search for: netsys

More patch-o-rama :-( ---Mike >From: Michal Zalewski <lcamtuf@dione.ids.pl> >To: bugtraq@securityfocus.com, <vulnwatch@securityfocus.com>, > <full-disclosure@netsys.com> >X-Nmymbofr: Nir Orb Buk >Subject: [Full-Disclosure] Sendmail 8.12.9 prescan bug (a new one) >[CAN-2003-0694] >Sender: full-disclosure-admin@lists.netsys.com >X-BeenThere: full-disclosure@lists.netsys.com >X-Mailman-Version: 2.0.12 >List-Unsubscribe: <http://lists.n...

Has anyone around here heard of this ? ---Mike >Subject: Re: [Full-Disclosure] new ssh exploit? >From: christopher neitzert <chris@neitzert.com> >Reply-To: chris@neitzert.com >To: full-disclosure@lists.netsys.com >X-Mailer: Ximian Evolution 1.4.3.99 >Sender: full-disclosure-admin@lists.netsys.com >X-BeenThere: full-disclosure@lists.netsys.com >X-Mailman-Version: 2.0.12 >List-Unsubscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>, > <mailto:full-disclos...

...ompromised. Once a fix issues, Mailman moderators will want to do a global password change, and local list modification. -- Russ Herrold ---------- Forwarded message ---------- Date: Wed, 9 Feb 2005 18:15:02 +0000 From: John Cartwright <johnc at grok.org.uk> To: full-disclosure at lists.netsys.com Subject: full-d] Administrivia: List Compromised due to Mailman Vulnerability Hi On 7th February 2005 I was notified of a number of potentially - compromised Full-Disclosure subscriber accounts. Following an investigation it appears that the Mailman configuration database was obtained from...

You've probably already seen the latest sendmail vulnerability. http://lists.netsys.com/pipermail/full-disclosure/2003-September/010287.html I believe you can apply the following patch to any of the security branches: http://cvsweb.freebsd.org/src/contrib/sendmail/src/parseaddr.c.diff?r1=1.1.1.17&r2=1.1.1.18 Download the patch and: # cd /usr/src # patch -p1 < /path/...

You've probably already seen the latest sendmail vulnerability. http://lists.netsys.com/pipermail/full-disclosure/2003-September/010287.html I believe you can apply the following patch to any of the security branches: http://cvsweb.freebsd.org/src/contrib/sendmail/src/parseaddr.c.diff?r1=1.1.1.17&r2=1.1.1.18 Download the patch and: # cd /usr/src # patch -p1 < /path/...

...egarded Product: Portable OpenSSH Version: 3.6.1p2 Platform: ix86 OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: sshd AssignedTo: openssh-bugs at mindrot.org ReportedBy: tiaan at netsys.co.za I use RedHat 7.2 and the SSL version which ships with this. SSHD seams to have an annoying feature/bug which does not honour /etc/services. There is a program which periodically starts up on the server and when running, listens on a port registered in /etc/servives. However, when one ssh...

...cesses running; all files changed in past ten days look normal). I am cross-posting this message and the attached tcpdump packet capture file to the following places to let better people than I analyze it: openssh-unix-dev at mindrot.org secureshell at securityfocus.com full-disclosure at lists.netsys.com vulnwatch at vulnwatch.org -Jay Libove, CISSP

Hi Everyone, http://vuxml.freebsd.org/c4b025bb-f05d-11d8-9837-000c41e2cdad.html A critical vulnerability was found in lukemftpd, which shipped with some FreeBSD versions (4.7 and later). However, with the exception of FreeBSD 4.7, lukemftpd was not built and installed by default. So, unless you are running FreeBSD 4.7-RELEASE or specified WANT_LUKEMFTP when building FreeBSD from source, you

...og level = 2 max log size = 500 ldap admin dn ="cn=manager,dc=office,dc=tcomlabs,dc=com" passdb backend = ldapsam:ldap://ldap.office.tcomlabs.com ldap delete dn = no ldap user suffix = ou=users ldap group suffix = ou=groups ldap suffix = ou=netsys,dc=office,dc=tcomlabs,dc=com hide dot files = yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 oplock break wait time = 200 unix extensions = yes [ some share definitions follow after the global section ] ----- end of smb.conf ----- ----- start of log.nmbd -----...

Forwarded message: > From full-disclosure-admin@lists.netsys.com Wed Apr 21 11:49:12 2004 > To: full-disclosure@lists.netsys.com > From: Darren Bounds <dbounds@intrusense.com> > Subject: [Full-Disclosure] IETF Draft - Fix for TCP vulnerability > Date: Tue, 20 Apr 2004 18:19:58 -0400 > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: S...

