Re: MTAs

2001-11-18 Thread Marcin Owsiany
-- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: scp and sftp

2002-04-01 Thread Marcin Owsiany
ssh... You might want to enable ssh with /usr/bin/passwd as user's shell. Disabling scp then seems to make sense. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email

Re: does virus ELF.OSF.8759 affect debian?

2002-04-10 Thread Marcin Owsiany
(they don't say if it exploits any vulnerabilities other than user's stupidity/ignorance). Basically, if you run binaries from an unsafe source, you get what you deserve. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6

Re: cluster on firewall?

2003-02-06 Thread Marcin Owsiany
] Peter Breuer. Enhanced NBD project home page. http://www.xss.co.at/ linux/NBD/. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject

Re: snort-stats without mailing...

2003-02-12 Thread Marcin Owsiany
On Thu, Feb 13, 2003 at 12:15:55AM +, Ricardo Sousa wrote: How can i send/view snort stats without mailing them ?!? ssh-keygen and scp is one way Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0

Re: machine monitoring packages

2003-02-14 Thread Marcin Owsiany
On Fri, Feb 14, 2003 at 05:00:42PM +0100, Dariush Pietrzak wrote: Goes like this: what is some tool and plot graphs... Why it's mrtg/rrdtool. It's great. But there is no alternative. And there should be. What's wrong with gnuplot? This is getting so off-topic... Marcin -- Marcin

Re: howcome there's no DSA for the latest Linux ptrace hole?

2003-03-21 Thread Marcin Owsiany
give me root on a box with this kernel... Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact

Re: [Fwd: Re: LWN: Ptrace vulnerability in 2.2 and 2.4 kernels]

2003-04-01 Thread Marcin Owsiany
a great idea. In a server environment it is preferable not to compile with modules at all. Why? Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL

Re: evolution

2003-06-27 Thread Marcin Owsiany
evolution, but if it displays HTML messages, those could be requests to retrieve some objects embedded in some messages (images for example). Just a thought. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Marcin Owsiany
: please reply _below_ the citation and cut unneeded text. -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble

Re: Curriculum

2003-08-14 Thread Marcin Owsiany
. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: Accepted kernel-source-2.4.20 2.4.20-3woody.12 (all source)

2003-09-10 Thread Marcin Owsiany
-source-2.4.3 (2.4.3-4), back in April (Bug#94216)? (The urls in the bug report are not valid any more, so I can't check.) regards, Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

security updates vs. proposed-updates

2003-09-17 Thread Marcin Owsiany
is updated again) - removing proposed-updates from sources.list (2.4.x kernels from Herbert are there) Maybe this could be added to the security team FAQ? Disclaimer: I'm not a member of the security team. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG

Re: ProFTPD ASCII File Remote Compromise Vulnerability

2003-09-23 Thread Marcin Owsiany
On Tue, Sep 23, 2003 at 04:13:02PM -0500, Jeff Bender wrote: Thanks. Do you happen to have a link where this might be posted? http://bugs.debian.org/212416 Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6

Re: services installed and running out of the box

2003-09-26 Thread Marcin Owsiany
if there was a global setting stating whether all services should be local-only or available to the outside. Of course it would mean (ab)using debconf in every such package... regards Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA

Re: apt-get upgrade and kernel images

2004-03-02 Thread Marcin Owsiany
On Tue, Mar 02, 2004 at 10:18:15AM +0200, Riku Valli wrote: Yes, but for me was quite confusing that at first installation kernel isnot a package. AFAIK it will be, starting with sarge. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216

Re: apache / exe process taking 99 % cpu

2004-08-30 Thread Marcin Owsiany
On Tue, Aug 31, 2004 at 12:59:48AM +0200, Timo Veith wrote: On Monday 30 August 2004 21:06, Marcin Owsiany wrote: I added a iptables rule to the OUTPUT chain dropping all tcp packets to that box:port and guess what? My server was back idle again. No more 99 % cpu usage and the process now

