similar to: Freebsd-update and 6.1-RELEASE

Dear all, I think there's a security problem with the acroread plugin for firefox. I'm using sysutils/pwsafe to manage my passwords. A feature of this tool is that it can copy the requested password to the X clipboard, allowing the user to paste it (eg. in a password box), never seeing the pass in clear. When I load a PDF document in Firefox, the acroread process lives on even after the

Hi: I have a machine with four interfaces connecting four different networks. I am learning to use nmap and trying to force the nmap working only one interface. As nmap man page states, I use -e option and it would not work: nmap -e fx0 -v -sP 192.168.128.0/23 Starting Nmap 3.95 ( http://www.insecure.org/nmap/ ) at 2006-02-04 14:04 CST getinterfaces: Failed to open ethernet interface (el0)

Bill Moran wrote: > This report seems pretty vague. I'm unsure as to whether the alleged > "bug" gives the user any more permissions than he'd already have? Anyone > know any details? This is a local denial of service bug, which was fixed 6 weeks ago in HEAD and RELENG_6. There is no opportunity for either remote denial of service or any privilege escalation. >

Dear FreeBSD users, Slightly more than three years ago, I released FreeBSD Update, my first major contribution to FreeBSD. Since then, I have become a FreeBSD committer, joined the FreeBSD Security Team, released Portsnap, and become the FreeBSD Security Officer. However, as I have gone from being a graduate student at Oxford University -- busy writing my thesis -- to a researcher at Simon

The FreeBSD Security Officer would normally be sending out this email, but he's a bit busy right now and it is clear from reactions to FreeBSD Security Advisory FreeBSD-SA-04:04.tcp that many people are unaware of the current status of the RELENG_5_1 branch, so I'm going to send out this reminder myself. The branches supported by the FreeBSD Security Officer have been updated to reflect

Hello Everyone! It has been my pleasure and privilege to serve as the FreeBSD Security Officer for the past 3+ years. With the crucial support of the FreeBSD Security Team members, a lot has been accomplished: hundreds of security issues have been researched and tracked, with some resulting in security advisories and patches; software in the Ports Collection are updated more quickly

Tobez: no disrespect intended, obviously you saw a problem with the master sites for perl 5.8.7 and did what you could to help, and with your position as a maintainer, I know that the trust we have in you and your patches is well earned, so don't take this question as anything but my well-earned paranoia rearing its ugly head: Yes, building perl5.8.7 did seem like it had a lot of problems

Bill Moran wrote: > Can anyone define "exceptionally large" as noted in this statement?: > > "NOTE ALSO: The above patch reduces the functionality of libcrypto(3) by > prohibiting the use of exceptionally large public keys. It is believed > that no existing applications legitimately use such key lengths as would > be affected by this change." > > It

I'm curious about the estimated EoL date on 6.2-RELEASE. Current estimate is listed as Jan 31 2008. That's just about 5 months away now. Suggestions for those who are about to be EoL'ed? Thanks.

How 'bout PAM? /usr/ports/security/pam_ldap. If you have machines that can't do PAM, perhaps NIS is the way to go (assuming, of course, you're behind a firewall). You can store login information in LDAP like you want, then use a home-grown script to extract the information to a NIS map. Or, if you have a Solaris 8 machine lying around, you can cut out the middle step and use

Here's another project for us. We'll want to upgrade to 6.3-RELEASE in May. On Wed, Apr 2, 2008 at 7:00 AM, <freebsd-security-request@freebsd.org> wrote: > Send freebsd-security mailing list submissions to > freebsd-security@freebsd.org > > To subscribe or unsubscribe via the World Wide Web, visit >

Hello, I'm having trouble connecting to an Apple Time Capsule's smb shares. The connection doesn't work, and with "dmesg" I see the following message, repeated every time I try: [26937.531511] CIFS VFS: RFC1001 size 39 bigger than SMB for Mid=4 [26937.531580] Bad SMB: : dump of 48 bytes of data at 0xffff880052832380 [26937.531615] 00000027 424d53ff 00000074 00018800

Hi all. I'm looking for a way to empty user's trash folder. Can message deletion or folder purging be scheduled? Thanks in advance. -Pietro.

Thanks ! On this forum is also shown this information : http://lists.xiph.org/pipermail/speex-dev/2009-January/007050.html According to vk's results, it could be possible to run Speex at 4/6 & 8 kbps on a Cortex M-3 at 36 MHz ... so not excluding the EFM32 ... Nico 2010/3/3 Pietro Maggi <studiomaggi at gmail.com> > On ST forums there is someone that states it has done an

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-07:01.jail Security Advisory The FreeBSD Project Topic: Jail rc.d script privilege escalation Category: core Module: etc_rc.d Announced:

Hello I'm trying to do the following vector operation: given vector x = c(x1,x2,x3,x4...xn), produce vector y = c(x1,x1+x2,x1+x2+x3,...x1+...+xn). E.g., from x = c(1,3,2,2,5), produce y = c(1,4,6,8,13). The underlying problem is finding the cumulative distribution function given the empirical density distribution function. I have done some research on this but the only relevant

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I'm wondering if/where I can get the server side component for freebsd-update. Presumably such a component would build and sign the binary patches and prepare them to be served via HTTP to the freebsd-update client. I need a system for distributing binary updates to a collection of customized FreeBSD machines, jails, and embedded systems.

Hi, I'm evaluating the libspeex library for usage in an embedded platform based on an ARM7 TDMI micro (the ubiquitous Atmel AT91SAM7S). In details, I'm trying to use libspeex to encode the audio stream coming into the micro from an I2S channel and saving the encoded audio to an SD card (currently in binary format just to test it decoded back to the I2S channel from the saved file), but

I have two alternative Cox models with C-statistics 0.72 and 0.78. My question is if 0.78 is significantly greater than 0.72. I'm using rcorrp.cens. I cannot find the U statistics in the output of the function. This is the output of the help example: > x1 <- rnorm(400) > x2 <- x1 + rnorm(400) > d.time <- rexp(400) + (x1 - min(x1)) > cens <- runif(400,.5,2) > death

Hi, On 20/06/2018 20:38, Andrew Bartlett wrote: > To be clear, we don't replicate sysvol, you need to work that out > yourself (yes, this sucks). > Right, I'm doing that with Robocopy from the Windows DC initially, then with rsync. >> Is there any further preparation I need to do on the Windows server side >> to make a clean demotion possible? I can force the