On Fri, 2010-11-19 at 03:14 +, Ben Hutchings wrote:
The AX.25 protocol modules (ax25, netrom, rose) have not had a great
security record recently, and are not widely used. What do you think of
moving the module aliases into ax25-tools, so systems without that
package are not vulnerable to
On 2010-11-18, Ben Hutchings b...@decadent.org.uk wrote:
--=-ukGC3PFRUIR65dSYwt1Z
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Unlike device or filesystem modules, most protocol modules may be auto-
loaded on behalf of local users without any special
On Sun, 2010-11-21 at 12:33 +0100, Moritz Muehlenhoff wrote:
On 2010-11-18, Ben Hutchings b...@decadent.org.uk wrote:
--=-ukGC3PFRUIR65dSYwt1Z
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Unlike device or filesystem modules, most protocol modules
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 19/11/2010 03:08, Ben Hutchings wrote:
On Thu, 2010-11-18 at 03:33 +, Ben Hutchings wrote:
Unlike device or filesystem modules, most protocol modules may be auto-
loaded on behalf of local users without any special capabilities. This
means
On Fri, 2010-11-19 at 15:16 +, Christine Caulfield wrote:
[...]
The Debian DECnet package already modprobes the decnet module in the
init script (it avoids some potential auto-loading race conditions), so
disabling auto-load will be fine.
Thanks for your quick response. I've made this
On Thu, 2010-11-18 at 03:33 +, Ben Hutchings wrote:
[...]
+alias net-pf-36 af_802154
I have no idea of the security state of this. I was able to create
AF_IEEE802154 sockets on system with no suitable devices.
According to Vince Sanders who works on both Linux and 802.15.4 hardware
On Thu, 2010-11-18 at 03:33 +, Ben Hutchings wrote:
Unlike device or filesystem modules, most protocol modules may be auto-
loaded on behalf of local users without any special capabilities. This
means that security vulnerabilities in such protocol modules may be
exploitable by local users
On Thu, 2010-11-18 at 03:33 +, Ben Hutchings wrote:
Unlike device or filesystem modules, most protocol modules may be auto-
loaded on behalf of local users without any special capabilities. This
means that security vulnerabilities in such protocol modules may be
exploitable by local users
Finally, x25 (*not* ax25) appears to have no applications in Debian.
Google Code Search found only 4 hits for AF_X25 or PF_X25 outside of the
kernel, header files or language bindings:
ean - X.400 message handling software
Unlike device or filesystem modules, most protocol modules may be auto-
loaded on behalf of local users without any special capabilities. This
means that security vulnerabilities in such protocol modules may be
exploitable by local users even on a system where there is no need for
the protocol.
On Thu, Nov 18, 2010 at 03:33:36AM +, Ben Hutchings wrote:
Unlike device or filesystem modules, most protocol modules may be auto-
loaded on behalf of local users without any special capabilities. This
means that security vulnerabilities in such protocol modules may be
exploitable by
11 matches
Mail list logo