mail archive Security issues members-only posting
freebsd-security.freebsd.org
(List home) (Recent threads) (174 other FreeBSD lists)
Subscription Options
- RSS or Atom: Read-only subscription using a browser or aggregator. This is the recommended way if you don't need to send messages to the list. You can learn more about feed syndication and clients here.
- Conventional: All messages are delivered to your mail address, and you can reply. To subscribe, send an email to the list's subscribe address with "subscribe" in the subject line, or visit the list's homepage here.
- Low traffic list: less than 3 messages per day
- This list contains about 36,188 messages, beginning Feb 1995
- 4 messages added yesterday
Security issues members-only posting
September 2002
Administrativia: New list charter (1 Reply)
Mark R V Murray — 103087568901 Sep 2002*
FREEBSD-SECURITY Security issues This is a technical discussion list covering FreeBSD security issues. The intention is for the list to contain a high...
LDAP authentication ? (1 Reply)
Frank Bonnet — 103097420202 Sep 2002*
Hi Is it possible to use LDAP as an authentication system with FreeBSD 4.6.2 to replace NIS that I use for now ? If yes what do I need to install for ...
Mike Tancsa — 103106458903 Sep 2002*
Question: How do I setup an IPSEC ESP Tunnel between a Cisco router and FreeBSD AN Answer: OK, I have seen a few people ask this question, but I had n...
1024 bit key considered insecure (sshd) (30 Replies)
Stefan Krüger — 103108996503 Sep 2002*
Hi folks, I've just read: http://www.counterpane.com/crypto-gram-0204.h... and http://online.securityfocus.com/archive/1/263... and maybe we shoul...
Roman Zabolotnikov — 103114491804 Sep 2002
Also youre can use DrWeb. You can find it in your ports collection /usr/ports/security/drweb /usr/ports/security/drweb-sendmail /usr/ports/security/dr...
Anti virus software for FreeBSD ... (18 Replies)
Marc G. Fournier — 103116534004 Sep 2002*
Seems quite limited ... I'm looking for one to run with amavisd on a mail server, but the only one I can seem to find is vscan, and for that, i ca...
Very peculiar mail-list behaviour (2 Replies)
Duncan Campbell — 103128694506 Sep 2002*
Gentlemen (&Ladies); A very peculiar thing is happening with regards to this list and other freebsd mail lists: I am unable to sign up from any ma...
jail() House Rock (4 Replies)
Hans Zaunere — 103133869406 Sep 2002*
I'm looking to provide jail()'d root access to clients (the virtual private server bit). I myself have been a client on several of these setup...
Fwd: Anti-virus section for FAQ (5 Replies)
Lawrence Sica — 103134522606 Sep 2002*
Oops, helps if I post the url eh ;) http://www.thesicafamily.org/larry/articles/a... Sorry about that.To Unsubscribe: send mail to with "unsubscr...
J.D. Bronson — 103157379709 Sep 2002
auth f08edc02 unsubscribe freebsd-security To Unsubscribe: send mail to with "unsubscribe freebsd-security" in the body of the message...
4.6.2 sendmail anomaly (5 Replies)
Derek Ragona — 103177079911 Sep 2002*
I just installed 4.6.2 on a system and now mail sent using the mail command doesn't work. I get an error that the temp queue file cannot be create...
Bruce M Simpson — 103184713512 Sep 2002
All, This is just to call your attention to a bunch of ports I've made and tested over the past few weeks which I've just submitted to support...
Mike Tancsa — 103185418712 Sep 2002
Again, I saw this question asked in my searches through google and mention of it on the vendor website, but I had not seen the answer. Question: How d...
Mac address of hacked machine... (4 Replies)
Andrew G. Russell IV — 103205442015 Sep 2002*
I have a machine that is hitting me with "kali" packets every few minutes. I've contacted the ISP, but they can't help unless I supp...
Duncan Campbell — 103206360015 Sep 2002
Subscriber based posting is that my email is currently being blocked on the basis of destination address. is one that is being blocked. Dhu To Unsubsc...
Duncan Campbell — 103206396515 Sep 2002
To Unsubscribe: send mail to with "unsubscribe freebsd-security" in the body of the message...
