Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

On Mon, Jul 01, 2002 at 11:23:08 +0100, Sam Vilain wrote: > Does anyone know if this affects Debian? This has been fixed; see http://bugs.debian.org/151342 for details. HTH, Ray -- Gartner Group ?!? Never heard of them. What did they do in computing except manage to put on their tie withou

Good Day

Dear Sir, First I must solicit your strictest confidence in this transaction. This is by its nature being a transaction, which needs maximum secrecy. I am Mr Ademola Muyiwa Ige, the eldest son of Late Chief Bola Ige, who was the Attorney - General of the Federation and Minister of Justice of the

Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

"J.H.M. Dassen (Ray)" <[EMAIL PROTECTED]> wrote: > > Does anyone know if this affects Debian? > This has been fixed; see http://bugs.debian.org/151342 for details. Excellent. To summarise that bug report for the benefit of those interested, if you are running any of the following packages: bi

Good Day

Dear Sir, First I must solicit your strictest confidence in this transaction. This is by its nature being a transaction, which needs maximum secrecy. I am Mr Ademola Muyiwa Ige, the eldest son of Late Chief Bola Ige, who was the Attorney - General of the Federation and Minister of Justice of the

Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

On Mon, 1 Jul 2002 13:02:34 +0100 Sam Vilain <[EMAIL PROTECTED]> wrote: > "J.H.M. Dassen (Ray)" <[EMAIL PROTECTED]> wrote: > > > > Does anyone know if this affects Debian? > > This has been fixed; see http://bugs.debian.org/151342 for details. > > Excellent. To summarise that bug report for the

RE: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

> -Original Message- > From: J.H.M. Dassen (Ray) [mailto:[EMAIL PROTECTED] > Sent: 01 July 2002 11:42 > Cc: debian-security@lists.debian.org > Subject: Re: CERT Advisory CA-2002-19 Buffer Overflow in > Multiple DNS Resolver Libraries > > On Mon, Jul 01, 2002 at 11:23:08 +0100, Sam Vilain

Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

On Mon, Jul 01, 2002 at 13:24:37 +0100, Jeff Armstrong wrote: > > -Original Message- > > From: J.H.M. Dassen (Ray) [mailto:[EMAIL PROTECTED] > > This has been fixed; see http://bugs.debian.org/151342 for details. > I don't think this is 'fixed'? Sam spoke of "libisc4/libdns5" which exis

Re: Good Day

At 08:25 2002-01-07, Mr.Muyiwa Ige wrote: > [a load of bullshit] If anyone wonders what that mail was, read here: http://www.snopes.com/inboxer/scams/nigeria.htm ///Olle -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Apache Chunked Encoding attack

Hi, I just ran the "Retina Apache Chunked Scanner" from http://www.eeye.com/html/Research/Tools/apachechunked.html I scanned all my IP's and it reported that both my potato boxes where vulnerable to this exploit. I have patched both servers with the updated packages for potato: [EMAIL PROTE

Re: Apache Chunked Encoding attack

Bjarne Østby <[EMAIL PROTECTED]> writes: >From the help file of the scanner: > > How It Works > > The Retina Apache Chunked Scanner detects Apache servers which > can be compromised by the Apache Chunked Encoding > vulnerability . The scanner works by attempting to sendin

RE: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

> -Original Message- > From: J.H.M. Dassen (Ray) [mailto:[EMAIL PROTECTED] > Sent: 01 July 2002 14:03 > To: debian-security@lists.debian.org > Subject: Re: CERT Advisory CA-2002-19 Buffer Overflow in > Multiple DNS Resolver Libraries > > On Mon, Jul 01, 2002 at 13:24:37 +0100, Jeff Armst

Re: Apache Chunked Encoding attack

Florian Weimer wrote: > Two possibilities: The documentation refers to a previous version of > the scanner, or you forgot to restart Apache after installing the > packages. Installing a new .deb for a server package should automatically restart the server, should it not? Craig pgpfACpKtVVN4.pg

Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

"Jeff Armstrong" <[EMAIL PROTECTED]> writes: > libc6 is indeed a big package and the Pine announcement seems rather > general, if we are lucky, Debians libresolv.so wont need an update. I wouldn't count on it. But there aren't any updates in the GNU libc CVS yet. -- Florian Weimer

Re: Apache Chunked Encoding attack

Hi, Craig Dickson wrote: > > Florian Weimer wrote: > > > Two possibilities: The documentation refers to a previous version of > > the scanner, or you forgot to restart Apache after installing the > > packages. > > Installing a new .deb for a server package should automatically restart > the ser

Re: Good Day

On Mon, Jul 01, 2002 at 03:07:37PM +0200, Olle Hedman wrote: > At 08:25 2002-01-07, Mr.Muyiwa Ige wrote: > > [a load of bullshit] > > If anyone wonders what that mail was, read here: > http://www.snopes.com/inboxer/scams/nigeria.htm And forward it to [EMAIL PROTECTED], with full headers intact,

Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

> "Jeff" == Jeff Armstrong <[EMAIL PROTECTED]> writes: [...] Jeff> libc6 is indeed a big package and the Pine announcement seems Jeff> rather general, if we are lucky, Debians libresolv.so wont need an Jeff> update. The Pine announcement only mentions the libc from BSD-based systems, which i

More SSH Fun (X11 forwarding)

Hi all, I'm having really weird problem with X11 forwarding and two Debian boxes. I can login with OpenSSH and scp and everything else no problem. However, when I try to launch an xterm, I get either: can't open DISPLAY Or the display is set to server:10.0. I don't have this problem SSH'ing

Re: More SSH Fun (X11 forwarding)

On Mon, Jul 01, 2002 at 01:24:34PM -0700, Anne Carasik wrote: > However, when I try to launch an xterm, I get either: > can't open DISPLAY Are you explicitly asking for X11 forwarding on the client's command line (-X)? > Or the display is set to server:10.0. That is normal. That's what it shoul

Re: More SSH Fun (X11 forwarding)

On Mon, 01 Jul 2002, Anne Carasik wrote: > Let me know if you have any ideas. Running the client and server in both > verbose and debugging modes provides me with nothing useful :( Did you set X11Forwarding yes in both sshd_config on server and ssh_config (.ssh/config) on client? Best wi

Re: More SSH Fun (X11 forwarding)

This one time, Norbert Preining wrote: > On Mon, 01 Jul 2002, Anne Carasik wrote: > > Let me know if you have any ideas. Running the client and server in both > > verbose and debugging modes provides me with nothing useful :( > Did you set > X11Forwarding yes > in both sshd_config on server

Re: More SSH Fun (X11 forwarding)

On Mon, Jul 01, 2002 at 01:48:31PM -0700, Anne Carasik wrote: > So, if I force X11 with the -X (even though my ssh_config on > the client is set to X11Forwarding yes), I get this: > Get what? You don't have UseLogin set in sshd_config, do you? noah --

Re: More SSH Fun (X11 forwarding)

This one time, Noah L. Meyerhans wrote: > On Mon, Jul 01, 2002 at 01:48:31PM -0700, Anne Carasik wrote: > > So, if I force X11 with the -X (even though my ssh_config on > > the client is set to X11Forwarding yes), I get this: > Get what? Uh, the output that I included. > You don't have UseLogin s

Re: More SSH Fun (X11 forwarding)

> It doesn't matter about the sshd_config, only the ssh_config on the I DEFINITELY matter what is in the sshd_config on the server. The server make the primary dictate on what is allowed and what is forbidden. Best wishes Norbert -

Re: More SSH Fun (X11 forwarding)

This one time, Norbert Preining wrote: > > It doesn't matter about the sshd_config, only the ssh_config on the > I DEFINITELY matter what is in the sshd_config on the server. The server > make the primary dictate on what is allowed and what is forbidden. Well, yeah.. but you said to check the ssh_

Re: More SSH Fun (X11 forwarding)

Clarifying myself.. sorry :) So, if I force X11 with the -X (even though my ssh_config on the client is set to X11Forwarding yes), I get the same as if I don't run ssh with the -X option. -Anne -- .-"".__."``". Anne Carasik, System Administrator .-.--. _...' (/) (/) ``' ga

Re: More SSH Fun (X11 forwarding)

Hi, I'm not exactly sure what you are trying to do, maybe this will help :) does it matter if you authorize the other computer with xhost? or just a `xhost +` ? - David > > So, if I force X11 with the -X (even though my ssh_config on > the client is set to X11Forwarding yes), I get t

bitchx ircii backdoor?

Is Debian affected by this (bitchx/ircii backdoor): http://online.securityfocus.com/archive/1/280009 -+- // <[EMAIL PROTECTED]> // gpg fingerprint:: A439 6991 01CD 18F8 BF17 4E3E 7197 B014 014D 64C1 -- To UNSUBSCRIBE, email to [EMAIL PR

Re: bitchx ircii backdoor?

I checked the BitchX source which comes with Debian unstable as soon as I saw this post on Bugtraq earlier today. All is well, no evidence of the backdoor in question was found. On Mon, Jul 01, 2002 at 06:40:44PM -0400, David Caplan wrote: > Is Debian affected by this (bitchx/ircii backdoor):

Re: More SSH Fun (X11 forwarding)

Hi David, Nope, that didn't help. It may be because X11 isn't listening on port 6000, but I really didn't think that would affect X11 forwarding. Guess it does. I'll try and set my X11 to listen, and if that fixes it, it goes in the FAQ :) -Anne This one time, David Caplan wrote: > Hi, I'm no

Re: More SSH Fun (X11 forwarding)

Okay, having X11 listening for TCP connections with xhost + enabled didn't help. I'm open to other suggestions. :) -Anne This one time, Anne Carasik wrote: > Hi David, > > Nope, that didn't help. It may be because X11 isn't listening on > port 6000, but I really didn't think that would affect

Re: More SSH Fun (X11 forwarding)

> Okay, having X11 listening for TCP connections with xhost + > enabled didn't help. > > I'm open to other suggestions. :) Having X listening on the remote host isn't necessary for X11 forwarding, nor is it necessary to do xhost + Just use -X and make sure the host mentioned in the DISPLAY vari

