search for: netspac

..." can be clueless enough never to have heard of IP source routing... (which also has other cool features, like falsification of recipients to bypass firewalls). Naturally there is no CERT announcement due the lack of any action. Duncan (-: ------- Forwarded Message >From owner-bugtraq@NETSPACE.ORG Sun Jul 19 13:08:00 1998 Received: from io.stargate.co.uk (root@io.stargate.co.uk [192.168.1.1]) by io.stargate.co.uk (8.8.8/8.7.3) with ESMTP id NAA26050 for <dps@IO.STARGATE.CO.UK>; Sun, 19 Jul 1998 13:07:59 +0100 Received: from mail1.astra.co.uk by io.stargate.co.uk (fetchmail-4.3...

...to start: / /usr (nosuid,nodev,ro) /usr/local (nosuid,nodev,ro) /usr/local/sbin (nodev,ro) /tmp (nosuid,noexec,nodev) /var (nosuid,noexec,nodev) /opt (nosuid,nodev,ro) /services (nosuid,noexec,nodev) /home (nosuid,nodev) Alex ------- Forwarded Message Return-Path: owner-bugtraq@netspace.org Reply-To: C0WZ1LL4@netspace.org Sender: Bugtraq List <BUGTRAQ@netspace.org> From: C0WZ1LL4@netspace.org Approved: alex@yuriev.com To: BUGTRAQ@netspace.org Hello fellow mongoloids Try this: Make hard link of /etc/passwd to /var/tmp/dead.letter Telnet to port 25, send mail from some bad e...

---------- Forwarded message ---------- Received: from brimstone.netspace.org (brimstone.netspace.org [128.148.157.143]) by blues.jpj.net (backatcha) with ESMTP id CAA13949; Fri, 14 Nov 1997 02:08:13 -0500 (EST) Received: from unknown@netspace.org (port 25452 [128.148.157.6]) by brimstone.netspace.org with ESMTP id <818-20257>; Fri, 14 Nov 1997 01:41:22 -0500 Rece...

Hi, This is FYI. Lets not start discussion on a topic of "my fingerd is better than yours". Alex ------- Forwarded Message Return-Path: owner-bugtraq@NETSPACE.ORG Message-ID: <199705240145.WAA11413@morcego.linkway.com.br> Date: Fri, 23 May 1997 22:45:04 -0300 Reply-To: Rodrigo Barbosa <rodrigob@MORCEGO.LINKWAY.COM.BR> Sender: Bugtraq List <BUGTRAQ@NETSPACE.ORG> From: Rodrigo Barbosa <rodrigob@MORCEGO.LINKWAY.COM.BR> Approved: al...

And, here''s a fix. -----Original Message----- From: David Zhao <dzhao@LURK.KELLOGG.NWU.EDU> To: BUGTRAQ@NETSPACE.ORG <BUGTRAQ@NETSPACE.ORG> Date: Sunday, May 17, 1998 3:00 PM Subject: simple kde exploit fix >in kdebase/kscreensaver/kscreensave.cpp: > >change: >line 18: strcpy( buffer, getenv("HOME") ); > to > strncpy( buffer, getenv(&qu...

------- start of forwarded message (RFC 934 encapsulation) ------- From: kevingeo@CRUZIO.COM Sender: Bugtraq List <BUGTRAQ@NETSPACE.ORG> To: BUGTRAQ@NETSPACE.ORG Subject: Quake 2 Linux 3.13 (and lower) allow users to read arbitrary files Date: Wed, 25 Feb 1998 05:49:58 -0500 Reply-To: kevingeo@CRUZIO.COM Vulnerable: Everyone who followed the installation instructions and made Quake2 setuid root. Exploit: Quake2 read...

Hello All, I've tried researching around on the 'net for an answer to this, but haven't had any luck. Here's some information on the system first: AMD XP 1700 CPU 768 MB DDR Ram (old though, think it's PC 2100) Running Kubuntu 6.06 (Ubuntu Dapper Drake) Using Wine 0.9.19 I've been trying to install Command and Conquer: Red Alert (I have the Domination Pack that includes

------- start of forwarded message (RFC 934 encapsulation) ------- From: Joe Zbiciak <im14u2c@cegt201.bradley.edu> Approved: alex@bach.cis.temple.edu Sender: Bugtraq List <BUGTRAQ@netspace.org> To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org> Subject: Buffer overflow in Linux''s login program Date: Sun, 22 Dec 1996 09:27:24 -0600 Reply-To: Joe Zbiciak <im14u2c@cegt201.bradley.edu> Hello all, I was browsing through my local copy of the uti...

...Phone: +44 1684 894644 +MIME+ +QMAIL+ +PGP+ - ------- Forwarded Messages Date: Sat, 26 Jul 1997 18:08:00 -0600 Subject: Multiply bugs in MH-6.8.3 (Mail Handler program) From: Matt Conover <shok@COBRA.ONLINEX.NET> To: BUGTRAQ@NETSPACE.ORG Message-ID: <33DA915F.35ED2B71@onlinex.net> Okay there is an overflow in MH-6.8.3, which is suid, which I THINK (not sure), is installed, at least in Redhat 4.1+, by default (I think this is installed within the mail package regardless of distribution, but I never specifically installe...

---------- Forwarded message ---------- Date: Tue, 30 Jun 1998 15:10:47 +0800 From: David Luyer <luyer@UCS.UWA.EDU.AU> To: BUGTRAQ@NETSPACE.ORG Subject: Serious Linux 2.0.34 security problem I just saw this mentioned on linux-kernel and confirmed it; #include <fcntl.h> #include <errno.h> #include <stdio.h> #include <stdlib.h> #include <unistd.h> int main(int argc, char *argv[]) { int s, p; if(argc...

