On Sat, May 18, 2002 at 08:40:38PM +0200, Jakub Filonik wrote:
> Hi,
> I was playing with ps on FreeBSD with kern.ps_showallprocs=0 and I was
> surprised when I have seen that I may see info about running process, if I
> know it's ID
The ps(1) utility's manpage says,
-a Display informa
>> Security Advisory <<
///
"Pidgorny, Slav" wrote:
>
> me to do some testing. Here are the results:
>
> 1. I configured Microsoft Certificate services to act as a standalone
> subordinate CA. A request for a CA certificate was generated.
> 2. I sent this request as a request for a Web server SSL certificate.
> 3. The V
sorry no, this is not the same case.
The line you posted is inbetween a
if(file_exists("$PHORUM[settings_dir]/replace.php")) {
...
file_exists only works on local filesystems.
This may only work on the local server, if a user has access to it.
Thomas
On Sat, 18 May 2002 15:58:19 -0300
"Gabriel
On Saturday 18 May 2002 20:40, Jakub Filonik wrote:
> Hi,
> I was playing with ps on FreeBSD with kern.ps_showallprocs=0 and I was
> surprised when I have seen that I may see info about running process, if I
> know it's ID
After some investigation, the problem seems to be in sysctl_kern_proc
funct
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- | capzlock |
- -| security advisory no. 1 |
- ---
CONFIDENTIAL INFORMATION
On Sat, May 18, 2002 at 11:50:03PM +0400, Yuri A. Kabaenkov wrote:
> Hello Jakub,
>
> Saturday, May 18, 2002, 10:40:38 PM, you wrote:
>
> There is another bug with this sysctl variable.
> For example to see all processess with kern.ps_showallprocs=0 you can do this:
>
> $ cd /proc;
The kern.ps
-- Forwarded message --
Date: Mon, 20 May 2002 13:24:26 -0700
From: Foundstone Labs <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Foundstone Advisory - Buffer Overflow in Ipswitch Imail 7.1 and
prior
Please disregard the previous email.
Can you please forward this to the
When a URL's is streamed in winamp which requires HTTP authentication, the user is
prompted to enter a username and password. This username and password is then stored
as plain text in the file winamp.ini under the section [HTTP-AUTH]. The format of
stored passwords (it seems) is =:.
URL's
On Sat, May 18, 2002 at 08:40:38PM +0200, Jakub Filonik wrote:
> Hi,
> I was playing with ps on FreeBSD with kern.ps_showallprocs=0 and I was
> surprised when I have seen that I may see info about running process, if I
> know it's ID
>
> I think it may be seen as bug. What do You think?
>
This
In response to Slav's posting (below):
These are not fundamental technology problems; rather they are problems
with PKI in general, and policies and procedures belonging to the
issuing CA - in this case Verisign. I am not saying that there are no
bugs in MS Certificate Services, or in Verisign's
1/If admin doesn't change or delete user AdvWebadmin, the
default password of this user is advcomm500349, you can
creat your own account or use this account to hack the
server.
1/ A foolish vulnerability, i can view the harddisk by
using the file browse.asp in directory admin
www.victi
Hi!
On Sun, 19 May 2002, Pidgorny, Slav wrote:
> 2. I sent this request as a request for a Web server SSL certificate.
> 3. The Verisign test CA did not complain upon processing this request. It
> generated and signed the certificate.
I think this is normal behaviour. You submitted a valid requ
What a interesting coincidence. My joint just got two of these puppies
about two months ago. My own experiences and comments follow...
On Fri, 17 May 2002 [EMAIL PROTECTED] wrote:
> The Scan workstation does not need to have totally open shares. Done
> correctly, all it needs to share is the
- Sandblad advisory #7 -
---..---..---..---..---..---..---..---..---..---..---..---..
Title: IE dot bug
(updated IE: Remote webpage can script in local zone)
Date: [2002-05-19]
Software: Internet Explorer
Patches:MS02-023, MS02-015 (issue still
-BEGIN PGP SIGNED MESSAGE-
=
FreeBSD-SA-02:25Security Advisory
The FreeBSD Project
Topic: bzip2 conta
-BEGIN PGP SIGNED MESSAGE-
=
FreeBSD-SA-02:24.k5su Security Advisory
The FreeBSD Project
Topic: k5su utilit
Announcing the first annual Canadian Security & Intelligence
Conference (CSICON) August 19-21 at the Hyatt Regency, Calgary,
Alberta Canada. This is a technical security conference aimed at IT
Professionals, and IT Security Managers. Enjoy three days filled with
presentations and discussions
18 matches
Mail list logo