- Forwarded message from Michal Zalewski [EMAIL PROTECTED] -
From: Michal Zalewski [EMAIL PROTECTED]
To: [EMAIL PROTECTED], [EMAIL PROTECTED],
[EMAIL PROTECTED]
Date: Sun, 3 Aug 2003 21:12:34 +0200 (CEST)
Subject: [Full-Disclosure] Postfix 1.1.12 remote DoS / Postfix 1.1.11 bounce
- Forwarded message from Michal Zalewski [EMAIL PROTECTED] -
From: Michal Zalewski [EMAIL PROTECTED]
To: [EMAIL PROTECTED], bugtraq@securityfocus.com,
[EMAIL PROTECTED]
Date: Sun, 3 Aug 2003 21:12:34 +0200 (CEST)
Subject: [Full-Disclosure] Postfix 1.1.12 remote DoS / Postfix
this then:
lsof | grep 2637562
And I find I started a sleep command that (never) feeds the sendmail
process:
sleep 27412 lupe1w FIFO0,5 2637562 pipe
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Violence is the resort
this then:
lsof | grep 2637562
And I find I started a sleep command that (never) feeds the sendmail
process:
sleep 27412 lupe1w FIFO0,5 2637562 pipe
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Violence is the resort
features.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Violence is the resort of the violent Lu Tze |
| Thief of Time, Terry Pratchett |
]
Please read DSA-292-3 and DSA-296-1.
I suppose kdewallpapers is just updated to keep the version number in
sync with the rest of kdebase. Had you updated the other KDE packages
before?
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Violence
for the firewall, use port redirection to the DMZ for incoming
connections.
HTH,
Lupe Christoph
PS: If you have never used iptables, and you sound like it, give
fwbuilder a try. Even if you have, it might be useful because it
makes management of the rules easier.
--
| [EMAIL PROTECTED
for the firewall, use port redirection to the DMZ for incoming
connections.
HTH,
Lupe Christoph
PS: If you have never used iptables, and you sound like it, give
fwbuilder a try. Even if you have, it might be useful because it
makes management of the rules easier.
--
| [EMAIL PROTECTED
/updates/main Packages
100 /var/lib/dpkg/status
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed to be|
| unsinkable. The designer had a speech impediment. He said: I have |
| thith
/updates/main Packages
100 /var/lib/dpkg/status
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed to be|
| unsinkable. The designer had a speech impediment. He said: I have |
| thith
/ Host does not resolve
http://www.vpnc.org/conformance.html404 Access denied, or file does not
exist
Can you please correct again?
Thanks,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic
/ Host does not resolve
http://www.vpnc.org/conformance.html404 Access denied, or file does not exist
Can you please correct again?
Thanks,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic
Hi!
Please read
http://www.hlug.org/modules.php?op=modloadname=Newsfile=articlesid=6mode=threadorder=0thold=0
Is Debian affected?
Thanks,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed
Hi!
Please read
http://www.hlug.org/modules.php?op=modloadname=Newsfile=articlesid=6mode=threadorder=0thold=0
Is Debian affected?
Thanks,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed
you use address-based virtual hosts, the certificates are associated
with individual addresses, and are available at the right time.
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed
you use address-based virtual hosts, the certificates are associated
with individual addresses, and are available at the right time.
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed
$KEYFILE backup@cabernet:$REMOTEFILE $LOCALFILE
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed to be|
| unsinkable. The designer had a speech impediment. He said: I have |
| thith great
$KEYFILE [EMAIL PROTECTED]:$REMOTEFILE $LOCALFILE
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed to be|
| unsinkable. The designer had a speech impediment. He said: I have |
| thith
control, or how could it use a library function otherwise?
You may need the libraries in the jail if named runs external programs.
AFAIR, named versions 4 and 8 do that, version 9 doesn't.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big
Correct me if I'm wrong, but don't we expect people who run unstable to
diagnoseproblems themselves? If they can't they should be running stable
or at least testing?
Unstable is not just a name...
Lupe Christoph
On Wednesday, 2002-10-02 at 09:44:38 -0700, Anne Carasik wrote:
This one time
Correct me if I'm wrong, but don't we expect people who run unstable to
diagnoseproblems themselves? If they can't they should be running stable
or at least testing?
Unstable is not just a name...
Lupe Christoph
On Wednesday, 2002-10-02 at 09:44:38 -0700, Anne Carasik wrote:
This one time
would break locking between a Solaris and
a Linux box, I doubt this would be a good idea.
Opinions? Comments?