Re: More SSH Fun (X11 forwarding)

* Anne Carasik ([EMAIL PROTECTED]) [020701 16:01]: > This one time, David Caplan wrote: > > Hi, I'm not exactly sure what you are trying to do, maybe this will > > help :) > > does it matter if you authorize the other computer with xhost? > > or just a `xhost +` ? > > Nope, that didn't hel

Re: More SSH Fun (X11 forwarding)

Hi Vineet, It doesn't matter--it's still does not work no matter what I do to my X server. Anyway, I turned off xhost and X11 listening a while ago. -Anne This one time, Vineet Kumar wrote: > * Anne Carasik ([EMAIL PROTECTED]) [020701 16:01]: > > This one time, David Caplan wrote: > > > Hi, I'm

Re: More SSH Fun (X11 forwarding)

* Ashish Gulhati ([EMAIL PROTECTED]) [020701 16:17]: > > > Okay, having X11 listening for TCP connections with xhost + > > enabled didn't help. > > > > I'm open to other suggestions. :) > > Having X listening on the remote host isn't necessary for X11 > forwarding, nor is it necessary to do xhos

Re: More SSH Fun (X11 forwarding)

Hi Vineet, I appreciate the help, but I know that setting the DISPLAY doesn't work either. I need to know what DOES work, or if this is a bug. How did you get X11 working on Debian running OpenSSH 3.4p1? Did it just magically work for you? Did you have to set something? -Anne This one time,

Re: More SSH Fun (X11 forwarding)

Ok... it was just a suggestion to find out the source of the problem :) I wasn't sure if ssh depended on xauth/host or not. I guess it doesn't. -David > > nonono! don't set your x server to listen for tcp and don't use xhost. > > That is the Wrong Way. The whole idea of us

Re: More SSH Fun (X11 forwarding)

Sorry for no context, I just deleted the message before I decided to reply... Using ssh from debian woody to debian sid... This is the first time I even tried to do X11 forwarding, so I didn't change anything for it... BTW, client is i586 laptop, server is parisc(hppa) workstation. I don't

Re: More SSH Fun (X11 forwarding)

On 2002.07.01, Anne Carasik <[EMAIL PROTECTED]> wrote: > I need to know what DOES work, or if this is a bug. > > How did you get X11 working on Debian running OpenSSH 3.4p1? Did it > just magically work for you? Did you have to set something? Anne, I've only been glancing at this thread but -- d

Re: More SSH Fun (X11 forwarding)

* Anne Carasik ([EMAIL PROTECTED]) [020701 16:34]: > Hi Vineet, > > It doesn't matter--it's still does not work no matter what I do > to my X server. > > Anyway, I turned off xhost and X11 listening a while ago. Right. My point was that this is a way /around/ ssh forwarding. It won't make it any

Re: More SSH Fun (X11 forwarding)

I have tried it with woody-woody, and I got no X forwarding. Looking at /etc/ssh/sshd_config, X11Forwarding no was there. After changing X11Forwarding yes and restarting /etc/init.d/ssh restart, and reconnecting, worked fine... -- "It's a summons." "What's a summons?"

Re: More SSH Fun (X11 forwarding)

* Vineet Kumar ([EMAIL PROTECTED]) [020701 16:51]: > So anyway, here's a basic rundown of things to double-check: Add to this list that "UseLogin" is set to no (its default) and X11UseLocalhost is set to yes (its default) on the server. > I'm about to review the thread one more time to see if you

Re: More SSH Fun (X11 forwarding)

On 2002.07.01, Vineet Kumar <[EMAIL PROTECTED]> wrote: > So anyway, here's a basic rundown of things to double-check: > > the server has "X11Forwarding yes" in its config (and that config has > been loaded, i.e. the server has been restarted since the change). Be specific: On the server, look at

RE: Good Day

Unlike most "spam", this one has actually resulted in some arrests. Well, not "this one" specifically, it's been going on for a while with multiple different people/groups attempting the "Spanish Prisoner" con game. Thanks for the email address for the Fed.Gov investigation. Curt- > > If anyone

Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNSResolver Libraries

In article <[EMAIL PROTECTED]> [EMAIL PROTECTED] writes: >> Jeff> libc6 is indeed a big package and the Pine announcement seems >> Jeff> rather general, if we are lucky, Debians libresolv.so wont need an >> Jeff> update. >> >> The Pine announcement only mentions the libc from BSD-based systems, >

Re: Good Day

On Tue, Jul 02, 2002 at 09:08:19AM +0900, Howland, Curtis wrote: > Unlike most "spam", this one has actually resulted in some arrests. > Well, not "this one" specifically, it's been going on for a while with > multiple different people/groups attempting the "Spanish Prisoner" con > game. > > Thank

CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries

Does anyone know if this affects Debian? Apologies if this is old hat. Does it just need to be patched in libisc4/libdns5 ? -BEGIN PGP SIGNED MESSAGE- CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries Original release date: June 28, 2002 Last revised: --