ers,
--
-
| ,''`. Stephen Gran |
| : :' :sg...@debian.org |
| `. `'Debian user, admin, and developer |
|`- http://www.debian.org |
--
tp://db.debian.org/machines.cgi for all the
machines with a 'purpose' field set to 'security.debian.org mirror', and
hope that you can keep up to date, or you can use a web proxy for
outbound access.
Cheersm
--
-----
|
-16]
Cheers,
--
-
| ,''`. Stephen Gran |
| : :' :sg...@debian.org |
| `. `'Debian user, admin, and developer |
|`-
laces like http://www.debian.org/intro/organization.html . Thank you
in advance for any contributions.
Cheers,
--
-----
| ,''`.Stephen Gran |
| : :'
given patch [6] in lenny's clamav and be
> happy? ;-)
That patch does not address the issue. That is a sigtool problem, not a
clamd one. The clamd one is harder to get right and the change set is
much larger.
Cheers,
--
------
is
more likely to end up in people's sources.list.
--
-
| ,''`.Stephen Gran |
| : :' :sg...@debian.org |
| `. `'Debian user, admin, and dev
to notice a dictionary attack
against a service, as opposed to a user screwing up their password.
Arguing that users don't have to take any responsibility after they
divulge their password doesn't impress me all that much. I'm not a
maintainer for the package in question, but I c
n't answering mails at the
time. If you're interested in seeing python-clamav maintained, you may
want to try contacting the current maintainer.
--
-----
| ,''`.Ste
n the cause.
--
-
| ,''`. Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin, and developer |
|`-
(no need to cc me, I read both lists)
This one time, at band camp, Richard A Nelson said:
> On Fri, 30 May 2008, Stephen Gran wrote:
>
> >Good luck, and please feel free to tell upstream this was an unhelpful
> >change.
>
> hrm, I wonder if/when the other (3rd part
stream this was an unhelpful
change.
--
-
| ,''`. Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin, and developer |
|`-
h, so I think I'll fall back to
Noah's method for older machines.
--
-----
| ,''`.Stephen Gran |
| : :' :
the DSA, you'll see the versions it applies
to. And yes, there are a lot of security issues.
--
---------
| ,''`.Stephen Gran |
| : :' :
> > And denigrating the work they do and telling them they
> >have nothing to be proud of is good why?
> It isn't good, which is why I don't do it.
I guess I'm finished with this discussion then. Trying to counter
things that are
hing
to be proud of? And denigrating the work they do and telling them they
have nothing to be proud of is good why?
--
-
| ,''`. Stephen Gran |
| : :' :
of the job they
do?
--
-
| ,''`. Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin, and developer |
|`-
This one time, at band camp, Nick Boyce said:
> Stephen Gran wrote:
> >
> >"There is a hard coded path in clamscan that calls internal unpackers
> >for zip and rar before trying the specified external unpackers. This
> >breaks rar and some zip scanning for no clear
This one time, at band camp, Johann Spies said:
> On Wed, Feb 27, 2008 at 01:06:33PM +0000, Stephen Gran wrote:
> > This one time, at band camp, Johann Spies said:
> > > On Wed, Feb 27, 2008 at 11:54:19AM +, Stephen Gran wrote:
> > > > report to say:
> >
This one time, at band camp, Johann Spies said:
> On Wed, Feb 27, 2008 at 11:54:19AM +0000, Stephen Gran wrote:
> > report to say:
> >
> > "There is a hard coded path in clamscan that calls internal unpackers
> > for zip and rar before trying the specified external
e of the
issue, it's that I've forgotten to update the bug report.
Cheers,
--
-----
| ,''`.Stephen Gran |
| : :' :
> /usr/sbin/dansguardian
> ^
>
> look here, ps shows UID , not username.
>
> It's normal?
Yes, ps truncates username output when it's longer than 8 characters.