Thanks,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed to be|
| unsinkable
On Saturday, 2002-09-28 at 18:33:43 +0200, Wichert Akkerman wrote:
Previously Lupe Christoph wrote:
Opinions? Comments?
Does it really matter?
Well it may collide with a service started after it that wants this
particular privileged port. I also believe that services that do not
require
would break locking between a Solaris and
a Linux box, I doubt this would be a good idea.
Opinions? Comments?
Thanks,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed to be|
| unsinkable
On Saturday, 2002-09-28 at 18:33:43 +0200, Wichert Akkerman wrote:
Previously Lupe Christoph wrote:
Opinions? Comments?
Does it really matter?
Well it may collide with a service started after it that wants this
particular privileged port. I also believe that services that do not
require
-ssl's Description in sarge says:
Description: Pseudopackage for migration from Debian 2.2 (potato).
I checked woody, same situation.
So unless you are running potato, you can remove both packages.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big
-ssl's Description in sarge says:
Description: Pseudopackage for migration from Debian 2.2 (potato).
I checked woody, same situation.
So unless you are running potato, you can remove both packages.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big
libssl0.9.6
Sarge:
ii libssl0.9.6 0.9.6e-1 SSL shared libraries
Woody:
ii libssl0.9.6 0.9.6c-2.woody.1 SSL shared libraries
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398
library.
On my Woody machine, after I restarted httpd, I get
1.2.3.4 443 PATCHED: detects small overflow, but crashes (0.9.6e)
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed
libssl0.9.6
Sarge:
ii libssl0.9.6 0.9.6e-1 SSL shared libraries
Woody:
ii libssl0.9.6 0.9.6c-2.woody.1 SSL shared libraries
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398
library.
On my Woody machine, after I restarted httpd, I get
1.2.3.4 443 PATCHED: detects small overflow, but crashes (0.9.6e)
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| Big Misunderstandings #6398: The Titanic was not supposed
On Thursday, 2002-09-12 at 10:20:39 +0200, Marcel Hicking wrote:
--On Mittwoch, 3. Juli 2002 14:04 +0300 Samuli Suonpaa [EMAIL PROTECTED]
wrote:
i would rather see that the spam senders see a bounce email that
fills up their boxes with returned undeliverables..
So if some spammes forged
'ldapsearch -x' I get the database dif as I should.
Wee, do you want SASL, or not? Your '-x' makes the ldap utilities
use basic authentication, i.e. they authenticate against the LDAP
database.
If you leave '-x' out, SASL is used, so you must set it up. (sasldb)
HTH,
Lupe Christoph
--
| [EMAIL
the people who volunteer to do it in such a short timeframe.)
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
||
| After a while you give up trying to escape who you
the two machines.
HTH,
Lupe CHristoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http://public.logica.com/~stepneys/joke
. I know. I received
about 20,000 bounces for invalid addresses.
apt-get install spamassassin
It trapped that one for me as well as 99% of the spam I receive.
I still find a Spam in my norfmal inbox now and then. Not enough
to warrant tweaking Spamassasin's rules.
Lupe Christoph
--
| [EMAIL
charge for
falling for Theo. Seems I took a firm stand and bent over for him.
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de/ |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern
|
---
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact
[EMAIL PROTECTED]
--- Also sprach Sebastien Picard ---
And a shorter signature would also be appreciated.
Thank you,
Lupe Christoph
--
| [EMAIL PROTECTED] | http://www.lupe-christoph.de
and could change DELAY.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http://public.logica.com/~stepneys
and could change DELAY.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http://public.logica.com/~stepneys
about the
permissions, so I have to go check them.
Be paranoid within reason. If you tighten security so much that you can
only work as root, you're easier to screw by trojans.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO
about the
permissions, so I have to go check them.
Be paranoid within reason. If you tighten security so much that you can
only work as root, you're easier to screw by trojans.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO
On Tuesday, 2002-04-09 at 08:50:18 -0400, Andrew Pimlott wrote:
On Tue, Apr 09, 2002 at 08:01:14AM +0200, Lupe Christoph wrote:
Here is an example:
conn %default
authby=rsasig
leftrsasigkey=%cert
rightrsasigkey=%cert
left=%defaultroute
:
openssl x509 -in certificate.pem -noout -text | sed -n -e 's/.*Subject: //p'
Mail me directly if you need help setting this up.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team
On Tuesday, 2002-04-09 at 08:50:18 -0400, Andrew Pimlott wrote:
On Tue, Apr 09, 2002 at 08:01:14AM +0200, Lupe Christoph wrote:
Here is an example:
conn %default
authby=rsasig
leftrsasigkey=%cert
rightrsasigkey=%cert
left=%defaultroute
-in certificate.pem -noout -text | sed -n -e 's/.*Subject: //p'
Mail me directly if you need help setting this up.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest
.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http://public.logica.com/~stepneys/joke/klingon.htm
.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http://public.logica.com/~stepneys/joke/klingon.htm
. Not much better, though. Maybe worse...
