Displaying 20 results from an estimated 21 matches for "elischer".
2004 Dec 27
4
Found security expliot in port phpBB 2.0.8 FreeBSD4.10
I think, there is a neat exploit in the phpbb2.0.8 because I found my home
page defaced one dark morning. The patch for phpBB is here.
http://www.phpbb.com/downloads.php
The excerpt of the log is attached.
I believe the link to the described exploit is here.
http://secunia.com/advisories/13239
The defacement braggen page is here filter to show the exploited FreeBSD
machines that aneurysm.inc
2006 Feb 02
0
HEADS UP: Audit integration into CVS in progress, some tree disruption (fwd)
FYI, since this is probably of interest to subscribers of this mailing list
also.
Robert N M Watson
---------- Forwarded message ----------
Date: Wed, 1 Feb 2006 22:55:40 +0000 (GMT)
From: Robert Watson <rwatson@FreeBSD.org>
To: Julian Elischer <julian@elischer.org>
Cc: trustedbsd-audit@TrustedBSD.org,
K?vesd?n G?bor <gabor.kovesdan@t-hosting.hu>, current@freebsd.org
Subject: Re: HEADS UP: Audit integration into CVS in progress,
some tree disruption
On Wed, 1 Feb 2006, Julian Elischer wrote:
>>> I'll...
2005 Jan 10
1
update for 4.11 Security Officer-supported branches
Hello...
In regards to http://www.freebsd.org/security/ , from what I understand
the FreeBSD 4.x branch is generally winding down in favor of the 5.x/6.x
branches. It would be nice to know ahead of time if 4.11 will also be
an extended release, or if that would fall to 4.12. For those of
running 4.8 (expiring about the same time as 4.11 is released) we would
be in a better position to know
2006 Jan 24
3
IPsec, VPN and FreeBSD
Hi:
We intend to build IPSec based VPN server on FreeBSD
platform so that we can access internal network of a
lab. The remote side will use VPN client and could be
from anywhere of the Internet, or may be from the
another site of the company. From the hnadbook, I saw
the sample of site-to-site configurations and we do
have one FreeBSD firewall (running ipfw) on both site
and another one on
2004 Nov 10
2
Is there any way to know if userland is patched?
Dear folks,
I'm recently investigating large scale deployment and upgrading FreeBSD
RELEASE. It's our tradition to bump "RELEASE-pN" after a security patch
is applied, however, it seems that there is less method to determine
whether the userland is patched, which is somewhat important for large
site managements.
So is "uname -sr" the only way to differencate the
2005 Dec 19
7
Brute Force Detection + Advanced Firewall Policy
Any BFD/AFP softwares available for FreeBSD 4.10?
Im getting flooded with ssh and ftp attempts.
2008 Nov 14
3
FreeBSD 6.3 gre and traceroute
Stephen Clark wrote:
> Robert Noland wrote:
>> On Thu, 2008-11-13 at 07:48 -0500, Stephen Clark wrote:
>>> Julian Elischer wrote:
>>>> Stephen Clark wrote:
>>>>> Julian Elischer wrote:
>>>>>> you will need to define the setup and question better.
>>>> thanks.. cleaning it up a bit more...
>>>>
>>>> 10.0.129.1 FreeBSD workstation
>>&g...
2005 Aug 18
4
New FreeBSD Security Officer
...esponse organizations
has grown greatly; and the FreeBSD Security Branches are now
supported for much longer period of time over a greater number of
releases. I'd like to thank the members of the security team over
the past few years for these accomplishments: Eivind Eklund, Julian
Elischer, Chris Faulhaber, Bill Fumerola, Daniel Harris, Trevor
Johnson, Remko Lodder, Simon Nielsen, Christian Peron, Wes Peters,
Josef El-Rayes, Tom Rhodes, Gregory Shapiro, Bruce Simpson, Dag-
Erling Sm?rgrav, and Robert Watson. Several of our previous security
officers have also given much help:...
2007 Dec 07
1
Added native socks support to libc in FreeBSD 7
Hi,
i added a native (client) Socks V4/V5 support inside FreeBSD libc
library. The work is based of my project (see
http://csocks.altervista.org) CSOCKS.
You can get it here:
http://csocks.altervista.org/download/FreeBSD_libc.tar.gz
CHANGES:
I changed the file:
/usr/src/lib/libc/Makefile
I added the Directory:
/usr/src/lib/libc/socks
They contains the files:
2005 Feb 03
1
need ipfw clarification
Hello,
I noticed that after enabling firewall in my kernel (5.3-release), my
dmesg now gives me this:
ipfw2 initialized, divert disabled, rule-based forwarding disabled,
default to accept, logging limited to 5 packets/entry by default
On 5.2.1, I used to get this:
ipfw2 initialized, divert disabled, rule-based forwarding enabled,
default to accept, logging disabled
If both cases, I am
2005 Oct 26
1
Non-executable stack
Hi all
Does FreeBSD support a non-executable stack on any of the tier 1 and 2
platforms that has this feature?