Duncan Campbell — 103206411315 Sep 2002
This is a short primer on crypto. What it can and can't do. 1. There are no permanent secrets. If you want to keep something secret DON'T TELL...
David Schultz — 103227117517 Sep 2002
There seems to be a nasty exploitable race in i386_set_ldt(2), as David Xu pointed out some months ago in i386/38021. As this is a vulnerability when ...
Re: asmtp 587 - quickie faq submission (2 Replies)
Miroslav Pendev — 103227685017 Sep 2002*
There is SMTP AUTH patch for qmail, too. http://www.nimh.org/dl/qmail-smtpd.c Although, it is not in the port for qmail it can be added like WITH_SMTP...
Unexpected keep state behaviour in ipfw (3 Replies)
Peter Jeremy — 103232826018 Sep 2002*
I've been putting together a firewall and bumped into an oddity in the ipfw keep-state behaviour. In particular, the TCP state information for con...
Andy — 103248303120 Sep 2002
I have been researching the use of "options SUDIDIR" in the kernel. I have noted several warnings about the use of this option being a secur...
tar and md5 question (2 Replies)
Jimmy — 103295028125 Sep 2002*
Hello, I'm playing with my tar and md5 command, I noticed that the md5sum of my two (2) tar ball with the same content are not equal. Any ideas wh...
cisco/altiga client (2 Replies)
Peter J. Blok — 103295542525 Sep 2002*
Hi, I have Cisco VPN 3000 (Altiga) software client on my laptop. With this client I establish a connection with a 3000 series concentrator. I would li...
Juraj Petrik — 103303612626 Sep 2002*
hello, can you help me, please, I'm trying to run firewall with using IPFilter, IPNAT and Dummynet, on FreeBSD I'm readed so much HOWTOs but, ...
Password encoding (5 Replies)
Nomad — 103308904727 Sep 2002*
Hello I'v upgraded my FreeBSD to 4.6.2 some time ago. Since that day I added some new accounts to my system. Everything was OK but... But some bea...
IPSec/XAuth (1 Reply)
Peter Jeremy — 103309395827 Sep 2002*
Is anyone working on an XAuth implementation for IPSec? For background information on XAuth, have a look at http://www.nwfusion.com/news/tech/2000/082...
Re: Password encoding (5 Replies)
Dmitry Agafonov — 103312107627 Sep 2002*
Ok, how about more common question. How do I ask system crypt() to use MD5 by default? /etc/make.conf or such?...
Muhammad Faisal Rauf Danka — 103312296927 Sep 2002
for info: http://www.cert.org/advisories/CA-2002-27.htm... http://www.symantec.com/avcenter/venc/data/li... http://securityresponse.symantec.com/avcen...
Re: kern.ps_showallprocs and procfs (2 Replies)
Duncan Campbell — 103313244027 Sep 2002*
I tend to regard procfs as something of a debugging tool. If you limit it as is probably necessary to do what you suggest, its value as a tool becomes...
PKI (3 Replies)
Ivailo Tanusheff — 103313258927 Sep 2002*
Hello, Do you know if there is any Certificate server available for FreeBSD? I need to issue certificates to our customers. Thank you in advantage, Iv...
FW: PKI (1 Reply)
Ivailo Tanusheff — 103314185827 Sep 2002*
Hi, No, I mean certificate for digital signing and encryption. I need to issue such certificates to customers. Something like VeriSign, but for the lo...
screen question/problem. (7 Replies)
Chest Rockwell — 103318727628 Sep 2002*
i've used screen before. i installed a game server on my freebsd 4.5 box and when i try to run screen, i get this error. i am running it as the us...
psj — 103323944428 Sep 2002
VULNERABLE APPLICATION: rogue in FreeBSD (tested on 4.6-RELEASE) ABOUT APPLICATION: rogue is a fantasy game which is indirectly setgid games IMPACT: l...
kern.ps_showallprocs and procfs (3 Replies)
Nomad — 103324200428 Sep 2002*
Hello Our's FreeBSD have nice possibility of hiding process informations of other users just by setting kern.ps_showallprocs=0. But there is one b...