similar to: Serious BIND resolver problems.

////////////////////////////////////////////////////////////////////////// I have got a couple of messages stating that I am wrong and that the resolver vulnerability sent to list by Oliver Friedrichs (oliver@secnet.com) is a new one. Our discussion with Oliver outlined that even though it is possible that this vulnerability was discussed during BOFs at conferences such as LISA, SANS and NETSEC,

-----BEGIN PGP SIGNED MESSAGE----- ###### ## ## ###### ## ### ## ## ###### ## # ## ## ## ## ### ## ###### . ## ## . ######. Secure Networks Inc. Security Advisory

-----BEGIN PGP SIGNED MESSAGE----- ##### ## ## ###### ## ### ## ## ##### ## # ## ## ## ## ### ## ##### . ## ## . ###### . Secure Networks Inc. Security Advisory

I don''t know if this has made it to you yet, so here it is... =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Kirk Bauer Georgia Tech gt5918a@prism.gatech.edu or Finger for PGP Key --> kirk@kaybee.gt.ed.net http://www.kaybee.gt.ed.net/~kirk/html/index.html Resnet RTA (Residence Technical Advisor) GTRI Co-Op ----------

-----BEGIN PGP SIGNED MESSAGE----- ##### ## ## ###### ## ### ## ## ##### ## # ## ## ## ## ### ## ##### . ## ## . ###### . Secure Networks Inc. Security Advisory

Hi all, I have been using tinc successfully for a while now. However, I need to do something different from my normal setup, and i am getting the feeling I am doing something obvious wrong. What I want to do is hookup 5 distant linux routers into one bigger network, Since I need to transmit both unicast and multicast traffic, the VPN network has to be in "Mode = switch" [Assumption

[I'm sorry to trouble the list with this, but this is the only way I know to contact the person concerned] This message is for Stephen Karrington - it appears that you have over-agressive 'spam' filters and we can no longer email you. Please rectify this if we are to have meaningful conversation! The original message was received from Linus Surguy

[mod: Executive summary: SNI found recent linux-distributions not-vulnerable -- REW] -----BEGIN PGP SIGNED MESSAGE----- ###### ## ## ###### ## ### ## ## ###### ## # ## ## ## ## ### ## ###### . ## ## . ######.

I am looking to install a web interface for Asterisk to transfer calls and look who's on the phone. If anybody has a working web interface please let me know. I installed the www.asternic.com (operator) But when I bring up my web browser it says transferring data and does not bring a browser. -----Original Message----- From: asterisk-users-admin@lists.digium.com

###### ## ## ###### ## ### ## ## ###### ## # ## ## ## ## ### ## ###### . ## ## . ######. Secure Networks Inc. Security Advisory February 24, 1997

mmm... ok. well i got ices2 installed properly now (i hope) after some effort and help (cheers Michael for the prompt response!). the goal is to get ices2 to stream to a peercast client on port 2768. but somehow things are still not going quite as planned. here is the log ----------------------------------------------------- idoru:/var/log# ices /usr/local/etc/ices.conf [2003-03-20 22:55:29]

The manual page says, that rcmd() is only to be used by root's processes. On other OSes (Solaris, AIX), trying to call rcmd() without being root simply fails. FreeBSD, however, tries to be helpful and invokes rcmdsh in this case, which is inefficient and leaves the stderr's filedescriptor (fd2p) unfilled. Why? My understanding is, this is to make it harder for would-be attackers to

Marek Michalkiewicz <marekm@I17LINUXB.ISTS.PWR.WROC.PL> wrote: : It seems that most of the RedHat 5.3.12 security patches are in the : standard 5.4.17, except for the patch below. Also, there are more : (different) fixes in 5.4.18 (check h_length against sizeof(sin_addr) : in inet/rcmd.c and inet/rexec.c). : + { : +

i have been playing around trying to get ice2 to work now for quite some time and frankly i am a bit frustrated by now... the anoying thing is how early in the whole proccess my problems actually start! running ./autogen.sh in the newest cvs version of ice2 results in <p>idoru:/usr/src/ices# ./autogen.sh I am going to run ./configure with no arguments - if you wish to pass any to it,

http://bugzilla.mindrot.org/show_bug.cgi?id=1284 Summary: allow sftp when rlogin=false Product: Portable OpenSSH Version: v4.5p1 Platform: Other OS/Version: AIX Status: NEW Severity: enhancement Priority: P2 Component: sshd AssignedTo: bitbucket at mindrot.org ReportedBy: dleonard at

###### ## ## ###### ## ### ## ## ###### ## # ## ## ## ## ### ## ###### . ## ## . ######. Secure Networks Inc. Security Advisory March 2, 1997

Hello. I noticed that OpenSSH 2.1.1p3 does not check whether it is being called as rlogin or slogin, like it's siblings do. This can get ugly if you have rlogin and rsh symlinked to ssh, and old r* commands are moved off in another place, as I do. Since Solaris rsh is hardcoded to call /usr/bin/rlogin, it will get stuck in an infinite loop. Below is a quick patch I hacked up, based on

Very early on in what seems to be quite a hot debate sometimes, I pointed out that sshd only controls rlogin=false at its startup, and if it is changed, sshd simply ignores it ie: chuser rlogin=true root sshd chuser rlogin=false root Will result in sshd ACCEPTING login from root, ie it seems to only check at its startup - is this a bit like ulimit behavior where you need need to log out and in

hi... i've got an "access denied" issue with rsh on one of my boxes (and before we start, no "use ssh" comments.. rsh is what i'm dealing with for now!!) i've got a few boxes in my network, and i can successfully rsh into them with no issue. however, on one box, i can't access it using rsh, and i'm running out of things to try... kind of curious. i can

Hi I'm trying to get winbindd work with authentication for other services. Winbindd works fine in samba. I get these errors using rlogin from another server to sun10. Oct 31 08:26:11 sun10 pam_winbind[26694]: request failed, PAM error was 4, NT error was NT_STATUS_INVALID_PARAMETER Oct 31 08:26:11 sun10 pam_winbind[26694]: internal module error (retval = 4, user = `tommyf' Supported