Displaying 20 results from an estimated 300 matches similar to: "reversing the roles of ssh and sshd"
2002 Feb 01
4
OpenSSH Key Storage
I have had a brief discussion with Damien Miller (below) about storing
host port values in the known_hosts file so as to track multiple ssh
sessions (with independant keys) that run on a single host but accept
connections on different ports. If it were possible to state that a
given key for a remote host belonged to that host's ssh session on port
23 and that another key belonged to that
2003 Sep 17
3
NEW Asterisk Security vulnerability report ...
Hello,
There is a new asterisk vulnerability report at this address:
http://www.securiteam.com/unixfocus/5HP0H1PB5S.html
This is the second security report regarding asterisk for 8 days
(http://www.securiteam.com/securitynews/5LP0720B5G.html)
Both fixes was reported and fixed silently.
My question is: Is it possible in the future such a security problems to
be reported in this mailing list
2003 Sep 09
3
Asterisk Security vulnerability report
Hello,
today I found this security report regarding Asterisk SIP Security.
http://www.securiteam.com/securitynews/5LP0720B5G.html
Maybe It could help somebody who isn't using a newer than 15th of August
cvs version.
Best regards
Lubo
2014 Jun 18
6
[Qemu-devel] Why I advise against using ivshmem
On Tue, Jun 17, 2014 at 11:44:11AM +0200, Paolo Bonzini wrote:
> Il 17/06/2014 11:03, David Marchand ha scritto:
> >>Unless someone steps up and maintains ivshmem, I think it should be
> >>deprecated and dropped from QEMU.
> >
> >Then I can maintain ivshmem for QEMU.
> >If this is ok, I will send a patch for MAINTAINERS file.
>
> Typically, adding
2014 Jun 18
6
[Qemu-devel] Why I advise against using ivshmem
On Tue, Jun 17, 2014 at 11:44:11AM +0200, Paolo Bonzini wrote:
> Il 17/06/2014 11:03, David Marchand ha scritto:
> >>Unless someone steps up and maintains ivshmem, I think it should be
> >>deprecated and dropped from QEMU.
> >
> >Then I can maintain ivshmem for QEMU.
> >If this is ok, I will send a patch for MAINTAINERS file.
>
> Typically, adding
2004 Apr 14
0
FYI re: "FreeBSD ECE flag ipfw protection bypass"
Several people have noticed that SecuriTeam.com is reporting a
"FreeBSD ECE flag ipfw protection bypass" exploit. In an effort
to save time, let me say this publicly: SecuriTeam.com is three
years out of date.
This problem was fixed in FreeBSD 3.5-STABLE and 4.2-STABLE in
January 2001, and reported in Security Advisory FreeBSD-SA-01:08.
Colin Percival
2013 Jul 29
2
Reversing roles of server and client for uploading sync list
I am searched for an easy answer but I haven't come across one.
Basically the problem is that I have an ADSL network that I use to
remotely backup some files that have changed across and entire OS every
few days.
The problem I have found is that banddwidth up is about 50x greater than
that coming down (its about 20:1 but add noise on the lower 128KHz of
the 4KHz bins used to upstream and in
2005 Jun 21
3
Bug#315071: Results to your question
Hi,
See below:
# getent group adm
adm:x:4:root,adm,daemon
And:
# ls -l /var/log
total 20384
-rw-r----- 1 root adm 43310 Jun 21 16:00 auth.log
-rw-r----- 1 root adm 128247 Jun 19 06:47 auth.log.0
-rw-r----- 1 root adm 10318 Jun 12 06:47 auth.log.1.gz
-rw-r----- 1 root adm 9508 Jun 5 06:47 auth.log.2.gz
-rw-r----- 1 root adm 12475 May 29 06:47 auth.log.3.gz
2012 Jun 12
1
[0x721427d8@gmail.com: [php<=5.4.3] Parsing Bug in PHP PDO prepared statements may lead to access violation]
FYI
I verified this on a working system.
----- Forwarded message from 0x721427D8 0x721427D8 <0x721427d8@gmail.com> -----
Date: Sun, 10 Jun 2012 15:02:43 +0200
From: 0x721427D8 0x721427D8 <0x721427d8@gmail.com>
To: bugtraq@securityfocus.com
Subject: [php<=5.4.3] Parsing Bug in PHP PDO prepared statements may lead to
access violation
[php<=5.4.3] Parsing Bug in PHP PDO
2001 Apr 06
1
HP11 - BUG ?
Hi,
I work with HP-UX 11.00. I installed Samba 2.0.7 on 3 machines from
package and from source. I start smbd (with smb.conf correct), i start nmbd.