--
-
| ,'&
Take care,
--
-
| ,''`. Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin, and developer |
|`-
This one time, at band camp, Jim Popovitch said:
> On Thu, 2007-12-20 at 01:12 +0000, Stephen Gran wrote:
> > This one time, at band camp, Dominic Hargreaves said:
> > >
> > > Are there any updates planned for sarge in volatile.debian.org?
> >
> > Yes,
This one time, at band camp, Dominic Hargreaves said:
>
> Are there any updates planned for sarge in volatile.debian.org?
Yes, and they're uploaded.
--
-
| ,''`.
This one time, at band camp, Maxim Kammerer said:
> I have no clue what this patch looks like.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=440037
--
-
| ,''`.
ny known
vulnerabilities. I assume debsecan is at fault here.
--
-----
| ,''`.Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin,
had already been addressed a year ago. I contacted the
security team and told them this was fixed long ago upstream, but they
decided for procedural reasons that it would be better to go ahead and
get a CVE for the issue anyway.
Sorry about the fuss,
--
-------
v in testing and unstable is version 0.88.6
Yes, and the problem was fixed in version 0.86. That was the point of
that statement.
--
---------
| ,''`.S
3 15:35:08 myhost named[8286]: lame server resolving
> > 'pptpd-logwtmp.so' (in 'so'?): someotherip#53
> > Nov 3 15:35:08 myhost named[8286]: lame server resolving 'libgnutls.so'
> > (in 'so'?): someotherip#53
> > ===
> I als
This one time, at band camp, martin f krafft said:
> also sprach Stephen Gran <[EMAIL PROTECTED]> [2006.11.03.1246 +0100]:
> > I see them at one installation at work. There, the gateway is
> > 10.103.4.3 or something, but some machines have their gateway
> >
This one time, at band camp, martin f krafft said:
> also sprach Stephen Gran <[EMAIL PROTECTED]> [2006.11.03.1227 +0100]:
> > > net.ipv4.conf.all.accept_redirects = 0
> >
> > That looks like overkill, see below.
>
> Right, it may not be needed, but it&#x
x kernel handles it quite alright, should I have
> logcheck filter it?
I do.
--
-----
| ,''`.Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'
|\
mail -s "user login" [EMAIL PROTECTED]
--
-
| ,''`. Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'
hand, sorry, but it should be either on
the mirrors page or the organization page of debian.org.
--
-
| ,''`. Stephen Gran |
| : :' :
aware of it and actively trying to fix it.
Take care,
--
-
| ,''`.Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin, and deve
_i386.deb
> 404 Not Found [IP: 128.101.240.212 80]
That IP also occasionally gives me problems. Security is now round
robin, so just try again. I do believe this has been reported before,
but I'm not sure where.
Take care,
--
-----
/shadow
man chage is your friend. No need to reinvent the wheel.
--
-
| ,''`. Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `
elying on some home brewed solution. What
happens if vbuff contained a system() argument before being passed?
--
---------
| ,''`.Stephen Gran |
| : :' :
ug. Please file one
with the bug tracking system if this is the case.
Thanks,
--
-
| ,''`.Stephen Gran |
| : :' :[EMAIL PROTECTED]
L 4.0.24 and
> > PHP 4.3
> >
> > I deeply appreciate any help that can make me seal this leak! Thank you
> > all in advance!
> >
> > /petter senften
> >
>
>
> --
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subjec
o far away.
I got the go ahead and uploaded packages yesterday. Today I got an
'accepted' email from stable-proposed-updates. I also heard that the
update was only waiting on one more architecture, so I expect them
shortly.
HTH,
--
------
eadd it if you want it.
--
-
| ,''`. Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin, and developer |
|`- http://www.debian.org |
---
ectory.
No, you have made the parent directory no longer group writable. There
is a difference between who owns it, and what their permissions are.
Basic *nix stuff here, people.
--
-----
|
t, after adduser, is probably
OK as well. Again, though, I don't see the need for it.
