I believe my patch is safe because for the old behaviour (process name) it
only removes error provoking condition on request-server-:sim being set,
introduced by port numbrer patch, and does not change anything else. This
condition is only applicable in case of port number, I think.
On the
Janusz Krzysztofik wrote:
I believe my patch is safe because for the old behaviour (process name) it
only removes error provoking condition on request-server-:sim being set,
introduced by port numbrer patch, and does not change anything else. This
condition is only applicable in case of port
Jamin W. Collins napisał(a):
... With the
existing libwrap0 package in testing/unstable connections to vino are
allowed from any location (not just connections from localhost).
Maybe vino does not provide libwrap with valid server socket data, like
in the case of tcpdmatch without server
Janusz Krzysztofik wrote:
Maybe vino does not provide libwrap with valid server socket data, like
in the case of tcpdmatch without server address specified? Maybe other
applications don't do as well? If this is the case, I think libwrap must
be patched for security.
That is why I filed the
Package: libwrap0
Version: 7.6.dbs-11
Severity: grave
Justification: renders package unusable
$ /usr/sbin/tcpdchk -v
Using network configuration file: /etc/inetd.conf
Rule /etc/hosts.allow line 15:
daemons: SSHD
clients: ALL
access: granted
Rule /etc/hosts.deny line 20:
daemons: ALL
package libwrap0
tags 405342 + patch
thanks
Dnia wtorek, 2 stycznia 2007 20:24, Jamin W. Collins napisał:
...
$ /usr/sbin/tcpdmatch vnc 192.168.10.178
warning: vnc: no such process name in /etc/inetd.conf
client: address 192.168.10.178
server: process vnc
access: granted
Why is
severity 405342 normal
found 405342 7.6.dbs-10
thanks
On Jan 02, Jamin W. Collins [EMAIL PROTECTED] wrote:
Severity: grave
Justification: renders package unusable
I don't think so.
Tomorrow i will review the code.
--
ciao,
Marco
signature.asc
Description: Digital signature
Janusz Krzysztofik wrote:
Denied, as it should be. The bug exhibits only if there is no info on server
socket.
The following patch corrects the problem for me.
The patch does appear to correct the problem however, the lines it
changes are created as part of another patch
8 matches
Mail list logo
