mail archive

Security issues members-only posting

freebsd-security.freebsd.org
(List home) (Recent threads) (174 other FreeBSD lists)

Subscription Options

RSS or Atom: Read-only subscription using a browser or aggregator. This is the recommended way if you don't need to send messages to the list. You can learn more about feed syndication and clients here.
Conventional: All messages are delivered to your mail address, and you can reply. To subscribe, send an email to the list's subscribe address with "subscribe" in the subject line, or visit the list's homepage here.

Low traffic list: less than 3 messages per day
This list contains about 36,193 messages, beginning Feb 1995
5 messages added yesterday

Security issues members-only posting

March 2001 - page 1

sshd weirdness

Peter C. Lai — 98342545101 Mar 2001 I was upgrading my ports recently on a box that was upgraded from 4.1.1-Stable to 4.2-stable about a month ago, and saw the ssh 1.x port installed and...

Sshd having problems...? (3 Replies)

Jared Chenkin — 98342865401 Mar 2001* Hi. I try to log into this machine via ssh and I get these messages: Feb 28 14:09:07 enterprise sshd[591]: fatal: PAM session setup failed[6]: Permiss...

RE: ssh tricks (was Re: ssh -t <host> /bin/sh trick (was Re: ftp (9 Replies)

Aaron D.Gifford — 98348285701 Mar 2001* Since the topic strayed to SSH tricks, here's another to keep your eyes open for: Assuming that /sbin/ftponly is a hard link to /sbin/nologin and ...

RE: ftp access (5 Replies)

Aaron D.Gifford — 98348348401 Mar 2001* I would caution folks from putting /sbin/nologin into /etc/shells in order to create FTP-only accounts. I would instead suggest you create a link to /...

apache-1.3.12 (5 Replies)

Doni Andri C — 98355730402 Mar 2001* i have trouble with apache-1.3.12, it takes alot of swap memory to use. The server always ' core dumped' for any application for instead. Is t...

/etc/pwd.db (6 Replies)

mudman — 98356322202 Mar 2001* About a month ago, a script kiddie took (a largely unsuccessful) shot at my box: They logged in anonymous ftp (I later on ended up disabling this to d...

ssh 1.2.31 - patch (4 Replies)

Christoph Kukulies — 98357426402 Mar 2001* Thorsten, have you heard of the sshd security hole recently? http://www.securityfocus.com/frames/?content=... It would be nice to have the pacth in po...

sshd - @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ (6 Replies)

Christoph Kukulies — 98359038303 Mar 2001* I installed a newer sshd recently on one machine in the network which I used to login before already via ssh. Now I'm getting this infamous @@@@@@...

Pam_radius readme

Tim McCullagh — 98359448403 Mar 2001 Hi All, Can anyone tell me whether I am reading this incorrectly. In the Pam_mysql readme below. The sample config shows the username and password in ...

random numbers (1 Reply)

Joseph Gleason — 98367910104 Mar 2001* Would /dev/urandom be acceptable for use in a one time pad encryption system? Such a system is only as strong as the random number generator used to g...

Re: random numbers (1 Reply)

Michael Robinson — 98368291904 Mar 2001* Technically speaking, if you don't have one bit of entropy for each bit of pad, you don't have a true one-time pad. If you want to generate a ...

ftp access (23 Replies)

George.Giles — 98368403604 Mar 2001* What do I use in passwd to allow ftp, but not shell access on account ? To Unsubscribe: send mail to with "unsubscribe freebsd-security" in ...

Source address spec. for inetd.conf

Slawek Zak — 98371283104 Mar 2001 What do you think of adding separate source address specification for daemons run from inetd? Something like: <hostname|ip>:service ... in ...

Is openssl properly integrated to the FreeBSD? (3 Replies)

Mohacsi Janos — 98374746204 Mar 2001* Hi, There is an application called CA.pl with documentation in /usr/src/crypto/apps/ directory and also it has a documentation (in /usr/src/crypto/doc...

"Input/output error" on a variety of devices (1 Reply)

Michael A. Dickerson — 98378217105 Mar 2001* Hello -security, something peculiar happened to a machine I'm responsible for today. The information in the "daily run output" and ...

