mail archive Security issues members-only posting
freebsd-security.freebsd.org
(List home) (Recent threads) (174 other FreeBSD lists)
Subscription Options
- RSS or Atom: Read-only subscription using a browser or aggregator. This is the recommended way if you don't need to send messages to the list. You can learn more about feed syndication and clients here.
- Conventional: All messages are delivered to your mail address, and you can reply. To subscribe, send an email to the list's subscribe address with "subscribe" in the subject line, or visit the list's homepage here.
- Low traffic list: less than 3 messages per day
- This list contains about 36,175 messages, beginning Feb 1995
- 0 messages added yesterday
Security issues members-only posting
June 1997
Darren Reed — 86524651802 Jun 1997
Can someone cross check with the RFC (I will later), but there is no ack/seq numbers checked for a RST packet. Is this deliberate ? Look at code paths...
Steve Ames — 86527972802 Jun 1997
Every now and again a file called /etc/master.passwd.crash##### will appear. This file is world readable. Anyone want to fix it so that whatever piece...
Brad Bates — 86533353303 Jun 1997
Michael, First, you may want to check-in with the security mail group and keep this out of the question group. See the freebsd-security information on...
Re: TCP RST Handling in 2.2 (fwd) (8 Replies)
Darren Reed — 86534305603 Jun 1997*
Bakul Shah forwarded to me the relevant part of the RFC. I think there is some missing code. [...][...] Currently, not even the SEQ number is verified...
yossman — 86578691508 Jun 1997
one of my users sent me this. just wondering if anyone has heard about this before. he claims freebsd.org is affected. yossman...
Re: ftpd security weakness on FreeBSD (fwd) (2 Replies)
Mark Rollings — 86589187609 Jun 1997*
Above any of the below mentioned deficiencies in the ftpd, CERT recently released an advisory on the ftpd for practically all OS's. The replacemen...
0 (3 Replies)
Yuang Shuang-Long — 86597874210 Jun 1997*
Hi! folks: I have a trouble that some users use the following prog. to get root privilege, and the more they do some destructive thing. (eg. delete so...
Re: Our DNS severs are vulnerable (fwd) (1 Reply)
Valery Filippov — 86615852012 Jun 1997*
Бросьте в меня тоже патчем, please......
Darius Ramanauskas — 86620283613 Jun 1997
Some patches from SNI Бросьте в меня тоже патчем, please......
sequence predictability (fwd) (5 Replies)
Robert N Watson — 86622409413 Jun 1997*
Having seen this post on the ntbugtraq mailing list, I was wondering how preditcabkle sequence numbers in FreeBSD TCP connections were.. And is this a...
128MB ram (1 Reply)
Taufik Islam — 86625091714 Jun 1997*
I am thinging of upgrading my ram size from 64M to 128MB. Do i have to do anything special ? I though I can just shutdown the machine put the extra ra...
Андрей Чернов — 86626074514 Jun 1997
It fixes predictable IDs and MAXHOSTNAMELEN while apostols use "cache addition" and not those two techniques, so it does not work!...
DNS abuse (fwd) (5 Replies)
Dmitry Valdov — 86631558014 Jun 1997*
Hi! named in 2.1.5 is vulnerable... Is 2.2.x's named vulnerable too? Dmitry. -- Forwarded message -- Date: Thu, 12 Jun 1997 08:02:22 +0200 From: J...
Attempt to compromise root (3 Replies)
Sean Kelly — 86685584121 Jun 1997*
I'm running FreeBSD 2.2-RELEASE. One of my users (okay, she's my wife) had submitted a crontab which had a bad MAILTO line in it, resulting in...
Simple TCP service can hang a system (fwd) (2 Replies)
Daniel O'Callaghan — 86695964022 Jun 1997*
-- Forwarded message -- Date: Sat, 21 Jun 1997 23:58:16 +0200 From: Willy TARREAU To: Subject: Simple TCP service can hang a system Hi ! I've noti...
Bruce Evans — 86696328722 Jun 1997
Even if you turn them on, the loopback problem has been fixed for years: RCS file: /a/ncvs/src/usr.sbin/inetd/inetd.c,v Working file: inetd.c ... revi...
Jim Shankland — 86704121223 Jun 1997
Of course, I don't see any reason to make these services available across administrative boundaries (or zones of trust), anyway. They're routi...
Guido van Rooij — 86708766523 Jun 1997
I'm forwarding this in case some of you missed this... -GuidoResent-Date: Mon, 23 Jun 1997 02:14:33 +1000 (EST) Message-Id: Date: Sun, 22 Jun 1997...
Rob Hartill — 86727259825 Jun 1997
Anyone know anything about this host ? Name: jrc-5-104.tm.net.my Address: 202.188.5.104 I noticed it probing ports in ipfw's logs. abbreviations: ...
4.4BSD Securelevels (fwd) (1 Reply)
Darren Reed — 86728280225 Jun 1997*
...
chas — 86728663526 Jun 1997
interesting indeed, It is a dial up to Telekom Malaysia's ISP section called tm.net.my. There is somebody on the freebsd-isp list who is from asia...
DES and IDEA (1 Reply)
Nathan Dorfman — 86734174226 Jun 1997*
Hello I have a question about FreeBSD's crypt(). If I installed DES when I originally installed the system, does the crypt() use DES by default? I...
SSHD from Inetd (1 Reply)
Nathan Dorfman — 86736518426 Jun 1997*
How can I run sshd from inetd? I hate daemons that need their own process ;)...
Minimum files for operation (1 Reply)
Frank McCormick — 86737454027 Jun 1997*
Does anyone know of a list compiled somewhere, naming the handful of files required for minimal operation of FreeBSD? The security-related literature ...
ipsec code made in Japan (4 Replies)
itojun — 86739362627 Jun 1997*
I've made a IPv4 IPsec patch to 2.2.1-RELEASE, in: ftp://ftp.csl.sony.co.jp/pub/itojun/ipsec/ (should be easily applied to 222-RELEASE too) Please...
chas — 86743642527 Jun 1997*
I sent along a bit of info on this one earlier but it did prompt me to wonder : "how can we check for this info (and DoS attackes or similar) in ...
ICMP Logging (3 Replies)
Nathan Dorfman — 86743819627 Jun 1997*
Is there a way for the kernel to syslog(3) all ICMP messages? This would serve two purposes; a) as I have all syslog messages directed to an unused vt...
chas — 86743990427 Jun 1997
Thank you very much Tony,seems to have a port in the freebsd site so that is a good sign - http://hobbes.cdrom.com/pub/FreeBSD/ports-cur... >give m...