Is there a way to send a message to all users currently logged into a Samba domain controller? The reason why I ask is that I have a Samba 3.x.x primary/backup domain controller setup and as soon as the system monitor detects that the primary domain controller is offline I would like to execute a command to send a domain wide message telling all domain users to save their work to the local

Using kernel 2.4.20 with the following patches ext3-scheduling-storm.patch ext3-use-after-free.patch sync_fs-fix-2.patch sync_fs-fix.patch sync_fs.patch Note: this problem started happening before applying the patches I have a small partition for / since I don't have much there. Filesystem 1k-blocks Used Available Use% Mounted on /dev/sda6 303344 98934

...1.44.2.14.2.27 RELENG_3 src/contrib/sendmail/src/parseaddr.c 1.1.1.2.2.3 src/contrib/sendmail/src/version.c 1.1.1.2.2.3 - ------------------------------------------------------------------------- VII. References <URL: http://lists.netsys.com/pipermail/full-disclosure/2003-September/010287.html > <URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0694 > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/aOHgFdaIBMps37IRAl09AKCVMKQCzC62EF7vZFnsZVoaGWpIMACfVGq0 0df1GogdqBVYUXzNBdHrwYA= =4xqj ----...

...1.44.2.14.2.27 RELENG_3 src/contrib/sendmail/src/parseaddr.c 1.1.1.2.2.3 src/contrib/sendmail/src/version.c 1.1.1.2.2.3 - ------------------------------------------------------------------------- VII. References <URL: http://lists.netsys.com/pipermail/full-disclosure/2003-September/010287.html > <URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0694 > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/aOHgFdaIBMps37IRAl09AKCVMKQCzC62EF7vZFnsZVoaGWpIMACfVGq0 0df1GogdqBVYUXzNBdHrwYA= =4xqj ----...

...src/contrib/sendmail/src/version.c 1.1.1.2.2.2 - ------------------------------------------------------------------------- VII. References <URL: http://www.cert.org/advisories/CA-2003-12.html > <URL: http://www.sendmail.com/security/ > <URL: http://lists.netsys.com/pipermail/full-disclosure/2003-March/008973.html > <URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0161 > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+h18lFdaIBMps37IRAg7lAJ9hJLEHlLsXV9Nq20Yw3E3470ZqdQCfX1Sv BBClV+coK1zwzq/zWcfejME= =eDvb -----END...

...src/contrib/sendmail/src/version.c 1.1.1.2.2.2 - ------------------------------------------------------------------------- VII. References <URL: http://www.cert.org/advisories/CA-2003-12.html > <URL: http://www.sendmail.com/security/ > <URL: http://lists.netsys.com/pipermail/full-disclosure/2003-March/008973.html > <URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0161 > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+h18lFdaIBMps37IRAg7lAJ9hJLEHlLsXV9Nq20Yw3E3470ZqdQCfX1Sv BBClV+coK1zwzq/zWcfejME= =eDvb -----END...

...tics and qr (fwd) (Prof Brian Ripley) 30. Fonts on contour maps... (John Janmaat) 31. Re: lm diagnostics and qr (fwd) (Simon Wood) 32. RE: Smooth of a time serie (Liaw, Andy) 33. RE: Fonts on contour maps... (Liaw, Andy) 34. xyplot (jinn-ing Liou) 35. Encrypted Message: Re: Application (netsys at med.uni-marburg.de) 36. RE: assignment in lists (Prof Brian Ripley) 37. Re: Fonts on contour maps... (John Janmaat) 38. Functions for bit manipulation in R/Splus (Dutky, Steve) 39. Re: xyplot (Christian Schulz) 40. Version Management for Classes as in Green Book sec 7.4? (Dr. Pet...

Diese Nachricht wurde automatisch von einem Virenschutzprogramm erzeugt. Es wurde ein Virus in Ihrer Mail mit dem erw?hnten Subject vom Thu, 26 Jun 2003 13:03:32 --0400 an herold at med.uni-marburg.de gefunden. Ihre Nachricht wurde gel?scht und nicht weitergeleitet. Bitte l?sen Sie dieses Problem und versuchen Sie es erneut. This messages was automatically created by a virus-scanning program.

Hi everyone, I'm completely new to Asterisk and before I buy any card, I would like to ask for some information. 1. We'll be using analog PSTN phone lines. Is there anything that I should ask the telecom company before I buy the card? What I mean is whether the card will be compatible with the line? 2. What about the hardware on the PC? I will be using at least a Pentium 3 with a 600 or