Re: Script to System Check Integrity against Debian Package Repository

Actually a better option might be to turn the exploited system into a honeypot to try to gain some information about the attackers, their methods and so on. -- bye, pabs http://wiki.debian.org/PaulWise -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "uns

Re: Script to System Check Integrity against Debian Package Repository

On Sun, Sep 22, 2013 at 6:18 PM, Marko Randjelovic wrote: > And say there are no traces how they did it. Then what are your options? Audit possible entry points (webapps etc), general hardening, firewall things off, switch software, switch OS kernel, switch hardware, change passwords, change keys

Re: Upcoming stable point release (7.2)

Adam D. Barratt (2013-09-22): > The next point release for "wheezy" (7.2) is scheduled for Saturday > October 12th. Stable NEW will be frozen during the preceding weekend. So there's a new linux kernel for that one: http://womble.decadent.org.uk/blog/linux-kernel-update-for-wheezy-3251-1.html

Re: Upcoming oldstable point release (6.0.8)

Adam D. Barratt (2013-09-22): > The next point release for "squeeze" (6.0.8) is scheduled for Saturday > October 19th. Oldstable NEW will be frozen during the preceding > weekend. > > As usual, base-files can be uploaded at any point before the freeze. I don't think I have anything d-i-ish for

Upcoming oldstable point release (6.0.8)

Hi, The next point release for "squeeze" (6.0.8) is scheduled for Saturday October 19th. Oldstable NEW will be frozen during the preceding weekend. As usual, base-files can be uploaded at any point before the freeze. Regards, Adam -- To UNSUBSCRIBE, email to debian-security-requ...@lists.d

Upcoming stable point release (7.2)

Hi, The next point release for "wheezy" (7.2) is scheduled for Saturday October 12th. Stable NEW will be frozen during the preceding weekend. As usual, base-files can be uploaded at any point before the freeze. Regards, Adam -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.

Re: Script to System Check Integrity against Debian Package Repository

On Wed, 18 Sep 2013 09:47:27 +0200 Paul Wise wrote: > On Wed, Sep 18, 2013 at 9:36 AM, Török Edwin wrote: > > > Why not just reinstall from a trusted source, then > > restore /etc, /home and /var from backups and audit the changes > > introduced by that only? > > That is a slightly short-si

Re: [SECURITY] [DSA 2761-1] puppet security update

please unsuscribe be. regards 2013/9/19 Raphael Geissert > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > - - > Debian Security Advisory DSA-2761-1 secur...@debian.org > http://www.debian.org/security