-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hello,
Would Debian be interested in being the first Linux distribution to publish
vulnerability advisories in the OSV format[1]?
I’m working on osv.dev[2] in my day job, and was interested in Debian being
the first Linux distribution to publish
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
I like to go to the changelogs, as they're the most authoritative thing
available.
https://metadata.ftp-master.debian.org/changelogs//main/o/openssl/openssl_1.1.1n-0+deb11u3_changelog
This is linked from packages.debian.org/openssl
Yes,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
I was poking around at the scripts at
https://salsa.debian.org/security-tracker-team/security-tracker and I
noticed you're consuming the NVD's legacy JSON feeds.
I wanted to make sure you're aware of deprecation and upcoming removal per
Hi,
The version of Sendmail in sarge is vulnerable to CVE-2006-1173 from what I
can determine, and there's been a fixed version in testing for some time,
but what's happened to stable?
regards
Andrew
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble?
Hi,
I've done some cursory apt-cache searching, and nothing's jumped out at
me...
Is there software in Debian that will do something along the lines of a tail
-f of a given logfile, looking for supplied regexs and do custom actions on
matches?
I want to tarpit excessive SSH login failures.
On Sat, Jun 26, 2004 at 02:55:28PM +0200, martin f krafft wrote:
also sprach Andreas Barth [EMAIL PROTECTED] [2004.06.26.1452 +0200]:
what's the problem with:
deb mirror
deb security.d.o
In this case, the file is taken from the mirror if it exists already
there, and otherwise from
On Mon, Jun 28, 2004 at 12:55:58PM +1000, Lorenzo Modesto via RT wrote:
If a customer is affected we have to announce. Send it through and
I'll approve.
You guys do realise your Request Tracker setup is replying all
correspondence on tickets that are being gated into RT back to the
On Sun, Nov 30, 2003 at 12:51:45AM +0200, Haim Ashkenazi wrote:
Bernd Eckenfels wrote:
BTW: i recommend you disable CAD :)
I would but that is the only way I can let them safely reboot the machine
(If I'll need them to) without giving the root password (although I know
that it only take
On Fri, Oct 31, 2003 at 06:08:50PM -0500, Federico Grau wrote:
Hello,
I'm looking for a list of characters that are not allowable (or that cause
problems) for passwords if any under a standard Debian GNU/Linux install
(using md5). I've checked the packages docs and done a quick google
On Sun, Nov 30, 2003 at 12:51:45AM +0200, Haim Ashkenazi wrote:
Bernd Eckenfels wrote:
BTW: i recommend you disable CAD :)
I would but that is the only way I can let them safely reboot the machine
(If I'll need them to) without giving the root password (although I know
that it only take
Hi,
One of my friends sent me this URL, it's an oldie, and the topic in
general has been discussed before, but this article certainly does raise
some concerns.
http://www.astalavista.com/privacy/library/magic-lantern/fbi.shtml
Andrew
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a
On Thu, Mar 06, 2003 at 09:21:21PM -0500, Gary MacDougall wrote:
[snip]
This is silly to blame the FBI. I'd be far more concerned about the
average knucklehead
trying to do this maliciously than thinking the FBI would do it... please.
I wasn't that worried about the FBI, being Australian,
Hi,
One of my friends sent me this URL, it's an oldie, and the topic in
general has been discussed before, but this article certainly does raise
some concerns.
http://www.astalavista.com/privacy/library/magic-lantern/fbi.shtml
Andrew
On Thu, Mar 06, 2003 at 09:21:21PM -0500, Gary MacDougall wrote:
[snip]
This is silly to blame the FBI. I'd be far more concerned about the
average knucklehead
trying to do this maliciously than thinking the FBI would do it... please.
I wasn't that worried about the FBI, being Australian,
to root locally
does it not?
The environment I'm in has a smarthost, but it's generally for getting mail out
of the network, direct inbound SMTP isn't there, so the smarthost can't send it
elsewhere internally.
On Sun, 2002-05-19 at 21:10, Andrew Pollock wrote:
Secondly, even the base system
to root locally
does it not?
The environment I'm in has a smarthost, but it's generally for getting mail out
of the network, direct inbound SMTP isn't there, so the smarthost can't send it
elsewhere internally.
On Sun, 2002-05-19 at 21:10, Andrew Pollock wrote:
Secondly, even the base system
Hi,
I'm currently working for a company that provides managed security
solutions. Linux is used fairly extensively in the internal
infrastructure. Currently it's Mandrake, however my immediate superior
(who is the Mandrake guy) is open minded and has allowed me to run up some
Debian
Hi,
I'm currently working for a company that provides managed security
solutions. Linux is used fairly extensively in the internal
infrastructure. Currently it's Mandrake, however my immediate superior
(who is the Mandrake guy) is open minded and has allowed me to run up some
Debian installations
On 12.09.2001 at 11:30:02, Andrew Pollock [EMAIL PROTECTED] wrote:
Even if I run snort-stat manually on auth.log (after I've made snort start
with
-s) it doesn't return anything when there are alerts in the log.
Any suggestions appreciated, I'd like to get daily summary emails.
Well I
On 12.09.2001 at 11:30:02, Andrew Pollock [EMAIL PROTECTED] wrote:
Even if I run snort-stat manually on auth.log (after I've made snort start
with
-s) it doesn't return anything when there are alerts in the log.
Any suggestions appreciated, I'd like to get daily summary emails.
Well I
Hi,
I've always had problems with 5snort killing snort daily when snort's running in
dialup mode (I fixed that by commenting out the restart line) but I'm not
getting anything in the daily notification emails either.
/etc/ppp/ip-up.d/snort doesn't start snort with -s, so nothing goes into
Hi,
I've always had problems with 5snort killing snort daily when snort's running in
dialup mode (I fixed that by commenting out the restart line) but I'm not
getting anything in the daily notification emails either.
/etc/ppp/ip-up.d/snort doesn't start snort with -s, so nothing goes into
since version 1.7
--sjk
On 12 Sep, Andrew Pollock wrote:
Hi,
I've always had problems with 5snort killing snort daily when snort's
running in
dialup mode (I fixed that by commenting out the restart line) but I'm not
getting anything in the daily notification emails either.
/etc
Hi,
I'm currently running Portsentry on a box, and I've got it configured to add an
ipchains rule firewalling off all access to an IP that touches one of the ports
that Portsentry is listening on (after doing some sanity checks on where the
portscan/port access came from).
I find the way that
Hi,
I'm currently running Portsentry on a box, and I've got it configured to add an
ipchains rule firewalling off all access to an IP that touches one of the ports
that Portsentry is listening on (after doing some sanity checks on where the
portscan/port access came from).
I find the way that
25 matches
Mail list logo