Re: apache / exe process taking 99 % cpu

2004-08-31 Thread Marcin Owsiany
On Wed, Sep 01, 2004 at 12:25:19AM +0200, Timo Veith wrote: On Tuesday 31 August 2004 03:24, Marcin Owsiany wrote: On Tue, Aug 31, 2004 at 12:59:48AM +0200, Timo Veith wrote: On Monday 30 August 2004 21:06, Marcin Owsiany wrote: I added a iptables rule to the OUTPUT chain dropping all tcp

Re: apache / exe process taking 99 % cpu

2004-09-01 Thread Marcin Owsiany
is not run as an Apache module, so I cannot migrate all users in a batch. Generally, PHP is a little bit like a nightmare for me :-) regards, Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: root login denied. But by what?

2005-06-17 Thread Marcin Owsiany
$f ! fi done And why is there no ip? I guess this is a bug.. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe

Re: MTAs

2001-11-18 Thread Marcin Owsiany
Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: scp and sftp

2002-04-01 Thread Marcin Owsiany
ssh... You might want to enable ssh with /usr/bin/passwd as user's shell. Disabling scp then seems to make sense. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email

Re: does virus ELF.OSF.8759 affect debian?

2002-04-10 Thread Marcin Owsiany
(they don't say if it exploits any vulnerabilities other than user's stupidity/ignorance). Basically, if you run binaries from an unsafe source, you get what you deserve. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6

Re: cluster on firewall?

2003-02-06 Thread Marcin Owsiany
] Peter Breuer. Enhanced NBD project home page. http://www.xss.co.at/ linux/NBD/. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: snort-stats without mailing...

2003-02-12 Thread Marcin Owsiany
On Thu, Feb 13, 2003 at 12:15:55AM +, Ricardo Sousa wrote: How can i send/view snort stats without mailing them ?!? ssh-keygen and scp is one way Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0

Re: machine monitoring packages

2003-02-14 Thread Marcin Owsiany
On Fri, Feb 14, 2003 at 05:00:42PM +0100, Dariush Pietrzak wrote: Goes like this: what is some tool and plot graphs... Why it's mrtg/rrdtool. It's great. But there is no alternative. And there should be. What's wrong with gnuplot? This is getting so off-topic... Marcin -- Marcin

Re: howcome there's no DSA for the latest Linux ptrace hole?

2003-03-21 Thread Marcin Owsiany
give me root on a box with this kernel... Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: [Fwd: Re: LWN: Ptrace vulnerability in 2.2 and 2.4 kernels]

2003-04-01 Thread Marcin Owsiany
a great idea. In a server environment it is preferable not to compile with modules at all. Why? Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: scan

2003-04-10 Thread Marcin Owsiany
lo is a software-only interface). Try pingflooding it (ping -f) and see if it crashes. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

DSA-288 - a question

2003-04-22 Thread Marcin Owsiany
) If not, then what does it refer to, and is there any way to make threaded apps work with openssl 0.9.6c-2.woody.3? regards Marcin [0] http://www.debian.org/security/2003/dsa-288 -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6

Re: evolution

2003-06-26 Thread Marcin Owsiany
evolution, but if it displays HTML messages, those could be requests to retrieve some objects embedded in some messages (images for example). Just a thought. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Marcin Owsiany
/ Marcin PS: please reply _below_ the citation and cut unneeded text. -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: Curriculum

2003-08-08 Thread Marcin Owsiany
. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

security updates vs. proposed-updates

2003-09-17 Thread Marcin Owsiany
is updated again) - removing proposed-updates from sources.list (2.4.x kernels from Herbert are there) Maybe this could be added to the security team FAQ? Disclaimer: I'm not a member of the security team. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG

Re: ProFTPD ASCII File Remote Compromise Vulnerability

2003-09-23 Thread Marcin Owsiany
On Tue, Sep 23, 2003 at 04:13:02PM -0500, Jeff Bender wrote: Thanks. Do you happen to have a link where this might be posted? http://bugs.debian.org/212416 Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6

Re: services installed and running out of the box

2003-09-26 Thread Marcin Owsiany
if there was a global setting stating whether all services should be local-only or available to the outside. Of course it would mean (ab)using debconf in every such package... regards Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA

