Displaying 20 results from an estimated 35 matches for "untainted".
2019 Apr 19
1
selftest: Perl error "Insecure $ENV{ENV} while running setgid at /home/user/src/samba-git/samba/source3/script/tests/printing/modprinter.pl line 138."
In my environment the selftest for samba3.rpc.spoolss.printer was
failing at source3/script/tests/printing/modprinter.pl(138)
with the Perl error in subject:
Insecure $ENV{ENV} while running setgid at
/home/user/src/samba-git/samba/source3/script/tests/printing/modprinter.pl
line 138
code is:
==============================
delete @ENV{'BASH_ENV'};
$ENV{'PATH'} =
2019 Sep 12
3
Taint flow tracking
Let in a program a variable 'x' is tainted. There is an assignment 'y=x'
where y is untainted.
How to check the taintflow in the output or data flow graph ?
Any suggestions?
Thank you. Have a great day.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/llvm-dev/attachments/20190912/5bb3655c/attachment.html>
2005 Jan 28
17
breakpoint not working
I keep getting:
No connection to breakpoint service at druby://localhost:42531
(DRb::DRbConnError)
Tries to connect will be made every 3 seconds...
This happens every time i run ./script/breakpointer using 0.9.5 on OSX
or Windows.
Any ideas?
2006 Apr 04
0
get quota command - Example
I know when I went looking for a complete example of how to interface
with samba's quota system there was no good ones, so here it is. I
developed this yesterday with a lot of trial and error. Feel free to
use this in any way people feel fit. With this script I can now get
correct used/free reporting based on the output of quota for both
users and groups.
I developed this because samba
2001 Oct 04
1
patch - forceshell
Attached is a simple patch which allows an auth param 'shell=' like
'command='
When specified, sshd will use this shell instead of the one in
/etc/passwd or the default shell.
This patch allows you can have some chrooted shell (actually any shell)
associated with a specific key.
You could do this with command=, but then the command given to ssh will
be ignored, and scp will not
2009 Jan 22
8
[PATCH 2/2] Enhance MTRR/PAT virtualization for EPT & VT-d enabled both
The patch attached is to set effective memory type for EPT according to the VT-d snoop control capability, and also includes some cleansup for EPT & VT-d both enabled.
Signed-off-by: Zhai, Edwin Edwin.Zhai@intel.com<mailto:Edwin.Zhai@intel.com>
Signed-off-by: Xin, Xiaohui xiaohui.xin@intel.com<mailto:xiaohui.xin@intel.com>
_______________________________________________
2010 Jun 25
1
Compromised servers, SSH keys, and replay attacks
...om the filesystem anyway.
And I presume it could capture traffic to/from the virtual terminal.
Is there any way for an attacker to replay authentication to a third
machine, accessed via the compromised machine using ssh-agent ?
If a user connects to a compromised machine using keys, but from an
untainted client, do they need to change their keys or passphrase ?
(I presume, in principle, that an attacker could steal private user keys
and machine keys from a rooted server, then subvert the DNS and entice
users to login to their own server instead. Though I'm not sure why
they'd want to do...
2006 Jul 24
2
Flash problem with RoR? missed something?
I have tried to put a flash movie inside of my RoR page and it shows up
with nothing on IEPC.
It does very well on every other type of browser but does not work with
IEPC.
I made a folder - "flash" in my public directory and have had the one
instance of it point there.
Thus my flash directory is www.rails-app.com/flash/flash.swf
Is there anything that anyone knows to help out?
2006 Apr 26
0
Validation of params
As we all know you cannot trust anything you receive from the internet.
I am wondering what the correct RoR way is to solve this. For the model
there are various validates_* methods that you can use to ensure some
integrity of that part. That is good by itself. Though it would be nice
if setting these would also result in enforcement in the database backend
itself when supported. Here I am as
2006 Mar 12
2
Find all the methods on a object in an irb session?
How can I find all the methods on an object from withing irb?
