Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries
Hi, From: Florian Weimer [EMAIL PROTECTED] Subject: Re: CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries Date: Fri, 05 Jul 2002 12:20:06 +0200 [EMAIL PROTECTED] writes: Ah, I see your in-depth post on Bugtraq now (-; http://msgs.securepoint.com/cgi-bin/get/bugtraq0207/39/1.html From your Bugtraq post, I got the impression that since I haven't changed the defaults in /etc/nsswitch.conf -- i.e. my networks: line is: networks: files I shouldn't have anything to worry about at the moment. Does that sound right? Yes, you don't have to worry about any of the problems which have been published so far (no, I don't know of any other problems). Great! Thanks for taking the time to make the clarification. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
ethereal 0.9.4 - 0.9.5?
Hi, I noticed a number of days back at ethereal's home page that a new version (0.9.5) was released that has some security fixes since the release of 0.9.4: http://www.ethereal.com/appnotes/enpa-sa-5.html I also noticed a 0.9.5 package in unstable (whose changelog.Debian.gz file mentions the security fixes), but I haven't seen an announcement on debian-security-announce for this (nothing via email and I don't see anything in the online archives for debian-security or debian-security-announce either). Is there some an announcement on the way? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
About Ethereal
Sorry to start a new thread, I deleted the original. I wanted to follow up saying it appears ethereal 0.9.5 is currently in unstable. I am not sure if it will be let into to woody, perhaps it will be if it fixes and RC bug. Someone else might know the politics of that better... Phil pgpPrYDxWV5U1.pgp Description: PGP signature
Re: Spamassassin [was: Good Day]
On Thu, Jul 04, 2002 at 09:28:36PM +0200, Ralf Gerlich wrote: reading message [EMAIL PROTECTED]:7 of 16 (3715 octets) ...procmail: Program failure (-11) of /usr/bin/spamassassin procmail: Rescue of unfiltered data succeeded fetchmail: MDA returned nonzero status 62720 not flushed [SNIP] servers and other such stuff (besides, spamassassin on a 120 MHz machine is s*l*o*w). After migrating it over to the new box (1.2 I use the client-server mechanism of spamassassin, where one has spamassassin running as a daemon running and just uses a light-weight client(spamc) to process mails. This spares the effort of loading all the rules and the whole spamassassin processor from scratch for each mail. I got it running on a 200MHz Pentium and it's running OK. (Well, it's still a bit slow, but I don't want to know how slow it would run without the daemon *g*) I have my running on a 486 with only 20MB!! It runs fine but I had to make sure that one and only one mail is being processed at a time [sendmail and queues did the job here]. I managed to process over 1000 mails in less than 5 hours running spamd on nice 19. I know that without the daemon, it took about 30s for each mail with lots of swap. With the daemon, [most messages I get are from debian mailing lists so they are not huge], it takes less than 5s per message with little swap. But, no matter what the machine you have, you have to cap it down or it will not handle a large enough load. - Adam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
woody ssh update and PAM keyboard-interactive authentication won't work.
It doesn't appear as though this keyboard-interactive authentication is something we want or need, but I don't know what it means and I haven't found anything in the ssh or sshd man pages or the libpam-doc that explains what it means. Would someone please point me to appropriate documentation or explain what is PAM keyboard-interactive authentication? Thanks, Chuck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]