On Wed May 07, 2003 at 03:3721PM -0400, Robert B Wilson wrote:
On Wed, 7 May 2003 08:53:40 +0200 Michael Bergbauer
[EMAIL PROTECTED] writes:
If you
think SSH (or any other component) is not trustworthy, just look for
alternatives (or create them yourself).
what would be a more secure
Thank you all guys. I now have enough info to start. :-)
~kmag
I got arp storm in my network(30 PCs and some WLAN devices),
about 10,000 arp requests per second, no responses,lasting
for severalminutes,all these arp requests have the same content
which looks very strange:
SRC DSTinfo
0060e0017d960060f0017d96 who has
Hi,
you get this message when you use different names for a machine, for
example the ip and the machine's name. One of them is saved in
known_hosts, the other one causes this message!
Sebastian
Ian Goodall wrote:
Thanks everyone for your help.
It must be his computer as all the computers I
Hi again,
Thank you for all the feedback and sorry for the controversy of stating
that mime-support does not seem like a security update. Actually, I
usually will allow the update, for I don't always have the time to try
to stay up to date on all the security issues. I simply used this as an
* Quoting Rudolph van Graan ([EMAIL PROTECTED]):
What I would have like to see was something like this: [Please think of
this in terms of stable or testing]
apt-listchanges. It displays the new changelog
entries from the debs before installing them, but
has to download them first, so no
On Thursday, 2003-05-08 at 10:53:54 +0200, Rudolph van Graan wrote:
What I would have like to see was something like this: [Please think of
this in terms of stable or testing]
Package Class
apt Security
Hi,
apt-listchanges. It displays the new changelog
entries from the debs before installing them, but
has to download them first, so no bandwidth
saving.
The only (and incomplete) other way I see is
reading the DSAs, but this doesn't apply to
testing. But if you run testing, you can't
On Thu, 08 May 2003 01:30:15 +0200, in linux.debian.security you
wrote:
kernel. The ptrace bug is not the only problem as there are other
security problems (for example in the netfilter code) that have never
been fixed in stable.
could you please speek out about this?
Where can I find more
On Wednesday 07 May 2003 14:53, Peter Holm wrote:
Hi,
may I be allowed to ask some questions?
I am a little bit confused about the latest discussions on the ptrace
kernel bug.
[...]
Why isn´t there a security warning about that ptrace bug?
[...]
Well the most problem is that Marcelo
By the way there are people not following security lists and they
that was my situation. there must be hundreds or thousands of people
out there, which also do have just little time for administering their
debian installs and rely on security announcement list and apt-get.
Also, if I
kernel. The ptrace bug is not the only problem as there are other
security problems (for example in the netfilter code) that have never
been fixed in stable.
could you please speek out about this?
Where can I find more info about this?
Where can i find patches?
Which kernel-source/image pkg
Am Don, 2003-05-08 um 15.52 schrieb Peter Holm:
kernel. The ptrace bug is not the only problem as there are other
security problems (for example in the netfilter code) that have never
been fixed in stable.
could you please speek out about this?
You can find documentation about security
On Thursday 08 May 2003 03:30 am, Rudolph van Graan wrote:
Hi,
Rolf Kutz wrote:
apt-listchanges. It displays the new changelog
entries from the debs before installing them, but
has to download them first, so no bandwidth
saving.
This is almost exactly what I looked for - it removes
The security team has already released two DSA's on the ptrace issue.
Those would be DSA 270 and DSA 276. Why they have not put priority on
fixing it for the i386 architecture I do not know, but I do know that
modifying the kernel in stable on i386 is a monstrous problem, as doing
it right means
Hi again,
I'm struggling trying to get to the root of a possible problem with
woody or the kernel. One of my up to date production machines show a
very strange load average problem. Basically, the machine gradually
builds up to a high LA and then abruptly at 6:30 in the morning this
stops. It
On 08 May 2003, Markus Kolb wrote:
There are patched Debian kernel images with version 2.4.18-7 by the
kernel-image maintainer Herbet Xu but not in official debian package
trees. Just don't know where to find Herbert's packages. Perhaps
someone can post the place!
You can find patched
On Thu, 08.05.03, Joey Hess [EMAIL PROTECTED] wrote:
fixing it for the i386 architecture I do not know, but I do know that
modifying the kernel in stable on i386 is a monstrous problem, as doing
it right means you have to:
- rebuild all the different kernel images
- rebuild all the modules
Hi Rudolph,
that might very well be a problem with the kernel since you
still run a 2.2 kernel. any chance the system has IDE-Disks ?
i am using a syslog server and it was running a 2.2.20 kernel.
with this kernel the load was pretty high. after i upgraded to
2.4 kernel series the problem
Masz już dosyć
ciągłego szukania potrzebnych informacji w segregatorach?
Chyba każdemu zdarzyło się zawalić jakąś sprawę, bo nie można było
znaleźć jej akt.
Potrzebujesz programu, który pozwoli Ci w łatwy i szybki sposób
wprowadzić, wyszukać, posegregować dane, pomoże w stworzeniu pisma
hi Rudolph,
On Thu, 8 May 2003 19:33:40 +0200
Rudolph van Graan [EMAIL PROTECTED] wrote:
I'm struggling trying to get to the root of a possible problem with
woody or the kernel. One of my up to date production machines show a
very strange load average problem. Basically, the machine gradually
Hello *:
I would like set 'a' bit for files in /var/log/ but it makes
imposible to logrotate to rotate log files normaly. Is enough to set
chattr -a in prerotate script? How useful is set 'a' bit for log files?
No much I think, if an intruder gain root access... he could unset
You recently sent an e-mail to a user whose e-mail is handled by
Loughborough University.
The subject of the e-mail was:- WindykPC [www.windyk.com] - idealne
rozwiazanie biurowe
It was sent on:- Thu, 8 May 2003 14:42:23 -0500 (CDT)
Unfortunately it was not possible to deliver your message
Nils Juergens wrote:
fixing it for the i386 architecture I do not know, but I do know that
modifying the kernel in stable on i386 is a monstrous problem, as doing
it right means you have to:
- rebuild all the different kernel images
- rebuild all the modules packages external to the
hmm sorry but i didn't watched this tread but i just want to add some stuff
first make a backup of your disk ( if you might want to research it later on )
or you might want to toy with a copy of the backup leaving the system in
state it was.
backups can be used as evidence. Or you can monitor
Mayba, I can add my comments here.
recently, a kernel bug exploited and linux kernel developers patched it
already. ptrace-kmod exploit. A local user can run suid shell with just
using an exploit. Maybe hacking -- if there is-- may be done via this too.
But, according to me too, backups are
Maybe, I can add my comments here.
recently, a kernel bug exploited and linux kernel developers patched it
already. ptrace-kmod exploit. A local user can run suid shell with just
using an exploit. Maybe hacking -- if there is-- may be done via this too.
But, according to me too, backups are
Maybe, I can add my comments here.
recently, a kernel bug exploited and linux kernel developers patched it
already. ptrace-kmod exploit. A local user can run suid shell with just
using an exploit. Maybe hacking -- if there is-- may be done via this too.
But, according to me too, backups are
28 matches
Mail list logo