...ping make that come true.) --Up. ------------------------------------------------------------------ Forwarding headers mangle patches. Mind the gap. --Up. ------- start of forwarded message (RFC 934 encapsulation) ------- From: Aleph One <aleph1@DFW.NET> Sender: Bugtraq List <BUGTRAQ@NETSPACE.ORG> To: BUGTRAQ@NETSPACE.ORG Subject: Linux F00F Patch Date: Wed, 12 Nov 1997 18:45:15 -0600 Reply-To: Aleph One <aleph1@DFW.NET> This are the relevant parts of the linux kernel 2.1.63 patch that fix the Pentium bug that Alan mentioned. Aleph One / aleph1@dfw.net http://undergrou...

...ET>----- MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Message-ID: <01BC5D8D.679DD4A0@frank56.pcisys.net> Date: Sat, 10 May 1997 21:56:05 -0600 Reply-To: David Phillips <phillips@PCISYS.NET> Sender: Bugtraq List <BUGTRAQ@netspace.org> From: David Phillips <phillips@PCISYS.NET> Subject: Linux UID/GID ''Feature'' To: BUGTRAQ@netspace.org I mailed this to a friend as a sanity check: While trying to make a user entry in the /etc/passwd file unrecognized so I could demonstrate the use of valid UI...

...end everyone to just look over their daemons, and run something like nessus against theirselves... Greetings, Jan-Philip Velders ---------- Forwarded message ---------- Date: Thu, 25 Mar 1999 16:26:59 -0700 From: "Ben Cantrick (Macky Stingray)" <mackys@MACKY.RONIN.NET> To: BUGTRAQ@NETSPACE.ORG Subject: ADM Worm. Worm for Linux x86 found in wild. 1. Summary On the week of 3/7, a polite mail from a system administrator at a company in Russia tipped me off to one of our Redhat boxes portscanning one of their subnets. Subsequent investigation found that a worm had infected the offen...

...isn't resizable. Is there any other solution (eg some integration into a gnome-panel, some configuration file option) to make this easier to use? Wine 20050211 (but this has occurred as long as I remember using wine...) gentoo, fedora, redhat, any version. MTIA, -- Iain Buchanan <iaindb@netspace.net.au>

...nt / language. I can't see any language option in the wine config file, nor does google provide any help. I even moved my .wine directory, just in case, but the language still looks the same. Any help would be appreciated on changing this back to english, Thanks. -- Iain Buchanan <iaindb@netspace.net.au>

I've just had polarity reversal provisioned by our telco to test hangup detect with a TDM400P I've set hanguponpolarityswitch=yes in zapata.conf When I start Asterisk I get "ignoring hanguponpolarityswitch" in /var/log/asterisk/messages I assume that the option is either not valid or conflicts with another setting somewhere. Any ideas?

Hi!! Of late, I'm getting a lot of un-solicited mails from this list, and inspite of un-subscribing mails, messages, threats , nothing really seems to work... My question: 1. Is there any way I can 'avoid' or 'bounce' incoming messages at the mail-server level?? 2. I cannot change my address (alias) as such... since this involves sending reminders to God knows how many

...warded message ---------- From: dumped <dumped@SEKURE.ORG> Subject: ipop2d buffer overflow fix Resent-Subject: ipop2d buffer overflow fix Date: Thu, 3 Jun 1999 17:29:05 -0300 Resent-Date: Fri, 4 Jun 1999 00:52:49 -0500 (CDT) Resent-From: Ron DuFresne <dufresne@winternet.com> To: BUGTRAQ@netspace.org Resent-To: dufresne <dufresne@darkstar.sysinfo.com> This patch fixes the buffer overflow previously pointed by Thiago. diff -Nur imap-4.4.orig/src/ipopd/ipop2d.c imap-4.4/src/ipopd/ipop2d.c --- imap-4.4.orig/src/ipopd/ipop2d.c Thu Jun 3 18:35:15 1999 +++ imap-4.4/src/ipopd/ipop2d.c T...

Hi, some more info on the previous admw0rm alert. Fwd'd from BugTraq Greetings, Jan-Philip Velders ---------- Forwarded message ---------- Date: Fri, 26 Mar 1999 21:17:40 +0100 From: Mixter <mixter@HOME.POPMAIL.COM> To: BUGTRAQ@NETSPACE.ORG Subject: Re: ADM Worm. Worm for Linux x86 found in wild. The "ADM w0rm" is public and can be found at: http://adm.isp.at/ADM/ADMw0rm-v1.tar The public version solely exploits the name server iquery bug, although it is fairly easy to make it exploit ANY remote vulnerability. (Put in...

...; /( )\ U ________________________________|____________________________________ ^`~'^__X_ - --- Forwarded mail from Cory Visi <visi@CMU.EDU> Date: Tue, 16 Feb 1999 02:22:56 -0500 From: Cory Visi <visi@CMU.EDU> Subject: RedHat sysklogd vulnerability To: BUGTRAQ@NETSPACE.ORG Reply-to: Cory Visi <visi@CMU.EDU> I'd like to apologize for being so late with this e-mail as I have known about this problem for months. The vulnerability was discussed in a Thu, 10 Sep 1998 BugTraq e-mail by Michal Zalewski (lcamtuf@IDS.PL). I replied to it with a quick patch. He...