search for: ciac

...V> for yocum@sapphire.fnal.gov; Wed, 17 Mar 1999 13:13:13 -0600 CDT Received: from localhost (stox@localhost) by dcdsv0.fnal.gov (8.7.5/8.7.1) with ESMTP id NAA10196; Wed, 17 Mar 1999 13:13:12 -0600 (CST) Date: Wed, 17 Mar 1999 13:13:11 -0600 (CST) From: Ken Stox <stox@fnal.gov> Subject: CIAC Bulletin J-035: Linux Blind TCP Spoofing (fwd) To: csieh@fnal.gov, yocum@fnal.gov Reply-to: stox@fnal.gov Message-id: <Pine.GS4.4.05.9903171312520.5361-100000@dcdsv0.fnal.gov> MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII X-Authentication-warning: dcdsv0.fnal.gov: stox owned pr...

I am running Linux 2.0.30 (Redhat 4.2) and have recently been hacked. I have tightened up security but still feel vulnerable. In running the program mscan which was kindly left on my system I get this. bullnet.co.uk: VULN: linux box vulnerable to named overflow. 194.242.135.145: VULN: redhat linux box running imapd. This is after upgrading to the versions as below. bind-4_9_7-0

...Assuming you want to receive reports via email when using the email option please change cfg_email.h; at present the reports get sent to dps@io.stargate.co.uk, which is probably not what you want. If anyone is caught I would appreciate a quick note though. Mirroring by others, including CERT, CIAC, etc is permitted. - -- Duncan (-: "software industry, the: unique industry where selling substandard goods is legal and you can charge extra for fixing the problems." -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 5.0i for non-commercial use Charset: noconv iQA/AwUBNZRQq0ekq+3...

...r times, when needed. WARN: untar libpcap where your *current untarred* tcpdump files lie, in other words under the tcpdump-3.4 directory! There are other very intersting papers around the net... all of the above and others can be found at: www.geek-girl.com www.cs.purdue.edu/coast/hotlist and CIAC, CERT, AUSCERT and similar.... so read them carefully ... ;-))) Yours, -fire

Doctor in veterinary medecine I have a degree in veterinary epidemiology I would ask if someone can perform Monte Carlo simulation with R. Thanks in advance. Dr Kane Ismaila i_kane at hotmail.com -.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.- r-help mailing list -- Read http://www.ci.tuwien.ac.at/~hornik/R/R-FAQ.html Send "info",

...ve rights on vulnerable systems. The vulnerability has >been discovered by Marko Laakso and Ari Takanen of the Secure >Programming Group of the University of Oulu. It has received >considerable public attention in the media and through reports >published by Microsoft, Netscape, AUSCERT, CIAC, NTBugTraq, and >others. > >The vulnerability affects a number of mail and news clients in >addition to the ones which have been the subjects of those reports. > > >II. Impact > >An intruder who sends a carefully crafted mail message to a vulnerable >system can, under...

...named users in hosts.allow ipopd on for all samba and portmap only for specific users All tcp connections use wrappers. Logs are monitored automatically for unauthorised connections on a regular basis. All important files are checked automatically for dates and size changes. References ========== ciac.llnl.gov/ciac/bulletins/i-073.shtml www.cert.org www.shopthenet.net/redhat-security/index.html www.geek-girl.com/bugtraq Brief Summary of Advice and Comments ==================================== OS. Upgrade to 5.1 plus all latest errata or Slackware. bind. Varied advice 4.9.7-0 Some say ok some n...