If not, are there any plans of implementing this and is there a patch I can
use for 6.0 (when it is released)?
Best regards
db
2008 Jul 24
0
cvs commit: src/contrib/pf/pfctl parse.y src/lib/libc/sys Symbol.map getsockopt.2 src/sbin/ipfw ipfw.8 ipfw2.c src/sys/conf NOTES options src/sys/contrib/ipfilter/netinet ip_fil_freebsd.c src/sys/contrib/pf/net pf.c pf_ioctl.c src/sys/kern init_sysent.c
This looks like a very cool feature addition to RELENG_7! Are there
any performance penalties that you know of with this built in ?
---Mike
At 09:13 PM 7/23/2008, Julian Elischer wrote:
>julian 2008-07-24 01:13:22 UTC
>
> FreeBSD src repository
>
> Modified files: (Branch: RELENG_7)
> contrib/pf/pfctl parse.y
> lib/libc/sys Symbol.map getsockopt.2
> sbin/ipfw ipfw.8 ipfw2.c
> sys/conf...
2003 Mar 31
5
rfc3514 - Security Flag in the IPv4 Header
Any chance of this being implemented in fbsd? Could be usefull ;-)
ftp://ftp.rfc-editor.org/in-notes/rfc3514.txt
--
:{ andyf@speednet.com.au
Andy Farkas
System Administrator
Speednet Communications
http://www.speednet.com.au/
2006 Mar 13
5
DSD Approved Products
Hi,
I am considering installing several `servers' in a facility that needs
to conform
with the products listed at: DSD Approved Products
http://www.dsd.gov.au/infosec/evaluation_services/epl/dap.html
As far as i can see freebsd performs above and beyond, for all the required
criteria in the act. Can we see freebsd listed as an approved product in the
near future?
Best Regards,
Jason - RF
2013 Oct 28
1
[heads up] axing AppleTalk and IPX/SPX
Hello!
[Cc to stable@, for wider audience]
The plan is two axe two old networking protocols from FreeBSD head/,
meaning that FreeBSD 11.0-RELEASE, available in couple of years would
be shipped without them.
1) AppleTalk
Last time claimed to be supported by vendor in 2007[1]. In practice
had very little use since 90th.
Discontinued by major routing equipment vendors since 2009[2].
2006 Oct 01
4
HEADS UP: FreeBSD 5.3, 5.4, 6.0 EoLs coming soon
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello Everyone,
On October 31st, FreeBSD 5.3 and FreeBSD 5.4 will have reached their
End of Life and will no longer be supported by the FreeBSD Security
Team. Users of either of those FreeBSD releases are strongly encouraged
to upgrade to FreeBSD 5.5 or FreeBSD 6.1 before that date.
In addition, the FreeBSD 6.0 End of Life is presently scheduled
2013 Aug 27
6
Suggest changing dirhash defaults for FreeBSD 9.2.
I have been experimenting with dirhash settings, and have scoured the internet
for other peoples' experience with it.
(I found the performance improvement in compiling has forestalled the need to
add an SSD drive. ;-)
I believe that increasing the following values by 10 would benefit most FreeBSD
users without disadvantage.
vfs.ufs.dirhash_maxmem: 2097152 to 20971520
2013 Dec 04
3
BIND segway -> python -> first-class ports
On 12/4/13, 9:05 AM, Mark Felder said:
-----------------
> There was no alternative; we couldn't keep BIND in base. BIND 9 will
> certainly have a EoL before the EoL of FreeBSD 10.x, and we can't use
> BIND 10 because it requires importing Python to base.
I'm coming more and more to the conclusion that we should have a minimal Python in "base".
More and more people
2008 Mar 11
0
PCBSD & X11 ugh
So, I tried out PCBSD on a Dell "DHP" (what ever that is) (made feb '05).
it installs great
but when I run boot it, (FreeBSD comes up fine) teh X server goes into
an infinite loop somewhere.
168 root 1 0 0 148M 6976K rdnrel 0:57 93.85% Xorg
and the screen stays black.
the fan goes onto "tornado" mode and it just sits there.
attempting to send a
2006 Sep 05
0
Wednesday's BAFUG talk.. Nate Lawson on ACPI. Part 2
Nate Lawson, having told us before about ACPI in general,
tells us about the specifics about the FreeBSD implementation.
Thos will be recorded as usual and netcast live for those interested but
remote.
See www.bafug.org for more details.
(Timezone is 7 hours behind UTC)