Displaying 20 results from an estimated 2000 matches similar to: "New 4.4 install PHP security concern"
2006 Oct 10
0
Re: CentOS Digest, Vol 21, Issue 6
> 4. Re: auth of sendmail? (Eucke)
> Message: 4
> Date: Thu, 05 Oct 2006 13:17:53 -0700
> From: Eucke <euckew at sierraelectronics.com>
> Subject: Re: [CentOS] auth of sendmail?
> To: CentOS mailing list <centos at centos.org>
> Message-ID: <45256871.10607 at sierraelectronics.com>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
>
2006 Feb 09
1
Running nessus on freebsd...
I'm trying to get nessus setup for doing some internal security
checking. I installed the ports for nessus and nessus-plugins,
and everything worked as expected. I then registered for the
full feed of plugins, which got me up to over 10,000 plugins.
I restarted nessus, and it didn't work at all. I am running
without X11, so I'm doing batch runs. I already have nmap
installed, so I
2009 Jan 08
5
Update to Centos 5 anaconda kickstart %post bug?
Is there a process for finding status updates to open bugs within
Centos? The particular bug I am talking about is 0002329
http://bugs.centos.org/view.php?id=2329. This was assigned on
01-20-2008 and, as far as I can tell, there's been no action other than
it being acknowledged. I've also searched upstream with RHEL and FC and
I cannot seem to find a bug report there though complaints
2004 Jun 23
2
samba security question - samba vulnerable to any WindowsExploits?
Hi Ryan,
I am not authenticating to any Windows server, I just have the samba
server itself set up with 3 users who an login.
...Paul
Ryan Frantz wrote:
>Paul,
>
>Are you using a Windows PDC or ADS to authenticate your Samba shares?
>If so, the problem would not be with Samba, but with the authenticating
>server.
>
>Ryan
>
>-----Original Message-----
>From:
2014 Oct 04
1
LDAP NULL BASE Search Access to Samba4
Recently, i scanned my samba4.1 server by Nessus (a vulnerability scanner
tool - http://www.tenable.com/products/nessus)
Nessus says that Samba4 is vulnerable to "LDAP NULL BASE Search Access" as
"The remote LDAP server may disclose sensitive information."
Further it says that - The remote LDAP server supports search requests with
a null, or empty, base object. This allows
2005 Mar 12
4
Shorewall 2.2.1 and open ports
Hello all,
I’m running Shorewall 2.2.1 on linux kernel 2.6.10 with iptables 1.2.11. I recently ran a nessus scan of my firewall from a machine outside of the firewall and the nessus report told me that there are some ports open that I did not specify to be open. The ports are 32772/udp, 123/udp, 111/tcp, 32772/udp, and 53/udp. Why are these ports open when I did NOT specify them to be open
2019 Sep 24
2
CentOS 8.0 1905 is now available for download
Hi,
What hypervisor/virtual machine monitor and host operating system are you using?
On Tue, 24 Sep 2019 at 19:31, J Martin Rushton via CentOS
<centos at centos.org> wrote:
>
> On 24/09/2019 12:16, Turritopsis Dohrnii Teo En Ming wrote:
> > Good evening from Singapore,
> >
> > Anybody downloaded, installed, and tried CentOS 8.0 1905 yet?
> >
> >
2004 Apr 23
3
SSL Ciphers
I have dovecot running as a pop3s server on port 995
it works great with sendmail
and
I run nessus to check security issues
nessus reports this
The SSLv2 server offers 3 strong ciphers, but also
0 medium strength and 2 weak "export class" ciphers.
The weak/medium ciphers may be chosen by an export-grade
or badly configured client software. They only offer a
limited protection against
2003 Dec 16
3
Results of nessus scan
I run samba 2.2.8a on my openbsd 3.4 box, installed from a package.
All i need is the ability to mount disks form winxp boxes so i only run
smbd, at 139/tcp.
I tried scanning the box with nessus, and it came up with some results
that got me curious.
Since i dont know very much about the smb protocol I thought i should
ask here.
Have searched the archives but found only old posts, concering
2005 Aug 16
1
Nessus Installation Failure
I'm trying to get get nessus 2.2.5 to install on my centos 3.5 system.
It errors out with this error:
Press ENTER to continue
x - Compiling the libraries
x -- Configuring the sources for your system
configure: error: Could not find OpenSSL and OpenSSL headers on your system
**** An error occured :/
Do you want to save the compilation log to analyze what went wrong ? [y]
Where should I save
2019 Sep 27
1
CentOS 8.0 1905 is now available for download
Heads up, Hyper-V Gen 2, CentOS 8 Server with GUI install results in a black screen as updates are needed for X to properly detect and load the video. If you can ssh into the box, do a yum update and it should grab the needed updates, then reboot.
