search for: mallory

Displaying 13 results from an estimated 13 matches for "mallory".

2008 Jul 24
6
6TB SCSI RAID vs. Centos
...have an Infortrend RAID box I'd like to see as one big 6TB partition, but I only can get 2.2TB partitions to work. I was trying to do this with an Adaptec controller but apparently they are only (any of them) 48 bits wide. Does anybody have a working system for SCSI/Centos over 2.2TB? Milt Mallory Topix.com 650-461-8316 Always consider the issues of progressive enhancement and graceful degradation (from Dom Scripting manual) -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20080724/64f30ee6/atta...
2002 Jan 18
5
contrib/solaris/opensshd.in patch
This patch adds the seatbelts which _only_ kill parent sshd procs... -RMallory (eg: when you ssh into a machine and pkgadd the new openssh, it will not kill your current (or anyone else's sshd session) onanother_note: the buildpkg.sh could use some exec_prefix functionality... to deal with ./configure --prefix= --exec_prefix=/usr *** bak/opensshd.in Fri Oct 19...
2018 Sep 06
1
cran-r debian readme used to include security flaw
I had to bust the cache on one of my Docker images and when I rebuilt it I noticed something rather concerning from the `apt-get install` step: gpg: requesting key E084DAB9 from hkp server ha.pool.sks-keyservers.net gpg: key E084DAB9: public key "Totally Legit Signing Key < mallory at example.org>" imported gpg: key E084DAB9: public key "Michael Rutter <marutter at gmail.com>" imported gpg: Total number processed: 2 gpg: imported: 2 (RSA: 2) The "Totally Legit Signing Key" didn't look so totally legit to me. It turns out i...
2011 Feb 11
11
CSRF protection in rails 2.3.11
Hi all, I think CSFR protection broke in rails 2.3.11. As in: it''s turned off now. I tried this in rails 2.3.10 and in 2.3.11 and 2.3.11 seems broken. >rails csrftest >cd csrftest >script/generate scaffold post title:string >rake db:migrate now I visit /posts/new in my browser, use firebug to delete or change the authenticity token, and submit the form. rails 2.3.11: all
2015 May 27
4
[Bug 2302] with DH-GEX, ssh (and sshd) should not fall back to unconfigured DH groups or at least document this behaviour and use a stronger group
...y to go (and without much of a security cost). but i'd like to > know if there's a reason other than blind-spec-compliance. Pointers? > > Regards, > > --dkg One reason the generator of the full (Z/pZ)* is avoided is because knowledge of g^a and g^b (both known to Mallory) leaks information about the shared secret g^(ab) via their legendre symbols. This is particularly troublesome in the context of El Gamal. I don't have a reference to recommend off-hand but you might want to google for "decisional diffie hellman assumption". --mancha ------------...
2008 Jun 27
1
PCI express ether cards
Greetings. I'm looking for recommendations for a PCI Express ethernet card that works with Centos5. Kernel is: Linux mgw1.topix.net 2.6.18-53.1.4.el5PAE #1 SMP Fri Nov 30 01:21:20 EST 2007 i686 i686 i386 GNU/Linux Milt Mallory Topix.com 650-461-8316 Always consider the issues of progressive enhancement and graceful degradation (from Dom Scripting manual) -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20080626/432873fc/atta...
2012 Jan 27
4
Puppet agents stop reporting after master runs out of disk space...
...robably in part do to logging. I have log rollers running, which eventually freed up some disk space, but the 60 hosts, have not resumed reporting. If I dig into the logs on one of the failing agents, there are no messages from puppet, past 4am (here is a snippet of my logs): Jan 27 02:44:25 kmallory3 puppet-agent[15340]: Using cached catalog Jan 27 02:44:25 kmallory3 puppet-agent[15340]: Could not retrieve catalog; skipping run Jan 27 03:14:30 kmallory3 puppet-agent[15340]: Could not retrieve catalog from remote server: Error 400 on SERVER: No space left on device - /var/lib/puppet/yaml/fac...
2009 Aug 27
13
User's and managing expired passwords
We have a policy that requires all user passwords to expire after 90 days. We also use puppet for managing all users on our machines. Our hope was, when our passwords expire, we could update the puppet manifest which would propogate to all our servers, thus updating all our passwords. The problem is, the User type (w/ manage_passwords enabled and ruby- shadow installed) will only set the
2003 Nov 27
0
[Announce] GnuPG's ElGamal signing keys compromised
...e 20 keys: =================================== We have to distinguish between two cases: The primary key is ElGamal sign+encrypt versus just a subkey is ElGamal sign+encrypt. The first case requires immediate attention, like this one: $ gpg --list-keys xxxxxxxx pub 2048G/xxxxxxxx 2001-xx-xx Mallory <mallory@example.net> such a key might be followed with additional "uid", "sig" or "sub" lines. Here an ElGamal sign+encrypt key is used and very likely created with GnuPG >= 1.0.2. The capital letter "G" indicates a ElGamal sign+encrypt key. REV...
2004 Aug 06
1
a new directory service
> #2 To Jack.. Anyone who has an interest in promoting their station above > others has an interest in this. If they can either (as currently) lie > about listener counts to rocket to the top of the list, or (in a listener > count-less system) do something like hijack or fake out other connections > to say.. blank out the correct URL, or update the server with meaningless >
2019 Nov 21
4
[Sieve] Multiple email recipients, how?
Hi, First, I am very new to using Pigeonhole/Sieve with Dovecot and I am struggling with a problem which could be easy to solve but is just a lack of understanding on my end... We use a simple system for routing emails to different email users by postfixing the addresses with the actual user: xxxJohn at domain; yyyJohn at domain etc all will be delivered to user John. (This way John can
2008 Apr 01
12
undefined method `time_zone=' on Rails 2.0.2.9129 on Mac OS X
I just did a gem update and it broke my rails application. I had to go back to 2.0.2, because 2.0.2.9129 produces this error on Mac OS X Leopard: /Users/nicholas/RubyDev/dummy/config/environment.rb:38: undefined method `time_zone='' for #<Rails::Configuration:0x12c9f24> (NoMethodError) from /Library/Ruby/Gems/1.8/gems/rails-2.0.2/lib/initializer.rb:47:in `run'' from
2005 Nov 26
7
Reflections on Trusting Trust
or "How do I know my copy of FreeBSD is the same as yours?" I have recently been meditating on the issue of validating X.509 root certificates. An obvious extension to that is validating FreeBSD itself. Under "The Cutting Edge", the handbook lists 3 methods of synchronising your personal copy of FreeBSD with the Project's copy: Anonymous CVS, CTM and CVSup. There are