Re: apt-get upgrade and kernel images

2004-03-02 Thread Marcin Owsiany
On Tue, Mar 02, 2004 at 10:18:15AM +0200, Riku Valli wrote: Yes, but for me was quite confusing that at first installation kernel isnot a package. AFAIK it will be, starting with sarge. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216

Re: apache / exe process taking 99 % cpu

2004-08-30 Thread Marcin Owsiany
information. Also run chkrootkit. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: a compromised machine

2005-07-26 Thread Marcin Owsiany
out a binary file and executes it. I straced the binary on a virtual machine with no network. It's attempting to connect to two different hosts: 210.169.91.66:5454 This is an IRC server. The program seems to be an IRC zombie. Marcin -- Marcin Owsiany [EMAIL PROTECTED] http

Re: Mass update deployment strategy

2006-11-28 Thread Marcin Owsiany
On Mon, Nov 27, 2006 at 03:37:22PM -0500, George Georgalis wrote: for n in host1 host2 hostz; do ssh [EMAIL PROTECTED] $ENV $UPD ; $UPG $UPC done Check out dsh and its option -c instead of this step :-) Marcin -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl

Re: [SECURITY] [DSA 1289-1] New Linux 2.6.18 packages fix several vulnerabilities

2007-05-14 Thread Marcin Owsiany
knows netfilter a bit better comment on this? In what circumstances in real life is this exploitable? Is there any workaround? I'm not using bridging, I don't care about logging, so I'm happy to disable it, I'm not sure what that netlink thing means.. Marcin -- Marcin Owsiany [EMAIL PROTECTED

Re: security.d.o packages for etch built on sarge

2007-07-02 Thread Marcin Owsiany
incumplidas: ekg: Depende: python2.3 (= 2.3) pero no es instalable E: Paquetes rotos so maybe someone should file grave? against ekg? Why I haven't realized you're talking about my package up till now is a mystery to me. I'll check this ASAP. -- Marcin Owsiany [EMAIL PROTECTED

Re: security.d.o packages for etch built on sarge

2007-07-02 Thread Marcin Owsiany
On Mon, Jul 02, 2007 at 10:19:25AM +0100, Marcin Owsiany wrote: On Sat, Jun 30, 2007 at 08:32:20PM -0600, Jan Hetges wrote: On Sun, Jul 01, 2007 at 02:39:37AM +0100, Steve Kemp wrote: On Sun Jul 01, 2007 at 00:59:24 +0200, Karol Lewandowski wrote: On Mon, Jun 25, 2007 at 02:56:07PM +0200

Re: security.d.o packages for etch built on sarge

2007-07-02 Thread Marcin Owsiany
me know and I will do it. If you'd rather have it built diferrently, please let me know. -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 signature.asc Description: Digital signature

Re: security.d.o packages for etch built on sarge

2007-07-13 Thread Marcin Owsiany
On Mon, Jul 02, 2007 at 07:27:13PM +0200, Moritz Muehlenhoff wrote: Marcin Owsiany wrote: Why I haven't realized you're talking about my package up till now is a mystery to me. I'll check this ASAP. Indeed, it looks like I used wrong pbuilder tarball to build this one

Re: security.d.o packages for etch built on sarge

2007-07-29 Thread Marcin Owsiany
On Wed, Jul 18, 2007 at 01:35:41PM +0100, Marcin Owsiany wrote: On Fri, Jul 13, 2007 at 12:08:35PM +0100, Marcin Owsiany wrote: On Mon, Jul 02, 2007 at 07:27:13PM +0200, Moritz Muehlenhoff wrote: Marcin Owsiany wrote: Why I haven't realized you're talking about my package up till now

Re: verifying archive signature keys?

2007-08-15 Thread Marcin Owsiany
some signatures of several people, but none that I personally know, I don't even know whether these people actually exist. So what's the official way to verify debian archives? I'm not sure if it's official, but I've seen a section on that topic on debian wiki IIRC. -- Marcin Owsiany [EMAIL

Re: How to verify debian packages?