--
-
| ,''`. Stephen Gran |
| : :' :[EM
apache-dev, apache-doc, apache
So all the binary packages that are built from the same source get
upgraded. apache-ssl and apache-perl have different source packages,
and so are unaffected.
HTH,
--
-----
This one time, at band camp, Stephen Frost said:
> * Stephen Gran ([EMAIL PROTECTED]) wrote:
> > A sensible greylisting scheme will auto-whitelist a sending IP after
> > so many whitelisted entries (successful retries) - the only point of
> > greylisting is that we know that
nd
obvious spam-like tactics (HELO as my IP/hostname, etc). If you're
doing that, then you deserve to be a little overloaded. If you're
running a reasonably sensible MTA, then you should never trip those
kinds of checks. If people are delaying a sensibl
ckage. Urgency set to "high" because of a potential
Denial of Service vulnerability in previous 3.0.x releases
(CAN-2004-0930). (Eloy)
It has been fixed for unstable at least.
--
-
| ,''`.
t; However - failed memory allocation can also be a sympton of an exploit trying
> to access memory he shouldn't do ,)
In this case, though, I think spamassassin was sparking OOM problems
scanning an oversized email header block. How exim wrote
you, I'm not sure what the problem is - just
try running them one at a time and see where they error, if there is a
problem.
--
-----
| ,''`.Stephen Gran |
| : :' :[EMAIL PR
usual stuff.
Note - these rules are pretty rough, and also pretty open. Look them
over carefully. I haven't had much coffee yet :)
HTH,
--
-
| ,''`.Stephen Gran |
| : :' :
the regex, so what could it
> be?
Just a guess - it's being picked up because of the match on 'exec' -
IIRC logcheck reports that in Security Violations. Try changing the
name of the script, or adding that regex to a file under
violations.ignore.d/
HTH,
--
-----
em to
check the permissions on these devices on upgrade, and correct if
necessary. Seems trivial enough to do. A patch would probably not
hurt.
--
---------
| ,''`.
em to
check the permissions on these devices on upgrade, and correct if
necessary. Seems trivial enough to do. A patch would probably not
hurt.
--
---------
| ,''`.
hey disagree, it reports.
> Can this be fixed?
Hopefully. It is irksome, but not the end of the world.
--
-
| ,''`. Stephen Gran |
| : :' :
hey disagree, it reports.
> Can this be fixed?
Hopefully. It is irksome, but not the end of the world.
--
-
| ,''`. Stephen Gran |
| : :' :
This one time, at band camp, Matt Zimmerman said:
> On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote:
> > I'd like the FTP server to not allow anonymous logins (which I assume
> > most can do), chroot users to their home directories, and have some sort
> >
This one time, at band camp, Matt Zimmerman said:
> On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote:
> > I'd like the FTP server to not allow anonymous logins (which I assume
> > most can do), chroot users to their home directories, and have some sort
> >
nnel,
although I have never tried to use it for FTP.
Any recommendations, experiences, thoughts?
--
------
| Stephen Gran | The proof of the pudding is in the |
| [EMAIL PROTECTED] | eating.
nnel,
although I have never tried to use it for FTP.
Any recommendations, experiences, thoughts?
--
------
| Stephen Gran | The proof of the pudding is in the |
| [EMAIL PROTECTED] | eating.
rebuilt from the new source package. I
agree that kdewallpapers is perhaps a bit silly, but it's a by-product
of the automated build process.
--
------
| Stephen Gran | Buck-passing usu
This one time, at band camp, Will Aoki said:
> On Mon, Dec 30, 2002 at 02:20:25PM -0500, Stephen Gran wrote:
> > Hello all,
> >
> > I'm seeing the following in my logs (fairly frequently):
> >
> > 66.140.25.156 - - [30/Dec/2002:13:31:21 -0500] "CON
Apache.
Is this the case, or am I accidentally running a relaying server?
