On Mon, Oct 02, 2006 at 02:25:05PM -0700, Colin Percival wrote:
> Theo de Raadt wrote:
> >> The OpenSSH project believe that the race condition can lead to a Denial
> >> of Service or potentially remote code execution
> >^
> > Bullshit. Where did any
On Wed, May 24, 2006 at 11:20:08AM +0100, Craig Edwards wrote:
> I agree, however, i do not like the gentoo dependency upon python for
> its package management system. It has not broken on me yet, however i
> can imagine if it does it would be a nightmare to fix, as python is
> not a trivial progra
On Thu, Dec 01, 2005 at 05:41:22PM +1000, Timothy Smith wrote:
> for security, generally the kernel and base is not the biggest concern, it is
> ports.
> read this section on keeping your ports up to date
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ports-using.html
>
> and this in
This message was sent to bugtraq today:
While playing around with FreeBSD 5.4 and jailing I discovered that it was
possible to put an ethernet interface into promiscious mode from within the
jailed environment, allowing a packetsniffer to gather data not meant for
the jailed box. This also affect
On Mon, Apr 18, 2005 at 03:30:37AM +0200, Danny Pansters wrote:
> Let me just boldly insert that IMHO, if 6.X is going to become stable this
> autumn already that indeed 5.4 or maybe 5.5 at least one of those must be
> long-term-supported. I'm sure one of the two will, as one of the two will
> r