DNS service over TCP

Igor Malinin — 98380332305 Mar 2001 I've set up a dns server (BIND 9.1.1rc2). All working fine except for some hosts cant do TCP connections on port 53. Firewall seems to be not the ...

RE: 31337

Jason DiCioccio — 98381769205 Mar 2001 heh, looks like an irc server to me. Try going to it with an IRC client. People running ircds do tend to use port 31337 as well. Cheers, - -JD- - --- ...

sshd listening on port 6010 (1 Reply)

David Syphers — 98382159505 Mar 2001* Does anyone know why sshd listens on port 6010 when someone is ssh'd into a box? I generally use mindterm to remotely log in from a windows machin...

RE: sshd listening on port 6010

Jason DiCioccio — 98382163805 Mar 2001 X11 Forwarding uses it. But I don't think it's bound externally.. Just disable X11 forwarding if you dont want it. Cheers, - -JD- - --- Jason ...

RE: 31337 (4 Replies)

Jason DiCioccio — 98383146505 Mar 2001* Again, unless you added a few users on your system and one of them decided to run an irc server without asking you, i'd check lsof and see exactly...

31337 (13 Replies)

dce — 98383340905 Mar 2001* Hello, I have noticed the following ports open on my FreeBSD 4.2-STABLE machine 31337/tcp open Elite 6667/tcp open irc I have also noticed these open ...

windows sockstat (1 Reply)

George.Giles — 98383588105 Mar 2001* Forgive the off topic intrusion, but is there a windows NT/2K equivalent of sockstat ? It chagrins me that I must admin some PC's for security. TI...

Re: ssh tricks (was Re: ssh -t <host> /bin/sh trick (was Re: ftp access) (2 Replies)

Thomas Vogt — 98383764406 Mar 2001* An what exactly does this mean? Is it dangerous to have an interactive shell? I see that -i brings an interactive shell up. But i can't get the po...

tripwire (2 Replies)

Rob Simmons — 98386136306 Mar 2001* What are the benefits/disadvantages between the two tripwire ports and the tripwirish aide port? Robert Simmons Systems Administrator http://www.wlcg....

(Charlie Root) — 98387785206 Mar 2001 auth c0e9dc2c unsubscribe freebsd-security To Unsubscribe: send mail to with "unsubscribe freebsd-security" in the body of the message...

TOS ipfw (3 Replies)

Timothy S. Bowers — 98399202907 Mar 2001* Hello, Has anyone seen ipfw limit bandwidth on TOS (Type Of Service) ? Any help in the right direction would help :) Thanks, Timothy To Unsubscribe: s...

Re: ipmon via syslog

Some Person — 98404532408 Mar 2001 Personally, I prefer to log ipmon into a seperate file... touch /var/log/ipmon.log Then I run ipmon with -vD /var/log/ipmon.log from rc.conf And I als...

netwatch

Timothy S. Bowers — 98406090508 Mar 2001 Anyone know if Netwatch, the linux bandwidth monitoring program has been ported to FreeBSD? Is there maby an alternative ? something better than Trafs...

security-notification endless loop (2 Replies)

Ragnar Beer — 98406888508 Mar 2001* Howdy! A couple of times I've tried to subscribe freebsd-security-notifications but whenever I try I'm getting a confirmation request. When I ...

Which KAME SNAP in 4.3? (1 Reply)

Cambria, Mike — 98407121408 Mar 2001* Does anyone know which KAME SNAP (at least for Ipv4 IPSec) will be in FreeBSD 4.3? Did ALTQ make it (possibly a redundant question)? Thanks, MikeC Mic...

Re: 31337 (4 Replies)

Giovanni P. Tirloni — 98408829508 Mar 2001* Hi folks, Just to add some extra info I'd like to say that I've seen nmap reporting such open ports a lot of times while doing port scans on m...

New to Snort. (3 Replies)

Peter Brezny — 98408943408 Mar 2001* I'm new to using snort, and would like to know if this is the appropriate place to ask questions about the allert logs it generates. For example, ...

ipmon via syslog (4 Replies)

Craig Cowen — 98413164809 Mar 2001* When ever my log roles over there is a four hour lag. That is, no logging for the first four hours of the new log file. Any suggestions? To Unsubscrib...

