Re: Debian security being trashed in Linux Today comments

2002-01-14 Thread Daniel Polombo
Adam Warner wrote: On Tue, 2002-01-15 at 01:05, Tim Haynes wrote: Some of us wouldn't dare say such things without at least reviewing the given distro's security policy, FAQ and history. But I was really impressed that updates for unstable/testing were released at the same time. For those

Re: Don't panic (ssh)

2002-01-14 Thread Daniel Polombo
Iain Tatch wrote: AFAIK, all SSH1 connections are vulnerable to the CRC32 attack. Thus you need to use SSH2 protocol. OpenSSH supports SSH2. You need different keys though, as SSH2 so far does not support RSA keypairs and needs DSA keys. That's the impression I was under, too. In which

Re: Debian security being trashed in Linux Today comments

2002-01-14 Thread Daniel Polombo
Adam Warner wrote: On Tue, 2002-01-15 at 01:05, Tim Haynes wrote: Some of us wouldn't dare say such things without at least reviewing the given distro's security policy, FAQ and history. But I was really impressed that updates for unstable/testing were released at the same time. For those

Re: Don't panic (ssh)

2002-01-14 Thread Daniel Polombo
Iain Tatch wrote: AFAIK, all SSH1 connections are vulnerable to the CRC32 attack. Thus you need to use SSH2 protocol. OpenSSH supports SSH2. You need different keys though, as SSH2 so far does not support RSA keypairs and needs DSA keys. That's the impression I was under, too. In which

Re: Just a test sorry

2001-10-31 Thread Daniel Polombo
Hans wrote: i did not get a massage for a while. I'm very sorry to hear that. As a matter of fact, neither did I. But are you sure this is appropriate content for this list? :) -- Daniel

Re: Port 6000/X11 Won't Close!

2001-08-10 Thread Daniel Polombo
vexation wrote: I use debian 2.2 (woody/unstable) with kernal 2.4.7, i use login.app to login to X. I believe i have the --no-listen command set. However, no madder what i do port 6000 still remains open. I really want to close this port for security reasons! can someone please help me?! -

Re: Port 6000/X11 Won't Close!

2001-08-10 Thread Daniel Polombo
vexation wrote: I use debian 2.2 (woody/unstable) with kernal 2.4.7, i use login.app to login to X. I believe i have the --no-listen command set. However, no madder what i do port 6000 still remains open. I really want to close this port for security reasons! can someone please help me?! -

Re: shared root account

2001-07-06 Thread Daniel Polombo
Just a friendly Jedi Knight wrote: On Fri, Jul 06, 2001 at 01:19:24PM +0300, Juha Jykk wrote: I distrust allowing root logins from anywhere but local console(s) or non-modem gettys i.e. from anywhere over the not-owned-by-me cable. umm do You want to run in circles from one machine to