search for: hboeck

...ress sanitizer. I'll attach the address sanitizer and valgrind output. Reproduce: dd if=/dev/zero of=zero bs=1 count=1 valgrind -q ssh -F zero x This was found while fuzzing ssh with american fuzzy lop. (Please CC me on replies, I'm not subscribed to the list.) cu, -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: ssh-stackoverflow-asan.txt.gz Type: application/gzip Size: 958 bytes Desc: not available URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20...

...at mindrot.org> wrote: > What version of OpenSSH is this? 6.8 portable on Linux. > Also, when reporting fuzzer-derived problems it really helps to > include the test-case. The "test case" is a one byte file containing a zero byte. But here it is :-) -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 819 bytes Desc: OpenPGP digital signature URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachmen...

...t of the screen (so the cube turns) the window seems to flip to the other side of the screen and back. This doesn't happen with 0.5. If required, I could try to make a film out of it. Any ideas what is wrong? I'd prefer to have this fixed before 0.6. -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber: hanno at hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part. Url : http://lists.freedesktop.org/archives/compiz/attachmen...

...what this is for? What does bgo 323968 mean? Is this a bug number? It isn't in the fdo-bugzilla. The reason I'm investigating this is that I'd like to use gentoos own autoreconf-macros and avoid running autogen.sh. Without these lines, this fails. -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber: jabber@hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.freedesktop.org/archives/compiz/attachments/20060628/13bf1668/attachme...

...seems ok, but website defaced and download dead - csm: doesn't work with vanilla compiz So: Is there any tool atm to set the compiz gconf options with some nice dialoges? And if it's only someone sending me the archives of gset-compiz and compiztools. -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber: jabber@hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.freedesktop.org/archives/compiz/attachments/20060928/7172f6b1/attachme...

If compiled with LDFLAGS="-Wl,--as-needed", compiz fails to correctly link the png-plugin. Attached patch fixes it (though I don't know if this is the correct way to do this in autotools). -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber: jabber at hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: compiz-as-needed.diff Type: text/x-diff Size: 362 bytes Desc: not available Url : http://lists.freedesktop.org/archives/compiz/attachments/20070708/0ee52316/attachment....

...w 0x1600008 to texture compiz: pixmap 0x200008d can't be bound to texture compiz: Couldn't bind redirected window 0x2200005 to texture compiz: pixmap 0x200008b can't be bound to texture compiz: Couldn't bind redirected window 0x1600008 to texture -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber: jabber@hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.freedesktop.org/archives/compiz/attachments/20070307/7cd867d7/attachme...

On Sun, 29 Mar 2015, Nico Kadel-Garcia wrote: > On Sun, Mar 29, 2015 at 6:36 PM, Hanno B?ck <hanno at hboeck.de> wrote: > > On Mon, 30 Mar 2015 09:19:02 +1100 (AEDT) > > Damien Miller <djm at mindrot.org> wrote: > > > >> What version of OpenSSH is this? > > > > 6.8 portable on Linux. > > There are a *lot* of Linux flavors. Which one? That doesn't...

...? What is the crash message you are seeing? both openssl and dovecot latest (1.0.2a, 2.2.16) on a Gentoo. Please note that it's not dovecot itself that's crashing but pop3-login/imap-login. You don't note these if you haven't some kind of segfault reporting. -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 819 bytes Desc: OpenPGP digital signature URL: <http://dovecot.org/pipermail/dovecot/attachments/20150426/c89...

...libopenssl, that does not > have support for sslv3 compiled in. I have been made aware, that we > have a fix for Dovecot in the works. No that's not true. I have explicitely tried that. You just need to *disable* SSLv3, but that can be done within the config file. -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 819 bytes Desc: OpenPGP digital signature URL: <http://dovecot.org/pipermail/dovecot/attachments/20150426/067...

...e value). However these strings can be empty. This can be fixed by changing ++mask to mask++ (and same for data), then there must be a -=2 instead of -- afterwards. See attached patch. I found this by compiling dovecot with address sanitizer and running the test suite. cu, -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: dovecot-2.2.18-oob-wildcard-match.diff Type: text/x-patch Size: 506 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20150627/7ef...

A bypass for screensaver password dialogs has been found within compiz. What about it? Ubuntu created a patch, gentoo took the same: https://bugs.gentoo.org/show_bug.cgi?id=196878 -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail: hanno at hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part. Url : http://lists.freedesktop.org/archives/compiz/atta...

Hi David, --use-cow seems to be quite stable on all variations of tfp (xgl, aiglx, nvidia), I think it was the plan to default-enable it. Do you think it's ready for that? Want a patch? -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber: jabber@hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.freedesktop.org/archives/compiz/attachments/20061004/693b2806/attachme...

I'll try to get a stable 0.2 release out in the next couple of days. There will be a 0.2 branch and the idea is that the ABIVERSION will never change in this branch. If we need to extend the core in some way, we can always use the 'privates' system for that. I might want to include metacity theme support if I can get that working very soon but other than that I'd like to avoid

laverne compiz # ./autogen.sh --disable-gconf [...] checking for GNOME_WINDOW_SETTINGS... yes checking for KDE_WINDOW_DECORATOR... yes configure: error: conditional "GCONF_SCHEMAS_INSTALL" was never defined. Ideas? -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber: jabber@hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.freedesktop.org/archives/compiz/attachments/20060928/b1dc98be/attachme...

...y users use them, but at the moment I can't see which port my users use. I haven't found an easy way to detect that. The easiest thing would be if there'd be a way to add the port number to the pop3-login/imap-login lines in the log files. Any way to do that? cu, -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20140425/ba463bf3/attach...

...is possible that the problem is related to their DoS-attack > modification, which has most probably unexpected side-effect. Maybe this is related to the DDoS-protection measures that have been added in dovecot 2.2.13. Would apprechiate if someone could have a look. cu, -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20140616/06084693/attach...

...ecks. Instead of checking for the version number it checks for the availability of the feature itself (by checking for the define of SSL_CTRL_SET_ECDH_AUTO). This should make this check more robust and work independently of the version number of the used openssl instance. cu, -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: dovecot-ecdh-auto.diff Type: text/x-patch Size: 3068 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20140722/93275cd4/attachmen...

...h of xf86-video-nouveau (?) I asked in irc but was pointed that it's not the right place to ask, though I didn't find any information in the wiki. Can someone give me some pointers? I'd volunteer to write some wiki documentation if I get it running. -- Hanno B?ck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail: hanno at hboeck.de -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part. Url : http://lists.freedesktop.org/archives/nouveau/att...

...ed: the libressl-arc4random.c doesn't have the arc4random_stir()-function, I copied that back from the openssh-arc4random.c. Works so far, see attached patch. An alternative would be to check for the availability of arc4random in libcrypto and use that if available. cu, -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: openssh-arc4random.diff.gz Type: application/gzip Size: 3055 bytes Desc: not available URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/2014...