search for: sperl

Red Hat Software has been notified of a critical security problem (a buffer overrun) in /usr/bin/sperl*. As no official fix for this problem exists, we recommend turning off the setuid bit on /usr/bin/sperl*. As far as we know, this problem affects all platforms and all versions. As soon as a fix is available we will release a new version of the perl package and announce it here. If no fix seems fo...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ______________________________________________________________________________ Caldera Systems, Inc. Security Advisory Subject: sperl vulnerability Advisory number: CSSA-2000-026.0 Issue date: 2000 August, 7 Cross reference: ______________________________________________________________________________ 1. Problem Description sperl is a setuid copy of the perl interpreter that can be used to execute perl scripts with t...

Hey at all, my Name is Jens-Uwe Sperling. Iám a young student in computer science. I want install a VM for testing at home. i had install a VM with virt-install and the default parameters. (Number cpu, mem etc.) After that i install my OS and configure it. Now i want work on this image in a transient way. So i can use the OS with th...

...Is there a way that a user can change his/her own SMBPASSWORD and/or UNIX (Linux) password without having to grant SSH access to the Samba server box? I thought I saw mention of a utility but it appeared to be deprecated. Any assistance with this matter would be greatly appreciated! TIA, Gregg Sperling gs-list@glsrms.com

On Fri, Sep 11, 2015 at 04:03:20PM +0200, Michal Privoznik wrote: > On 11.09.2015 11:34, Mcburn wrote: > > Hey at all, > > > > my Name is Jens-Uwe Sperling. Iám a young student in computer science. > > I want install a VM for testing at home. > > > > i had install a VM with virt-install and the default parameters. (Number > > cpu, mem etc.) > > > > After that i install my OS and configure it. > > > &g...

...a setuid Perl script (yes, I am aware about the security implications), but am getting this error: % cat testsetuid.pl #!/usr/bin/perl -UT print "My real user id is $< but my effective user id is $>\n"; exit(0); % ./testsetuid.pl Can't do setuid (cannot exec sperl) I am using the stock Perl that came with CentOS 4.5. The problem I am trying to solve is to run a software build as a particular user. We want any user to be able to submit a build job that runs on the build machine as the designated build user. If there is a better way to do this, I...

...and what is it used for? I haven't find anything about it in pam documentation. Is it really necessary to ship /usr/bin/gpasswd and /usr/bin/newgrp? Does anybody really use them on Linux? Maybe these should be extras ... (maybe they are needed by POSIX or something similar). What is /usr/bin/sperl5.00503 (suidperl) being used for? Why this doesn't have a manpage? Is it necessary? According to glibc documentation /usr/libexec/pt_chown doesn't need to be setuid nor is not used at all on RH6.2 (see /usr/doc/glibc-2.1.3/INSTALL), why does RH6.2 ships it setuid root? Does /sbin/netrepor...

...e of these packages, you may need to have a newer version of RPM installed. Information about obtaining the new version of RPM is included in RHSA-2000:051. 5. Bug IDs fixed (http://bugzilla.redhat.com/bugzilla for more info): 15625 - Root exploit alread posted on bugtraq 15630 - Root exploit in sperl 15641 - suidperl has a major problem 6. RPMs required: Red Hat Linux 5.0: Red Hat Linux 5.2: sparc: ftp://updates.redhat.com/5.2/sparc/mailx-8.1.1-16.sparc.rpm ftp://updates.redhat.com/5.2/sparc/perl-5.004m7-2.sparc.rpm alpha: ftp://updates.redhat.com/5.2/alpha/mailx-8.1.1-16.alpha.rpm ftp://...

On 11.09.2015 11:34, Mcburn wrote: > Hey at all, > > my Name is Jens-Uwe Sperling. Iám a young student in computer science. > I want install a VM for testing at home. > > i had install a VM with virt-install and the default parameters. (Number > cpu, mem etc.) > > After that i install my OS and configure it. > > Now i want work on this image in a tr...

Hello, I would like to allow people to type some text into a webpage and then have that text passed to the controller (e.g. for use by a search routine). The following code has an input box in a form. What would I put in the "title" parameter to have that passed to the controller? When I put in a constant string it works but when I put in things like

...n directory to world-writeable and handing the path to sa-learn with the --dbpath parameter. That failed - the IMAP client says "Move not allowed" when I try to move a message to or from the Spam IMAP folder. (2) making a suid copy of sa-learn with owner amavis. This failed because of an sperl error. (3) editing sudoers to allow 'sudo -u amavis sa-learn' without a password. This works fine on the command line, but fails with the same error as (1) when used with the plugin. Although I compiled the plugin from git with debugging to syslog activated, I do not get any error message...

...ll read from the environment. 4. Solution: For each RPM for your particular architecture, run: rpm -Fvh [filename] where filename is the name of the RPM. 5. Bug IDs fixed (http://bugzilla.redhat.com/bugzilla for more info): 15625 - Root exploit alread posted on bugtraq 15630 - Root exploit in sperl 15641 - suidperl has a major problem 6. RPMs required: Red Hat Linux 5.0, 5.1, 5.2: sparc: ftp://updates.redhat.com/5.2/sparc/mailx-8.1.1-16.sparc.rpm ftp://updates.redhat.com/5.2/sparc/perl-5.004m7-2.sparc.rpm alpha: ftp://updates.redhat.com/5.2/alpha/mailx-8.1.1-16.alpha.rpm ftp://updates.re...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I''ve just discovered that trying to pass traffic from multiple interfaces through the same imq is a Bad Thing(tm). A quick search of "HTB IMQ panic" showed me older posts on this list saying that it''s simply incorrect to pass such traffic through the same imq dev. I''m now back to square one on using the linux

In a ADS(Adv Serv 2003) setup with a few linux members, I'd like to achieve consistent UIDs for domain users across these linux machines, and idmap_rid seems to be exactly what I'm looking for. However, I cannot get winbind to create uids or gids from SIDs at all. Any hints? --Erik S. Johansen ares samba # smbd -V Version 3.0.10 ares samba # pwd /var/cache/samba ares samba # rm *.tdb

I have a gentoo 2.6.14 box with 4 nics, LAN/DMZ/PUB1/PUB2 LAN and DMZ have a 1918 /22 each, PUB1 and PUB2 have a /29 each of which 5 ips are assigned. Using the mangle table, I give all packets a mark (according to local policies) in the range 1-10. Using ip rule, i pass marks 1-5 through the pub1 route table, and marks 6-10 through the pub2 routing table. Using the nat table, I SNAT to one