Re: Debian Stable server hacked

2003-08-23 Thread Dale Amon
On Fri, Aug 22, 2003 at 06:35:37PM -0400, Phillip Hofmeister wrote: > On Fri, 22 Aug 2003 at 10:32:27AM -0400, Matt Zimmerman wrote: > > It is often the case that the attacker doesn't know the exact location of > > structures in memory; there are techniques for finding out. I'm sure that > > the a

Re: Debian Stable server hacked

2003-08-23 Thread Steve Suehring
On Sat, Aug 23, 2003 at 10:14:24AM +0100, Dale Amon wrote: > Does anyone know when a grsec patch set will be available for 2.6.0t3 > or know of one updated to work with 2.4.22rc2? > > Yeah, I know, they are still experimental... This would be a great question posed to the GrSecurity forum, http:

Re: Looking for a simple SSL-CA package

2003-08-23 Thread Adam ENDRODI
On Fri, Aug 22, 2003 at 01:04:54PM -0400, Matt Zimmerman wrote: > On Thu, Aug 21, 2003 at 12:56:30PM +0200, Tarjei Huse wrote: > > > I'm no expert on handling certificates and I hope not having to learn > > all the commandline switches of openssl by heart. However, I do need a > > simple setup o

Re: Looking for a simple SSL-CA package

2003-08-23 Thread Noah L. Meyerhans
On Sat, Aug 23, 2003 at 07:38:25PM +0200, Adam ENDRODI wrote: > Perhaps I just misinterpret the terminology, but I've had the > impression that every certificate should be signed, so should the > root of the tree too. Since they sit at the top of the hierarchy > they must be self signed. Am I mis

Re: Debian Stable server hacked

2003-08-23 Thread Dale Amon
On Fri, Aug 22, 2003 at 06:35:37PM -0400, Phillip Hofmeister wrote: > On Fri, 22 Aug 2003 at 10:32:27AM -0400, Matt Zimmerman wrote: > > It is often the case that the attacker doesn't know the exact location of > > structures in memory; there are techniques for finding out. I'm sure that > > the a

Re: Debian Stable server hacked

2003-08-23 Thread Steve Suehring
On Sat, Aug 23, 2003 at 10:14:24AM +0100, Dale Amon wrote: > Does anyone know when a grsec patch set will be available for 2.6.0t3 > or know of one updated to work with 2.4.22rc2? > > Yeah, I know, they are still experimental... This would be a great question posed to the GrSecurity forum, http:

Re: Looking for a simple SSL-CA package

2003-08-23 Thread Adam ENDRODI
On Fri, Aug 22, 2003 at 01:04:54PM -0400, Matt Zimmerman wrote: > On Thu, Aug 21, 2003 at 12:56:30PM +0200, Tarjei Huse wrote: > > > I'm no expert on handling certificates and I hope not having to learn > > all the commandline switches of openssl by heart. However, I do need a > > simple setup o