search for: teardrop

...7 route|daemon9 <route@infonexus.com> 11.3.97 * * Linux/NT/95 Overlap frag bug exploit * * Exploits the overlapping IP fragment bug present in all Linux kernels and * NT 4.0 / Windows 95 (others?) * * Based off of: flip.c by klepto * Compiles on: Linux, *BSD* * * gcc -O2 teardrop.c -o teardrop * OR * gcc -O2 teardrop.c -o teardrop -DSTRANGE_BSD_BYTE_ORDERING_THING */ #include <stdio.h> #include <stdlib.h> #include <unistd.h> #include <string.h> #include <netdb.h> #include <netinet/in.h> #include <netinet/udp.h> #include &l...

...the network layer on NT goes away. You can still operate the console, but no net traffic. This is NT workstation and server 4.0 with sp3. The UNIX samba server is Solaris 2.5 with the latest samba version (1.9.18p8?) also with other samba versions. I tried updating the NT tcpip stack with the teardrop fix (hoping that someone would have found this little bug) but no go. The machine has a 3c595 NIC in case that matters. I don't THINK the machine crashes except when being accessed like this via smbclient, although it did crash once when copying from this machine to a samba server via a third...

Question, there are the teardrop, ping of death, DoS and a host of other forms of attacks. While all of the research that I have been doing concerning another form of an attack.... I became sorta stumped on an idea... is there anywhere.... a description on what to expect or what happenes during any one of these or other attacks...

Jean-Marc Valin <jean-marc.valin at usherbrooke.ca> writes: > On 2010-04-03 23:56, Randy Yates wrote: >> The sentence "Unlike some other speech codecs, it is possible to control >> the tradeoff made between quality and bit-rate" implies to me that they >> are NOT the same thing. > > This sentence should read: "tradeoff made between quality and

I am running Linux 2.0.30 (Redhat 4.2) and have recently been hacked. I have tightened up security but still feel vulnerable. In running the program mscan which was kindly left on my system I get this. bullnet.co.uk: VULN: linux box vulnerable to named overflow. 194.242.135.145: VULN: redhat linux box running imapd. This is after upgrading to the versions as below. bind-4_9_7-0

...onsole, but no net traffic. This >> >is NT workstation and server 4.0 with sp3. The UNIX samba server is >> >Solaris 2.5 with the latest samba version (1.9.18p8?) also with other >> >samba versions. >> > >> >I tried updating the NT tcpip stack with the teardrop fix (hoping that >> >someone would have found this little bug) but no go. The machine has a >> >3c595 NIC in case that matters. >> > >> >I don't THINK the machine crashes except when being accessed like this via >> >smbclient, although it did crash...

...ist >>> Speex-dev at xiph.org >>> http://lists.xiph.org/mailman/listinfo/speex-dev >>> >> -- Randy Yates % "Bird, on the wing, Digital Signal Labs % goes floating by mailto://yates at ieee.org % but there's a teardrop in his eye..." http://www.digitalsignallabs.com % 'One Summer Dream', *Face The Music*, ELO

I've put together the first attempt to defining an RDF metadata vocabulary for use with the CD Index/MusicBrainz/OggVorbis. If you care about metadata issues, please take a look at: http://www.cdindex.org/MM I've included a section for video specific stuff, but everything that I originally had in there is being covered by the MM:Contributors section. The Contributors stuff will allow

Jean-Marc Valin <jean-marc.valin at usherbrooke.ca> writes: > Quality and bit-rate are different ways of specifying exactly the same > thing. Complexity is orthogonal. That clears it up - thanks. Is this in the manual? --Randy > > Jean-Marc > > On 2010-04-03 08:28, Randy Yates wrote: >> Jean-Marc: I know you're seeing these - how about a response? >>

...com Thanks & Regards, Anjali Dayal Senior Recruiter Metabyte, Inc. Desk: 510.405. 1123 anjalid@metabyte.com www.metabyte.com *************************************************************************************************************** -----Original Message----- From: James Snow [mailto:snow@teardrop.org] Sent: Friday, February 25, 2011 7:41 AM To: Anjali Dayal Cc: freebsd-jobs-owner@freebsd.org Subject: Re: freebsd-jobs post from anjalid@metabyte.com requires approval Anjali, The position you are posting does seem like an excellent fit for the freebsd-jobs mailing list. I'm sure there ar...

...t;> >is NT workstation and server 4.0 with sp3. The UNIX samba server is >> >> >Solaris 2.5 with the latest samba version (1.9.18p8?) also with other >> >> >samba versions. >> >> > >> >> >I tried updating the NT tcpip stack with the teardrop fix (hoping that >> >> >someone would have found this little bug) but no go. The >> machine has a >> >> >3c595 NIC in case that matters. >> >> > >> >> >I don't THINK the machine crashes except when being accessed like this >&...

...ing how they released software with dozens of bugs, ensuring years of "upgrades" must have resonated with not a few system admins.] Anyhow... I'll climb down from my little soapbox. I'm simply amazed this works so damned well... speed is awesome, security is excellent (F00F bug, teardrop attacks, splatterbombs, et al, get resolved in mere days while many of those attacks can still take down my NT4SP3 server). My mom told me there was never a thing called a "free lunch" - but maybe, with a little patience and being open-minded, one can find a lunch that tastes great, is...

...t without alerting # will cause false positves with router flap # # Frag2 uses Generator ID 113 and uses the following SIDS # for that GID: # SID Event description # ----- ------------------- # 1 Oversized fragment (reassembled frag > 64k bytes) # 2 Teardrop-type attack preprocessor frag2 # stream4: stateful inspection/stream reassembly for Snort #---------------------------------------------------------------------- # Use in concert with the -z [all|est] command line switch to defeat # stick/snot against TCP rules. Also performs full TCP stream # r...

Greetings all, I''m forwarding a copy of an email I sent reporting attempted break-ins on my main server, earth.terran.org. I am forwarding this because I think it is relevant that folks watch for this kind of activity in their logs to catch people who "try doorknobs" in the middle of the night. After sending this email, I sent a talk request to the user, who was still logged

I''d like to hear some suggestions about securely administering a system remotely. Here''s the application: a project is going to scatter some server machines around the US. The server machines will be running Linux, with the only network servers being a custom application. Ignoring the separate question of physical security, how can I remotely check the system''s

On FreeBSD 4.x with HAVE_LOGIN_CAP defined the OpenSSH daemon doesn't properly follow standards. As stated in man 5 login.conf and the process followed by /usr/bin/login, "The ttys.allow and ttys.deny entries contain a comma-separated list of tty devices (without the /dev/ prefix) that a user in a class may use to access the system, and/or a list of ttygroups (See getttyent(3)