checks are so >marked. Commit the file. I've added a CVE/list also, with about 80 CVE's per year to add to the things to check. We've only got 130 more

apologies

2004-10-28 Thread Jamie Baddeley
My very sincere apologies for the recent trouble ticketing noise to the list. The keyboard for the sysadmin responsible has been removed (as well as his fingers), and a fix has been implemented. jamie -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble?

Re: [SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability

2004-10-28 Thread Adam D. Barratt
On Thu, 2004-10-28 at 19:32 +0200, Wolfgang Pfeiffer wrote: > On Thu, 2004-10-28 at 15:58 +0200, Martin Schulze wrote: [...] > > A temporary file problem has been discovered in xlsview from the > > catdoc suite, convertors from Word to TeX and plain text, which could > > lead to local users being a

Re: [SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability

2004-10-28 Thread Michael Stone
On Thu, Oct 28, 2004 at 07:32:59PM +0200, Wolfgang Pfeiffer wrote: On Thu, 2004-10-28 at 15:58 +0200, Martin Schulze wrote: Package: catdoc I tried to find the package you were reporting about, and I could not find it anywhere in the Debian repositories:

[EMAIL PROTECTED]: [fx.net.nz #464] AutoReply: [SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability]

2004-10-28 Thread Michael Dalvald via FX support
Please change your subscription. If you have not realised it, you are sending these ticket replys to thousands of subscribers on the list. - Forwarded message from Network Security Concerns via FX support <[EMAIL PROTECTED]> - From: "Network Security Concerns via FX support" <[EMAIL PROT

[EMAIL PROTECTED]: [fx.net.nz #464] AutoReply: [SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability]

2004-10-28 Thread Michael Dalvald via FX support
Please change your subscription. If you have not realised it, you are sending these ticket replys to thousands of subscribers on the list. - Forwarded message from Network Security Concerns via FX support <[EMAIL PROTECTED]> - From: "Network Security Concerns via FX support" <[EMAIL PROT

Re: [fx.net.nz #464] AutoReply: [SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability

2004-10-28 Thread Jens Francke via FX support
stoip THIS SHIT !!! On 28.10.2004, at 18:35, Network Security Concerns via FX support wrote: > Greetings, > > Please do not reply to this automatically generated email. > > Thank you for your message to fx.net.nz. The ticket number > for this matter is 464. You can automatically > trace th

Re: [SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability

2004-10-28 Thread Wolfgang Pfeiffer
On Thu, 2004-10-28 at 15:58 +0200, Martin Schulze wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > - -- > Debian Security Advisory DSA 575-1 [EMAIL PROTECTED] > http://www.debian.org/security/

Niestety nie mogę odpowiedzieć na tą wiadomość, jestem na urlopie.

2004-10-28 Thread Dariusz Kwasny
Nie będzie mnie w pracy od 2004-10-28 i nie wrócę przed 2004-11-02. Jestem na urlopie do 29-10-04 (piątek). Zastępstwo pełni Krzysztof Petrulewicz: [EMAIL PROTECTED]

[fx.net.nz #464] AutoReply: [SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability

2004-10-28 Thread Network Security Concerns via FX support
Greetings, Please do not reply to this automatically generated email. Thank you for your message to fx.net.nz. The ticket number for this matter is 464. You can automatically trace this matter at crm.fx.net.nz using the ticket number. If you are checking via email, then please include the string:

Re: (no subject)

2004-10-28 Thread Mezig
Mark L. Kahnt wrote: On Mon, 2004-25-10 at 18:24 -0400, [EMAIL PROTECTED] wrote: please write in a language that i can understand Which was posted in html... That's naughty ;)! Reminds me of a German binary newsgroup I used to follow - publicly available clipart, and one of the participa

Re: [fx.net.nz #457] AutoReply: [SECURITY] [DSA 574-1] New cabextract packages fix unintended directory traversal

2004-10-28 Thread Adrian 'Dagurashibanipal' von Bidder via FX support
If you gate debian security announcement into your ticketing system, please don't send auto-acks to debian-security. thanks -- vbi On Thursday 28 October 2004 09.19, you wrote: > Greetings, > > Please do not reply to this automatically generated email. > > Thank you for your message to fx.net.n

Re: forming a security team for testing

2004-10-28 Thread Lorenzo Hernandez Garcia-Hierro
Hi, El mié, 27-10-2004 a las 23:33, Joey Hess escribió: > - Provide timely security updates for testing, with fixes being made >available no more than four days after a DSA is released. > - Work with maintainers to include security fixes from unstable >that do not have DSAs. > - Mainta

Re: PAM tarpit module for repeated SSH login attempts

2004-10-28 Thread Javier Fernández-Sanguino Peña
On Wed, Oct 20, 2004 at 06:04:29PM +0200, Javier Fernández-Sanguino Peña wrote: > > To tarpit remote password/login attempts I think it would be best > if you just tarpited remote attempts for _invalid_ users which I believe > you are currently not accounting for. Notice that even if there are

Re: owner for /dev/vcsa*

2004-10-28 Thread Matthias Kestenholz
On Thu, 2004-10-28 at 08:31 +0200, Frank Dietrich wrote: > Hi there, > > can I get into some failures when I change the owner for all /dev/vcsa > devices to an other user the root, e.g. vcsa? > > Background: The /usr/lib/mc/cons.saver needs read support for this > device. I will change owner for

[fx.net.nz #457] AutoReply: [SECURITY] [DSA 574-1] New cabextract packages fix unintended directory traversal

2004-10-28 Thread Network Security Concerns via FX support
Greetings, Please do not reply to this automatically generated email. Thank you for your message to fx.net.nz. The ticket number for this matter is 457. You can automatically trace this matter at crm.fx.net.nz using the ticket number. If you are checking via email, then please include the string: