search for: danen

...ven consider this moderately security-relevant is that you can restrict access to a system to sftp-only using forced commands; if this was not possible and the user had ssh/shell access guaranteed, then they could "DoS" the system just as easily a hundred other ways. Thanks. -- Vincent Danen / Red Hat Security Response Team

...<5.2, others are indicating it's the unsafe signal handler issue fixed in 4.4. Granted, Red Hat does ship with a patched 4.3, but we have corrected all issues that we know to have existed with 4.3. And the veracity of the supposed "logs" are sketchy at best. Thanks. -- Vincent Danen / Red Hat Security Response Team

...TP; 1 Aug 2000 18:02:29 -0000 Received: (qmail 25057 invoked by uid 501); 1 Aug 2000 18:02:27 -0000 Received: (qmail 25045 invoked from network); 1 Aug 2000 18:02:27 -0000 Received: from mail.redhat.com (199.183.24.239) by lists.redhat.com with SMTP; 1 Aug 2000 18:02:27 -0000 Received: from devel.danen.net (root@dsl-ldy-209-115-163-i66-edm.nucleus.com [209.115.163.66]) by mail.redhat.com (8.8.7/8.8.7) with ESMTP id OAA02155 for <linux-security@redhat.com>; Tue, 1 Aug 2000 14:02:25 -0400 Received: (from vdanen@localhost) by devel.danen.net (8.10.1/8.10.1) id e71G18x01657; Tue, 1 Aug 2000...

...nk it could be invaluable. Or, if there are no plans, does anyone have any ideas how I could implement something like this? Thanks very much in advance. -- MandrakeSoft Security; http://www.mandrakesecure.net/ Online Security Resource Book; http://linsec.ca/ "lynx -source http://linsec.ca/vdanen.asc | gpg --import" {FE6F2AFD : 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD} -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 186 bytes Desc: not available Url : http://lists.mindrot.org/pipermail/ope...

.../draft-ietf-secsh-publickey- subsystem.txt The idea of it sounds interesting, but I would really like to know if they have approached anyone regarding having it included in openssh proper. Thanks. -- MandrakeSoft Security; http://www.mandrakesecure.net/ "lynx - source http://linsec.ca/vdanen.asc | gpg --import" {FE6F2AFD: 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD} -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 186 bytes Desc: not available Url : http://lists.mindrot.org/pipermail/opens...

=================================================================== "Birthdays are nature's way of telling us to eat more cake." Source Unknown ================================================================== Release Announcements ===================== This is the latest stable release of Samba 3.5. Major enhancements in Samba 3.5.11 include: o Fix access to

=================================================================== "Birthdays are nature's way of telling us to eat more cake." Source Unknown ================================================================== Release Announcements ===================== This is the latest stable release of Samba 3.5. Major enhancements in Samba 3.5.11 include: o Fix access to

All, I am trying to build openssh-5.6p1 using the SPEC file on RHEL 6 and I am receiving this error: [root@**** SPECS]# rpmbuild -bb openssh.spec error: line 47: Unknown tag: Copyright : BSD Also, I read that the umask functionality in this one has issues. Does it work in the 5.5 source? Any help would be appreciated.

After a year of running a stable Samba connection, I can no longer connect to my Linux server. The error "getpeername failed. Error was Transport endpoint is not connected" shows in the error log. What would (could) be the cause of this, and where do I start troubleshooting? Thanks for any tips. Gerry

...ered the password prompt but even with the right password can't get in (sshd logs "PAM: Authentication Failure). Can the same not be done with the "without-password" option? Thanks. -- OpenSLS - Secure Linux Server: http://opensls.org/ "lynx -source http://linsec.ca/vdanen.asc | gpg --import" {FE6F2AFD : 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD} -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 186 bytes Desc: This is a digitally signed message part Url : http://lists.mindr...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ Linux-Mandrake Security Update Advisory ________________________________________________________________________ Package name: dump Date: July 11th, 2000 Advisory ID: MDKSA-2000:018 Affected versions: 6.0, 6.1, 7.0, 7.1