2007-11-06 Thread Marcin Owsiany
each of these files simply by browsing the archive tree. -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble

Re: Debian suggestion on File Deletion

2007-12-13 Thread Marcin Owsiany
releases. Regards, -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: ping22: can not kill this process

2008-01-04 Thread Marcin Owsiany
it. -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator

2008-05-13 Thread Marcin Owsiany
keypair? If so, then could some guru post a way to retrieve that? -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble

Re: md5 hashes used in security announcements

2008-10-25 Thread Marcin Owsiany
hash demo, but I cannot find it now. -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: secure execution of drivers

2008-11-19 Thread Marcin Owsiany
driver domain. I never used xen for that particular purpose, so I can't help you with that, but some papers seem to say this is possible. regards, -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216

Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential codeexecution

2008-12-10 Thread Marcin Owsiany
to my postgrey upload to volatile, either, for over two weeks now. regards, -- Marcin Owsiany [EMAIL PROTECTED] http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 signature.asc Description: Digital signature

Re: [SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities

2008-12-12 Thread Marcin Owsiany
fashion. I'd suggest you add something more explicit, maybe: [fashion], that is when higher-severity issues are fixed. or something similar. -- Marcin Owsiany porri...@debian.org http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4

Re: [SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities

2008-12-13 Thread Marcin Owsiany
On Fri, Dec 12, 2008 at 11:37:35AM -0700, dann frazier wrote: On Fri, Dec 12, 2008 at 08:53:43AM +, Marcin Owsiany wrote: On Thu, Dec 11, 2008 at 12:11:05PM -0700, dann frazier wrote: On Thu, Dec 11, 2008 at 06:49:59PM +, Dominic Hargreaves wrote: On Thu, Dec 11, 2008 at 11:38

Re: [SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities

2008-12-13 Thread Marcin Owsiany
On Sat, Dec 13, 2008 at 10:38:30AM +0100, Moritz Muehlenhoff wrote: On 2008-12-13, Marcin Owsiany porri...@debian.org wrote: On Fri, Dec 12, 2008 at 11:37:35AM -0700, dann frazier wrote: On Fri, Dec 12, 2008 at 08:53:43AM +, Marcin Owsiany wrote: On Thu, Dec 11, 2008 at 12:11:05PM

Re: How safely to stop using backports repo?

2009-05-30 Thread Marcin Owsiany
won't want have security problems anymore. That decision I feared... Is there a automatic way that can give me a list of the packages came from backports repo? plug type=shameless you might want to have a look at apt-forktracer /plug -- Marcin Owsiany porri...@debian.org http

Re: /dev/shm/r?

2009-06-01 Thread Marcin Owsiany
to exploit something using expect. -- Marcin Owsiany porri...@debian.org http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of unsubscribe. Trouble

Re: non-executable stack (via PT_GNU_STACK) not being enforced

2010-10-12 Thread Marcin Owsiany
) don't support PAE, so making the default kernel use PAE would make debian unbootable on them. -- Marcin Owsiany porri...@debian.org http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to debian-security-requ

Re: non-executable stack (via PT_GNU_STACK) not being enforced

2010-10-12 Thread Marcin Owsiany
On Tue, Oct 12, 2010 at 05:29:03AM -0500, Jordon Bedwell wrote: On Tue, 2010-10-12 at 11:10 +0100, Marcin Owsiany wrote: And it might be non-obvious, but some CPUs (e.g. the one in my not-so-old laptop) don't support PAE, so making the default kernel use PAE would make debian unbootable

Re: non-executable stack (via PT_GNU_STACK) not being enforced

2010-10-12 Thread Marcin Owsiany
making the decision whether to enable PAE in the default kernel. Indeed some installer support for kernel selection would be more than desirable in such case. -- Marcin Owsiany porri...@debian.org http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D

Re: Command 'su' is not working in virtual console

2011-12-16 Thread Marcin Owsiany
working. When I type 'su', is't the same as I just typed RETURN without any command, but exit status is 1. Last time this happened for me it turned out that su was not SUID root :-) -- Marcin Owsiany porri...@debian.org http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D