IPsec between OpenBSD and FreeBSD (1 Reply)

ho-sang, yoon — 98413911309 Mar 2001* Sorry for second question today, I tried this for entire day, but there's no light on me. Changed algorithm, changed key, ... but all was a vain. ...

"write only" fs/files ? (6 Replies)

Mike Tancsa — 98414174909 Mar 2001* We are looking at a new network backup system and are throwing around a number of scenarios. We have a mix of co-location servers and want to provide ...

strange messages (20 Replies)

Will Mitayai Keeso Rowe — 98418258610 Mar 2001* I noticed the following messages in my logs... anything i should be worried about? Is there a way to log this better next time so i can get IPs and su...

cordless keyboards (7 Replies)

David Talkington — 98418289410 Mar 2001* My apologies for the OT. After spotting a Logitech cordless keyboard in use in one department that I maintain, I scoured the web looking for informati...

ipfw or ipf? (11 Replies)

Nathan Dorfman — 98427399611 Mar 2001* Hi all, What should I know before deciding on one of ipf or IPFW for a -stable machine protecting a small network? From what I recall, ipf had a few a...

temp files for security/logcheck (2 Replies)

Dan Langille — 98428592111 Mar 2001* The port security/logcheck creates /usr/local/etc/tmp[1] and chmod's it to 700. It does that because the temp files it creates and uses need to be...

IPSEC tunnel & setkey, How do I tell if setkey worked? (1 Reply)

jomor — 98429338711 Mar 2001* I'm finally trying to get a VPN set up between home (DSL) and work (T-1). I've been running FreeBSD on my home firewall for a few years and no...

ssh knownhosts ip vs domain name (1 Reply)

Mikhail Kruk — 98438990512 Mar 2001* I have a machine which has a dynamic ip. I use dyndns.org dynamic DNS service, so when IP on that machine changes name.dyndns.org points to the new IP...

NFS and kerberos?

Jose M. Alcaide — 98442117212 Mar 2001 Hello, I want to authenticate NFS clients on an NFS server (all of them running FreeBSD 4.3). I found that SecureRPC is not an option, but I also foun...

rebooting error (3 Replies)

Spades — 98443679612 Mar 2001* What kinda error gives this?132 132 132 132 To Unsubscribe: send mail to with "unsubscribe freebsd-security" in the body of the message...

FreeBSD Ports Security Advisory FreeBSD-SA-01:23.icecast

FreeBSD Security Advisories — 98443989712 Mar 2001 = FreeBSD-SA-01:23 Security Advisory FreeBSD, Inc. Topic: icecast port contains remote vulnerability Category: ports Module: icecast Announced: 2001-0...

FreeBSD Ports Security Advisory FreeBSD-SA-01:26.interbase

FreeBSD Security Advisories — 98444009312 Mar 2001 = FreeBSD-SA-01:26 Security Advisory FreeBSD, Inc. Topic: interbase contains remote backdoor Category: ports Module: interbase Announced: 2001-03-12 C...

FreeBSD Ports Security Advisory FreeBSD-SA-01:27.cfengine

FreeBSD Security Advisories — 98444027212 Mar 2001 = FreeBSD-SA-01:27 Security Advisory FreeBSD, Inc. Topic: cfengine port contains remote root vulnerability Category: ports Module: cfengine Announced:...

FreeBSD Security Advisory FreeBSD-SA-01:28.timed

FreeBSD Security Advisories — 98444064012 Mar 2001 = FreeBSD-SA-01:28 Security Advisory FreeBSD, Inc. Topic: timed allows remote denial of service Category: core Module: timed Announced: 2001-03-12 Cre...

FreeBSD Security Advisory FreeBSD-SA-01:29.rwhod

FreeBSD Security Advisories — 98444087912 Mar 2001 = FreeBSD-SA-01:29 Security Advisory FreeBSD, Inc. Topic: rwhod allows remote denial of service Category: core Module: rwhod Announced: 2001-03-12 Cre...

iButton Development (3 Replies)

Daniel Hagan — 98449673413 Mar 2001* There was some discussion regarding iButtons in mid-Jan on this list. I'm interested in getting one or more of these things to play with, with the...

Re: [OT?] - Central point router

Lee Smallbone — 98450481213 Mar 2001 That didn't come out too well... If anyone can help, please let me know (from the text description) and I'll mail you a txt attachment with a ...

Home | About | Privacy