> -----Original Message----- > From: Scott Armstrong [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, 26 September 2000 5:49 AM > Cc: [EMAIL PROTECTED] > Subject: Re: Gauntlet CyberPatrol (was: Effnet firewall, good or bad?) > > > > Peter Bruderer wrote: > > > > possible. If you did not install Cyberpatrol, it was not vulnerable. Yeah, as Scott says this isn't right. Check the original press release: [1] > > Actually, until recently, there was a bug in the Solaris > Gauntlet v5 and > v5.5 where even if the evil GUI said that the CyberPatrol daemon was > stopped, it was actually running. Ick. Damn GUIs. > It was enabled in every default > install. To actually turn it off, you had to use the gauntlet-admin > program. This means that many installations were probably vulnerable > (and maybe still are) when they thought they were safe. Because CyberPatrol is eval software, although it's installed by default, it was (apparently) timebombed to die after thirty days. This makes it unlikely that anyone is still vulnerable - but you never know. > I > think one of > the more recent patches may have solved this. > > Scott Thanks for the clarification. I must have misread the release in the first place - I thought Cyberpatrol was NOT installed by default (it isn't on NT) - turns out it WAS in the *nix versions. Ew. [1] http://www.securityfocus.com/news/40 -- Ben Nagy Network Consultant, Volante Solutions PGP Key ID: 0x1A86E304 Mobile: +61 414 411 520 - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