TIA,
--
--
| Stephen Gran | A woman should have compassion. --|
| [EMAIL PROTECTED]
This one time, at band camp, Will Aoki said:
> On Mon, Dec 30, 2002 at 02:20:25PM -0500, Stephen Gran wrote:
> > Hello all,
> >
> > I'm seeing the following in my logs (fairly frequently):
> >
> > 66.140.25.156 - - [30/Dec/2002:13:31:21 -0500] "
Apache.
Is this the case, or am I accidentally running a relaying server?
TIA,
--
--
| Stephen Gran | A woman should have compassion. --|
| [EMAIL PROTECTED]
the repository is there, but I
wouldn't count on it for security.
--
--------
|Stephen Gran | You will inherit millions of dollars. |
|[EMAIL PROTECTED] |
the repository is there, but I
wouldn't count on it for security.
--
--------
|Stephen Gran | You will inherit millions of dollars. |
|[EMAIL PROTECTED] |
rootkits that hide their tracks from ps and such, but over
ssh?
Anybody seen this kind of thing before? Should I be worried? I suppose
I should mention that chkrootkit came back clean, FWIW.
--
----------
|Stephen Gran
rootkits that hide their tracks from ps and such, but over
ssh?
Anybody seen this kind of thing before? Should I be worried? I suppose
I should mention that chkrootkit came back clean, FWIW.
--
----------
|Stephen Gran
This one time, at band camp, Hanasaki JiJi said:
> I have installed the woody spam package on a woody box and cannot find
> the config file to fix the below output in syslog.
>
> Can someone help out w/ this?
>
> Thanks
>
> Nov 9 08:13:16 portal spamd[1290]: Still running as root: user not
>
This one time, at band camp, Hanasaki JiJi said:
> I have installed the woody spam package on a woody box and cannot find
> the config file to fix the below output in syslog.
>
> Can someone help out w/ this?
>
> Thanks
>
> Nov 9 08:13:16 portal spamd[1290]: Still running as root: user not
>
This one time, at band camp, Michael Ablassmeier said:
> hi !..
>
> i did some apache chroot environment (php,perl,ssl), and now
> some users want to use the php "mail" command, so i have to
> include some mta into the chroot.
> As far as i know, Sendmail is not a good candiate to chroot.
>
> Wha
This one time, at band camp, Michael Ablassmeier said:
> hi !..
>
> i did some apache chroot environment (php,perl,ssl), and now
> some users want to use the php "mail" command, so i have to
> include some mta into the chroot.
> As far as i know, Sendmail is not a good candiate to chroot.
>
> Wha
This one time, at band camp, Steve Johnson said:
> No, but I have noticed when i open an xterm, su to root and run
> vi(vim-gtk), whenever I quit vi, i get this.
>
> Xlib: connection to ":0.0" refused by server
> Xlib: Client is not authorized to connect to Server
> Xlib: connection to ":0.0" refu
This one time, at band camp, Steve Johnson said:
> No, but I have noticed when i open an xterm, su to root and run
> vi(vim-gtk), whenever I quit vi, i get this.