Thanks,
Joe
2007 Jun 22
1
[Bug 1245] Add support for Darwin CCAPI
http://bugzilla.mindrot.org/show_bug.cgi?id=1245
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |djm at mindrot.org
--- Comment #2 from Damien Miller <djm at mindrot.org> 2007-06-22 15:34:00 ---
Do the
2003 Dec 30
1
3.0.1/Solaris 9 - smbldap & dots in usernames
Hi All,
Is it possible to vampire across dots in usernames? I got over 1000
accounts with dots in them eg. <firstname>.<lastname>
The smbldap-tools (version 0.8.2) don't seem to like adding users and
groups with dots in them.
Any help much appreciated.
Darren
2008 Apr 29
0
get_text with safe_erb on Rails 2
After patching safe_erb to work with rails 2, I am now getting conflicts
with get_text.
When get_text gets a translated value, I recieve the tainted exception.
Has anyone come across this before and if so, where do I monkey patch to
insert the untaint() method.. :)
If no responses, I will eventually post my solution..
Thanks in advance
ilan
--
Posted via http://www.ruby-forum.com/.
2013 Jan 14
0
[LLVMdev] Obsolete PTX is NOT completely removed in 3.2 release
...ore that. I have been doing release engineering
for about 1.5 decades now. One of the things you DO NOT do is
replace a tarball. Machines get compromised. Good distributions
get replaced with tainted versions. One of the few ways the rest
of the world has some assurance that they are getting a untainted
version is that what you get now is what you got when the product
was first released. One of the way a site learns that it has been
compromised is tarballs changing.
Yes, the replaced tarball is signed with your signature but I don't
know you from a bar of soap. I don't know what your re...
2013 Jan 17
0
[LLVMdev] Obsolete PTX is NOT completely removed in 3.2 release
...en doing release engineering
> for about 1.5 decades now. One of the things you DO NOT do is
> replace a tarball. Machines get compromised. Good distributions
> get replaced with tainted versions. One of the few ways the rest
> of the world has some assurance that they are getting a untainted
> version is that what you get now is what you got when the product
> was first released. One of the way a site learns that it has been
> compromised is tarballs changing.
Seems like a sad situation that will only get worse.
>
> Yes, the replaced tarball is signed with your signa...
2008 Aug 25
1
acts_as_state_machine: SecurityError calling insecure method
(also posted on rails forum:
http://railsforum.com/viewtopic.php?id=21744, then I discovered this
lilst and there are many more people...)
Hi, since yesterday I suddenly recieve lots of such messages in my
logfiles - and everything in the user model that uses that plugin fails!
My deployed Rails code hasn''t changeed in 5 days, and those errors
started to appear only a day ago.
2011 Dec 12
1
v2.1.rc1 managesieve TLS
Hi,
TLS on imap port 143 works.
But if I try TLS on managesieve port 4190, I get no connection.
Dec 12 21:16:10 managesieve-login: Info: Disconnected (no auth attempts in 5 secs): rip=192.168.10.117, lip=192.168.10.117, secured
Dec 12 21:16:20 managesieve-login: Info: Disconnected (no auth attempts in 5 secs): rip=192.168.10.117, lip=192.168.10.117, TLS handshaking: Disconnected
# gnutls-cli
2013 Sep 26
29
[Bug 69827] New: Uneven, jerky mouse movement, increasing CPU usage
https://bugs.freedesktop.org/show_bug.cgi?id=69827
Priority: medium
Bug ID: 69827
Assignee: nouveau at lists.freedesktop.org
Summary: Uneven, jerky mouse movement, increasing CPU usage
QA Contact: xorg-team at lists.x.org
Severity: normal
Classification: Unclassified
OS: Linux (All)
Reporter: jimoe at
2006 Jul 05
2
Serialized object behaves weird
Hi!
I got a class named EinsatzFilter which I serialized to session. Before
saving to session it works afterwards I keep getting the message:
"undefined method `to_s'' for #<Person:0x38c6ab8>". "Person" is a from
ActiveRecord::Base inherited class.
Code:
class EinsatzFilter
include ApplicationHelper
attr_reader :personen, :monat, :projekte, :kunde
2006 Jun 30
6
RSS::Parser Documentation
Hi
I am trying to use the RSS classes from "rss/2.0" and everything works
but I want to know what attributes and properties I can get at from each
of the classes I am getting back.
For example, the class has a "channel" which I can tell has a "title"
attribute (because it works when I query it :) but I would really like a
list of every attribute that is