After I want to test my Samba with commande :
smbclient -U% -L localhost
but anytime I have error in the logfile :
[2001/04/06 11:23:09, 0] lib/util_sec.c:(69)
Failed to set gid privileges to (-1,-2) now set to (0,0) uid=(0,0)
2012 Oct 01
1
Samba4 KDC - no such entry found in hdb
Hello.
Samba 4.1.0pre1-GIT-aad669b, joined as a DC to an existing domain. At least 6 accounts behave like this:
Kerberos: AS-REQ techgroup at KLIN.KIFATO-MK.COM from ipv4:192.168.1.31:33822 for krbtgt/KLIN.KIFATO-MK.COM at KLIN.KIFATO-MK.COM
ldb: ldb_trace_request: SEARCH
dn: <rootDSE>
scope: sub
expr: (&(objectClass=user)(userPrincipalName=techgroup at KLIN.KIFATO-MK.COM))
control:
2008 Apr 08
1
Rsync 3.0.2 released w/xattr security fix (attn: 2.6.9 onward)
I have released rsync 3.0.2. This is a security release to fix a
potential buffer overflow in the extended attribute support. For
more details, see the rsync security advisory page:
http://rsync.samba.org/security.html
There is a patch there that can be applied to 2.6.9 (if you were using
the xattrs.patch), 3.0.0, or 3.0.1.
Those running a writable rsync daemon can opt to refuse the
2008 Apr 08
1
Rsync 3.0.2 released w/xattr security fix (attn: 2.6.9 onward)
I have released rsync 3.0.2. This is a security release to fix a
potential buffer overflow in the extended attribute support. For
more details, see the rsync security advisory page:
http://rsync.samba.org/security.html
There is a patch there that can be applied to 2.6.9 (if you were using
the xattrs.patch), 3.0.0, or 3.0.1.
Those running a writable rsync daemon can opt to refuse the
2003 Dec 24
2
Unlocking Vonage ATA 186
In the process of investigating a Cisco ATA 186 that was locked by
Vonage, I found that you can still unlock the device yourself. But
there's a catch.
The device's design has a great plus: a DIP32 *socketed* SST28SF040A
flash chip. I found an 8 digit unlock code at 0x03FA71-0x03FA78. I do
not know if that is a standard location.
If you have the equipment, you're in luck. But
2006 Mar 05
0
Converted tattle.pl to ruby - anyone want to be a tester?
The basic idea of tattle (http://www.securiteam.com/tools/5JP0520G0Q.html)
is that it will go through your /var/logs/messages to find brute force
attack attempts on your machine via ssh. It then looks up the abuse records
and emails the network owners about the attack.
It worked well until the log format changed a little when I updated last and
it broke. So, as an exercise in learning ruby and
2014 Jun 17
4
[Qemu-devel] Why I advise against using ivshmem
Hello all,
On 06/17/2014 04:54 AM, Stefan Hajnoczi wrote:
> ivshmem has a performance disadvantage for guest-to-host
> communication. Since the shared memory is exposed as PCI BARs, the
> guest has to memcpy into the shared memory.
>
> vhost-user can access guest memory directly and avoid the copy inside the guest.
Actually, you can avoid this memory copy using frameworks like
2014 Jun 17
4
[Qemu-devel] Why I advise against using ivshmem
Hello all,
On 06/17/2014 04:54 AM, Stefan Hajnoczi wrote:
> ivshmem has a performance disadvantage for guest-to-host
> communication. Since the shared memory is exposed as PCI BARs, the
> guest has to memcpy into the shared memory.
>
> vhost-user can access guest memory directly and avoid the copy inside the guest.
Actually, you can avoid this memory copy using frameworks like
2003 Aug 18
3
General Samba question
Greetings to all.
I am currently a bit of a newbie in regards using Linux and Samba. I have
worked for several years in the IT/digital divide sector of the nonprofit world
(particularly in regards to utilizing used and refurbished hardware). I am have
a couple of CompTIA certs. (A+ and N+) and some experience administering
Windows 2000 Advanced Server.
Anyway to my question....
I am
2014 Jul 11
0
ANNOUNCE: cifs-utils release 6.4 ready for download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Wow, about 6 months since last cifs-utils release. How time flies. With
Guenter's fix for the uppercasing of device names last week, it's
probably a good time to go ahead make a new one.
There's not much activity this cycle so this is mostly bugfixes, though
there is a new autoconf option to allow you to configure the PAM
installation
2006 Jul 08
1
reversing display order in for?
I am displaying some data on one of my pages by calling a for loop:
for comment in @comments
and then diplaying it:
<%= link_to comment.send(''comment_subject''), :controller =>''comments'' ,
:action => ''show'', :id => comment, :class => ''comment'' %>
Works great, but it displays things from oldest to