>
> Xlib: connection to ":0.0" refused by server
> Xlib: Client is not authorized to connect to Server
> Xlib: connection to ":0.0" refu
This one time, at band camp, Carlos Sousa said:
> On Sun, 3 Nov 2002 20:56:34 +0100 Javier Fernández-Sanguino Peña <[EMAIL
> PROTECTED]> wrote:
>
> > On Sat, Nov 02, 2002 at 01:18:03PM +, Carlos Sousa wrote:
> > >
> > > # pwck -r
> > > user news: directory /var/spool/news does not exist
> >
This one time, at band camp, Carlos Sousa said:
> On Sun, 3 Nov 2002 20:56:34 +0100 Javier Fernández-Sanguino Peña <[EMAIL PROTECTED]>
>wrote:
>
> > On Sat, Nov 02, 2002 at 01:18:03PM +, Carlos Sousa wrote:
> > >
> > > # pwck -r
> > > user news: directory /var/spool/news does not exist
> > >
This one time, at band camp, Andy Coates said:
> > Hello all,
>
> [snip]
>
> > Now I find myself in the position of changing the setup, so
> > that it is a
> > real internet-facing mail server. It will act as the MX for
> > my domain,
> > using exim, and will distribute the mail to people, eit
Hello all,
I'm getting ready to set up a mail server, and I have a few questions
that I was hoping people would have opinions on. Right now I have a box
that collects my mail with fetchmail, and then allows other boxes on the
LAN to collect from it via qpopper. All direct outside access is
block
This one time, at band camp, Raymond Wood said:
> Potato and Woody are both patched then. What is the recommended
> course of action for those running Sid? Should Sid users
> install the Woody patch, or is this a bad idea?
>
> Thanks for all the hard work Debian Security people!
>
> Cheers,
> R
This one time, at band camp, Gary MacDougall said:
> Giacomo,
>
> How about an example!?!
>
> I'm a little surprise as to why you'd point out an exploit and
> not tell people how to fix it...
>
> On Mon, 6 May 2002, Michal Melewski wrote:
>
> > Hello
> > Try to add following lines into your fir
This one time, at band camp, Gary MacDougall said:
> Giacomo,
>
> How about an example!?!
>
> I'm a little surprise as to why you'd point out an exploit and
> not tell people how to fix it...
>
> On Mon, 6 May 2002, Michal Melewski wrote:
>
> > Hello
> > Try to add following lines into your fi
This one time, at band camp, Brian Furry said:
> (Speaking as the Net Admin)
> I have described the Linux project, its uses, and its physical placement
> within our network, to four knowledgeable people, and asked for their
> thoughts and recommendations.
>
> A. Partner in a consulting company bas
This one time, at band camp, Brian Furry said:
> (Speaking as the Net Admin)
> I have described the Linux project, its uses, and its physical placement
> within our network, to four knowledgeable people, and asked for their
> thoughts and recommendations.
>
> A. Partner in a consulting company ba
This one time, at band camp, Hal said:
> I run a potato server on an ethernet behind a firewall connected by dsl to
> the internet. The only service exposed is ftp, In the middle of last night
> ippl reported an ftp connection attempt from 192.168.1,1 The network behind
> my firewall uses 19
This one time, at band camp, Hal said:
> I run a potato server on an ethernet behind a firewall connected by dsl to the
>internet. The only service exposed is ftp, In the middle of last night ippl
>reported an ftp connection attempt from 192.168.1,1 The network behind my firewall
>uses 192.
Thus spake Stefan Srdic:
> On January 12, 2002 02:28 pm, Stephen Gran wrote:
> > Thus spake Stefan Srdic:
> > > Hi,
> > >
> > > I was going through the Securing Debian HOW-TO and noticed the section
> > > on setuid check (4.11). I would like for th
Thus spake Stefan Srdic:
>
> Hi,
>
> I was going through the Securing Debian HOW-TO and noticed the section
> on
> setuid check (4.11). I would like for the checksecurity script to email root
> of any changes to the system. Will this work if I have exim installed?
>
> Currently, exim fo
Thus spake Stefan Srdic:
> On January 12, 2002 02:28 pm, Stephen Gran wrote:
> > Thus spake Stefan Srdic:
> > > Hi,
> > >
> > > I was going through the Securing Debian HOW-TO and noticed the section
> > > on setuid check (4.11). I would like for th
Thus spake Stefan Srdic:
>
> Hi,
>
> I was going through the Securing Debian HOW-TO and noticed the section on
> setuid check (4.11). I would like for the checksecurity script to email root
> of any changes to the system. Will this work if I have exim installed?
>
> Currently, exim forw
90 matches
Mail list logo