Gregory Young
-----Original Message-----
From: CentOS <centos-bounces at centos.org> On Behalf Of Turritopsis Dohrnii Teo En Ming
Sent:
2015 Jul 08
2
Samba 4 - disabling SSLv3 to mitigate POODLE effects
Good Day All
Sorry if this is a repeated email, but I need some information about how to
disable SSL on a Samba4.2.2 AD domain controller as the nessus scanner is
reporting the POODLE vulnerability and we are not allowed to have any of
that in our environment.
the nessus scan reports poodle vulnerability on all these ports:
443, 636, 3269
I had a look at previous posts but couldn't find a
2019 Oct 18
2
Top 7 Programming Languages That Employers Really Want
Subject: Top 7 Programming Languages That Employers Really Want
Good day from Singapore,
Article: Top 7 Programming Languages That Employers Really Want
Author: Nick Kolakowski
Date Published: 14 October 2019
Link: https://insights.dice.com/2019/10/14/7-programming-languages-employers-want/
This is just a quick survey. May I know what programming languages do
you know? I am considering being a
2019 Sep 24
9
CentOS 8.0 1905 is now available for download
Good evening from Singapore,
Anybody downloaded, installed, and tried CentOS 8.0 1905 yet?
Download link from CentOS download mirror near to Singapore:
http://mirror.vodien.com/centos/8.0.1905/isos/x86_64/CentOS-8-x86_64-1905-dvd1.iso
The DVD ISO filesize is 6.6 GB.
I am downloading it right now...Approx. 20 mins more to download
completion using 1 Gbps home fiber internet connection.
2003 Oct 04
1
Security Fix Confusion
Hi,
I'm wondering if anybody could enlighten me about the effect of tracking
RELENG?
When the Openssh advisory came out (SA-03:12) I allowed a few days for all
issues to get ironed out and then used CVSUP to rebuild my boxes with
RELENG_4_7 or RELENG_4_8 (as appropriate). The advisory says that the
problem with OpenSSH is fixed by 4.7-RELEASE-p16 and a 'uname -a' of one of
my 4.7
2019 Sep 27
2
CentOS 8.0 1905 is now available for download
What does vga=819 and vga=319 mean?
On Wed, 25 Sep 2019 at 01:54, Jon Pruente <jpruente at riskanalytics.com> wrote:
>
> On Tue, Sep 24, 2019 at 6:53 AM Randal, Phil <phil.randal at hoopleltd.co.uk>
> wrote:
>
> > Workaround is to select the install option, hit the tab key, and append
> > vga=819 and hit F10, which starts the graphical installer on a larger
2013 Oct 31
7
[Bug 870] New: Iptables cannot block outbound packets sent by Nessus
https://bugzilla.netfilter.org/show_bug.cgi?id=870
Summary: Iptables cannot block outbound packets sent by Nessus
Product: iptables
Version: 1.4.x
Platform: x86_64
OS/Version: Ubuntu
Status: NEW
Severity: normal
Priority: P5
Component: iptables
AssignedTo: netfilter-buglog at lists.netfilter.org
2020 Feb 19
2
Why are ForeignSecurityPrincipals and Managed Service Accounts empty with no entries?
Hi Rowland,
I can confirm that dnsmasq is not running because I have already disabled libvirtd.
________________________________
From: samba <samba-bounces at lists.samba.org> on behalf of Rowland penny via samba <samba at lists.samba.org>
Sent: Tuesday, February 18, 2020 11:03 PM
To: samba at lists.samba.org <samba at lists.samba.org>
Subject: Re: [Samba] Why are
2004 Mar 07
1
3.0.2a: SID, User Enumeration
I'm runninng samba 3.0.2a on a few machines, ADS security mode, domain
member roles. I throw nessus at it, and it can fetch the SID and then
list all of the users on the system.
I view this as a security problem, is there a way to prevent this?
2013 Aug 06
2
Openssl vulnerability - SSL/ TLS Renegotion Handshakes
Hi,
I'm currently at CentOS 5.8. I'm using openssl version
openssl-0.9.8e-22.el5. The following vulnerability was reported by a Nessus
security scan:
"SSL/ TLS Renegotion Handshakes MiTm Plaintext Data Injection"
As per following link, Redhat has introduced openssl-0.9.8m which fixes
this specific issue: