search for: eey

...hand what the longest known serious security issue (i.e. remote compromise) has been with FreeBSD that went unpatched ? e.g. security hole is reported to security-officer@FreeBSD.org. X days later, fix and advisory committed. What has been the largest X ? My jaw dropped when I saw http://www.eeye.com/html/Research/Upcoming/index.html ---Mike -------------------------------------------------------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing Internet since 1994 www.sentex.net...

...le who use CBC-MAC (rather than HMAC or a proper AEAD mode) seem incapable of actually doing this. http://blog.cryptographyengineering.com/2012/05/how-to-choose-authenticated-encryption.html Vulnerability Name: SSH CBC Mode Ciphers Enabled https://access.redhat.com/solutions/420283 http://forums.eeye.com/index.php?/topic/2858-11867-ssh-cbc-mode-plaintext-recovery-remote-false-positive/ The reality is that all of the CBC mode ciphers are vulnerable and this includes the old standby [3DES-CBC] and even, likely, [BLOWFISH-CBC]. We can look at the references provided by the Retina finding for a m...

...them using CentOS), relegating them to virtual space where they can be more easily controlled. Most of the remaining MS Windows services (AD, file, print, etc.) will also migrate to CentOS, leaving only those services which require a Redmond-based OS to run (i.e. WSUS, Symantec Endpoint Protection, eEye Retina - mandated vulnerability scanner). While our RHEL installations have served us well, the cost of maintaining the entitlements has been deemed too much for our budget. We need to expand the use of an enterprise Linux distro but the RHEL EULA requires separate entitlement fees for each insta...