Re: chkrootkit sniffers

2006-08-10 Thread Sven Hartge
Um 22:48 Uhr am 10.08.06 schrieb Henri Salo: > I am running Debian stable (kernel 2.6.8-2) chkrootkit version 0.44 with > command chkrootkit and it gives me: > > Checking `sniffer'... lo: PACKET SNIFFER(/sbin/dhclient[29148]) > eth0: PACKET SNIFFER(/sbin/dhclient[29148], /sbin/dhclient[29307]) >

chkrootkit sniffers

2006-08-10 Thread Henri Salo
I am running Debian stable (kernel 2.6.8-2) chkrootkit version 0.44 with command chkrootkit and it gives me: Checking `sniffer'... lo: PACKET SNIFFER(/sbin/dhclient[29148]) eth0: PACKET SNIFFER(/sbin/dhclient[29148], /sbin/dhclient[29307]) eth1: PACKET SNIFFER(/sbin/dhclient[29148]) is that se

Re: [SECURITY] [DSA 1134-1] New Mozilla Thunderbird packages fix several vulnerabilities

2006-08-10 Thread Alexander Sack
On Thu, Aug 10, 2006 at 05:34:01PM +0200, Knut Vietze wrote: > Hello, > > didn't know where to file this issue to, I hope this is the right place: > > DSA 1134-1 introduces unnecessary dependencies on various gnome packages > for the i386 architecture, that prevent an 'apt-get upgrade' from succe

Re: [SECURITY] [DSA 1134-1] New Mozilla Thunderbird packages fix several vulnerabilities

2006-08-10 Thread Knut Vietze
Hello, didn't know where to file this issue to, I hope this is the right place: DSA 1134-1 introduces unnecessary dependencies on various gnome packages for the i386 architecture, that prevent an 'apt-get upgrade' from succeeding on a gnome-free installation. This issue is not present for, e.g.,

Re: "su -" and "su" - what is the real difference?

2006-08-10 Thread Goswin von Brederlow
Florent Rougon <[EMAIL PROTECTED]> writes: > Florent Rougon <[EMAIL PROTECTED]> wrote: > >> Is it possible for a malicious su wrapper to: >> >> 1. record root's password (of course, yes); >> >> 2. *and then* feed this password to the real "su". >> >> I suspect the real "su" empties the stdin b

Re: "su -" and "su" - what is the real difference?

2006-08-10 Thread Florent Rougon
Florent Rougon <[EMAIL PROTECTED]> wrote: > Is it possible for a malicious su wrapper to: > > 1. record root's password (of course, yes); > > 2. *and then* feed this password to the real "su". > > I suspect the real "su" empties the stdin buffer (or something like > that) to avoid such attacks

Updated: Russian and Ukrainian translation/localization services

2006-08-10 Thread Olivia Translations
Dear friends, Olivia Translations provides excellent Russian and Ukrainian translation/localization services with the best rates. If you are interested, welcome to http://www.olivia-translations.org for more information. --- We discovered your address while looking throu

Re: [SECURITY] [DSA 1148-1] New gallery packages fix several vulnerabilities

2006-08-10 Thread Christoph Auer
After getting this DSA I made an upgrade of my sarge server as usally: apt-get update apt-get upgrade In the postinst. process I choose to restart the apache2 server to take effect of the changes, but something went wrong. root 20343 0.0 0.0 00 pts/0Z+ 08:14 0:00 [gallery.p