Putting the IMAP server in a chroot jail would also give you
an increase in security.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team
. Not much better, though. Maybe worse...
Putting the IMAP server in a chroot jail would also give you
an increase in security.
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team
.
Or wait if somebody provides an updated php4 package (4.0.5-3?).
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again
if somebody provides an updated php4 package (4.0.5-3?).
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again
to
catch somebody unawares from a Makefile.PL.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http
to
catch somebody unawares from a Makefile.PL.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http
On Tuesday, 2002-01-15 at 13:07:12 +0100, Javier Fernández-Sanguino Peña wrote:
On Tue, Jan 15, 2002 at 09:23:20AM +0100, Lupe Christoph wrote:
I still think a table and graph would be a god addition to the security
FAQ, as an answer to the question How long does Debian take to
fix known
, and Windowses.
My gut feeling is that Debian would shine in such a comparison.
Initially, I came to Debian because I had the feeling that it was
the Linux dustribution with the fastest reaction to the discovery
of vulnerabilities. Judging from BUGTRAQ.
Lupe Christoph
--
| [EMAIL PROTECTED
On Tuesday, 2002-01-15 at 13:07:12 +0100, Javier Fernández-Sanguino Peña wrote:
On Tue, Jan 15, 2002 at 09:23:20AM +0100, Lupe Christoph wrote:
I still think a table and graph would be a god addition to the security
FAQ, as an answer to the question How long does Debian take to
fix known
, and Windowses.
My gut feeling is that Debian would shine in such a comparison.
Initially, I came to Debian because I had the feeling that it was
the Linux dustribution with the fastest reaction to the discovery
of vulnerabilities. Judging from BUGTRAQ.
Lupe Christoph
--
| [EMAIL PROTECTED
sincerely hope this can happen soon. Until then, SuSE is ways
easier to set up for PPTP. (Dunno what they deliver in the US,
but here in Germany, they have those patches integrated.)
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged
? I don't keep debian-security mails around,
so I can't see what MIME-type the attachments had. The binary crap
must be the spreadsheet which has been inlined.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality
sincerely hope this can happen soon. Until then, SuSE is ways
easier to set up for PPTP. (Dunno what they deliver in the US,
but here in Germany, they have those patches integrated.)
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged
? I don't keep debian-security mails around,
so I can't see what MIME-type the attachments had. The binary crap
must be the spreadsheet which has been inlined.
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality
On Saturday, 2001-09-01 at 11:02:41 +0200, Martin F Krafft wrote:
also sprach Layne (on Fri, 31 Aug 2001 11:04:30PM -0400):
MARTIN FONDLES YOUNG BOYS.
which one?
Which Martin or which boy? *-O
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have
On Saturday, 2001-09-01 at 11:02:41 +0200, Martin F Krafft wrote:
also sprach Layne (on Fri, 31 Aug 2001 11:04:30PM -0400):
MARTIN FONDLES YOUNG BOYS.
which one?
Which Martin or which boy? *-O
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have
by other applications,
so it's not clear. But there's a way: RTFS! :-)
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us
of libc?
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http://public.logica.com/~stepneys/joke
of libc?
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| I have challenged the entire ISO-9000 quality assurance team to a |
| Bat-Leth contest on the holodeck. They will not concern us again. |
| http://public.logica.com/~stepneys/joke/klingon.htm|
probably
require massive CPU power, alas.)
HTH,
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| The equal opportunity democracy - every vote has an equal chance |
| of being counted. Though a bad one if you live in Florida. |
| Those
y is at
http://www.freeveracity.org/
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| The equal opportunity democracy - every vote has an equal chance |
| of being counted. Though a bad one if you live in Florida. |
| Those peopl
://www.freeveracity.org/
Lupe Christoph
--
| [EMAIL PROTECTED] |http://free.prohosting.com/~lupe |
| The equal opportunity democracy - every vote has an equal chance |
| of being counted. Though a bad one if you live in Florida. |
| Those people told us how to run a democracy ?!?|
101 - 170 of 170 matches
Mail list logo