but i didn't get any reply at
> > all
> > from this. has it been overlooked?
>
> I guess not, it's just strange that you think this is not
> known to us.
Is there a bug number ?
Regards,
Paddy
--
Segmentation fault (core dumped): .sig too big
--
To UNSUBSCRI
ein.
I never tire of reading that file ...
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
you be satisfied by checking a signature of a checksum of the CD
against a public key that you trust ?
http://www.debian.org/CD/faq/#verify
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
etc/passwd, I'd say this is
> > grave bug.
>
> This bug is monitored via the security tracker:
> http://security-tracker.debian.net/tracker/CVE-2007-4131
> So they should be aware of it.
just noticed this going past in an osx update and had a "what ever
happenned to that?&quo
according to proportions of debian, security, perl, beer, buffy
and a pony. Thank you.)
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
y-tracker.debian.net/tracker/ are handy.
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
l, is no longer supported. I did hope the
original poster would find them useful resources in the context of
your observation about checking for vulnerabilities.
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
he release of stable, something like a year.
2. Upgrading your system is documented, tested and supported.
Kudos to all who make it possible.
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ther there isn't a sufficiently different needs
for users of differing experience that it might make sense to have
an option at install time. It is a commonly used idiom.
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
t; - Are you a novice user running KDE: use guarddog or knetfilter
is one of those installed by default ?
Regards,
Paddy Smith
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
interface controlled systems ?
Is the whole idea of such mandatory features really compatible with
Debian, or more generally, software freedom ?
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
cases life threatening, and
everyday non-safety-critical systems can easily be a very serious
nuisiance to other users.
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
base here; I'm just expressing my (limited) understanding
> of the issue.
no, you are bang on the mark!
absolutely spot on!
I can't help wondering if the problem is more one of the distro being
able to solve the problem of how to supply an implementation, and I'm
not sure how
an be caused by an update. (I *wish* those updates
> were atomic, but they probably arent'.)
why not though ?
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
proaching networks
and come up with something practical.
networks are what people have computers for these days.
air gaps are the exception.
Do ordinary folk really *need* to grok rp_filter ?
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
think I need to be protected from
> myself. I think that is what most people are trying to say.
All I'm saying is, would it be possible to have a single simple
option that users could *elect* to take, that wasn't the default,
that wasn't bending anyones life out of shape, mar
om there, so enabling
> rp_filter would do absolutely nothing.
does it not cover the case of packets arriving at eth0 spoofed as
from 127.0.0.1 ?
what would be a easy way to test that ?
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
it help to have a task style package that could set a range
of such options ?
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On Wed, Jul 25, 2007 at 10:35:14AM +0200, Florian Weimer wrote:
> Will there be a timely security update for BIND 9, or does it make
> sene to roll your own?
this would be CVE-2007-2926 ?
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscrib
oubt applies with kernels.
and then it is all to easy to assume that the underlying hardware is
not a problem.
but in practice being able to boot from known-clean (eg: read-only
media) is a gold-standard weapon in the armoury, and anything that
can help join the dots from there to "this
ebian stable version and needs to upgrade the package to the
> >latest author available version,
and you are cron-ing this how ?
Regards,
Paddy
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On Wed, Oct 18, 2006 at 03:30:18AM +0100, paddy wrote:
> On Tue, Oct 17, 2006 at 09:53:49PM -0400, Noah Meyerhans wrote:
> > On Wed, Oct 18, 2006 at 02:11:24AM +0100, paddy wrote:
> > > > NB: although some are saying this is a local root exploit only, the
> > > &
On Tue, Oct 17, 2006 at 09:53:49PM -0400, Noah Meyerhans wrote:
> On Wed, Oct 18, 2006 at 02:11:24AM +0100, paddy wrote:
> > > NB: although some are saying this is a local root exploit only, the
> > > bulletin points out it can be exploited by visiting a malicious
> > &
nd thanks for doing this ...
> NB: although some are saying this is a local root exploit only, the bulletin
> points out it can be exploited by visiting a malicious webpage.
I've not scrutinised the claims closely,
but it looks like a remote vulnerability to me :-(
Regards,
Paddy
and so it's output for
the use you suggest cannot be completely trusted. Seems to me that there
are plenty of other problems getting to a compartment you can sanitise
effectively, like the possibility of an exploit to persist via
filesystem and hooks like cron or .profile, no ? but I
> I don't have an answer for the "don't start upon new install" problem,
> though.
while it doesn't cover "at system installation time" couldn't you get this
out of policy-rc.d ??
To impact at system install time I suppose you're talking something like a CDD ?
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry Wall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
lookup cached then you should have a win.
If you are are forwarding the rest to your webhoster's DNS (??? ISP)
then you shouldn't lose much there.
perhaps you could dump the packets with tcpdump or ethereal and get
an idea what's going on that way?
Regards,
Paddy
--
Perl 6 will give yo
about ?
Is there any worthwhile analysis of such traffic beyond "there are
these attacks and we don't care about them" ? do you need it ?
do you already have it ?
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry Wall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
n time to make the check.
Perhaps freshclam's dns based mechanism may also be of interest as a point
of comparison ? (I'm sorry I'm not able to describe it in detail off the top
of my head, but the paralell seems obvious)
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry Wall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
n't be too far away.
also
http://lists.debian.org/debian-volatile-announce/debian-volatile-announce-2006/msg1.html
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry Wall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ce that I have agreed to this calling.
I love democracy. I love the Republic. Once this crisis has abated,
I will lay down the powers you have given me!
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry Wall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ith my prefered Desktop. In all Internet Cafes i get an IP via DHCP.
>
> So, there is no problem with infected Windows Machines... :-)
>
> I suggest you, to create your own striped down Live-System + USB-Key
But you still have the possibility of hardware keyloggers to consider.
Reg
On Tue, Nov 08, 2005 at 06:50:40PM -0200, Goedson Teixeira Paixao wrote:
> * paddy ([EMAIL PROTECTED]) wrote:
> > Hi,
> >
> > I just noticed that the use of case for package names in the subject
> > line of DSA mails has been inconsistent or has changed.
> >
&
Hi,
I just noticed that the use of case for package names in the subject
line of DSA mails has been inconsistent or has changed.
For example, clamav and ClamAV.
Apologies, I'm sure you have more important things to consider.
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry
are should not use it. 8-/
I'm surprised.
Do you mean it conflicts with a standard ? or just that its a commonly
used extension that isn't explicitly standardized ?
Is there a standard way to recognize mailing list traffic ?
Regards,
Paddy
--
Perl 6 will give you the big knob.
list back to
> > them and generating a new reply... and so on ;-(
>
> Normally a reasonnably configured utoresponder will only send this
> message once. So actually most of these ppl _are_ subscribed to d-s.
Is there a reason not to simply read the "Precedence: list" h
> are not used by normal unix-centered developers?
>
> Kind regards,
> Herwig Wittmann
Herwig,
I hope this link will help
http://newraff.debian.org/~joeyh/stable-security.html
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry Wall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Mike,
thanks for your quick response on this one.
On Thu, Jun 30, 2005 at 03:45:27PM -0400, Michael Stone wrote:
> On Thu, Jun 30, 2005 at 07:49:50PM +0100, paddy wrote:
> >Is there a standard way to download such a package ?
>
> No.
>
> Mike Stone
Is this a bug or a
such a package ?
Regards,
Paddy
--
Perl 6 will give you the big knob. -- Larry Wall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
40 matches
Mail list logo
