Hi friends..........check out some Leehnux things.......(incl. debian distro)
ftp://ftp.linux.ee/ ----- Original Message ----- From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Saturday, February 07, 2004 8:06 PM Subject: ilugd Digest, Vol 11, Issue 14 > Send ilugd mailing list submissions to > [EMAIL PROTECTED] > > To subscribe or unsubscribe via the World Wide Web, visit > http://frodo.hserus.net/mailman/listinfo/ilugd > or, via email, send a message with subject or body 'help' to > [EMAIL PROTECTED] > > You can reach the person managing the list at > [EMAIL PROTECTED] > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of ilugd digest..." > > > Please trim replies before posting. > > Today's Topics: > > 1. Meeting for LA2004 on Sunday (Raj Mathur) > 2. Re: Meeting for LA2004 on Sunday (Raj Mathur) > 3. (fwd) Open Journal Blog Authenticaion Bypassing Vulnerability > (Raj Mathur) > 4. (fwd) [apache-ssl] Apache-SSL security advisory - > apache_1.3.28+ssl_1.52 and prior (Raj Mathur) > 5. Re: [LIH](fwd) [apache-ssl] Apache-SSL security advisory - > apache_1.3.28+ssl_1.52 and prior (Suresh Ramasubramanian) > 6. Re: Best Mobile for Internet access in Linux OS (Vijay Thakur) > 7. Re: IMAP makes my server slow .... (Amit Sharma) > 8. Re: IMAP makes my server slow .... (Sandip Bhattacharya) > 9. Re: IMAP makes my server slow .... (Amit Sharma) > 10. Re: IMAP makes my server slow .... (Sandip Bhattacharya) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Sat, 7 Feb 2004 00:10:37 +0530 > From: Raj Mathur <[EMAIL PROTECTED]> > Subject: [ilugd] Meeting for LA2004 on Sunday > To: [EMAIL PROTECTED] > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > South Delhi it is then :) > > Meeting for all involved with LA 2004 on Sunday, 5pm at my place. > Please drop in if you haven't managed to sign up for hard manual > labour and/or donating your skills, resources and hard-earned money > for the event! > > Address: BB/3G DDA Flats > Munirka > > Directions: > 1. Come onto the Outer Ring Road somewhere. > > 2. Turn into Street B of DDA Munirka. Big Udipi > restaurant at the beginning of the street. (See below) > > 2a. If coming from IIT, take the 3rd turn to the left > after the Africa Avenue turn to the right. All three > crossing have signals, all three are left turn only. > > 2b. If coming from Vasant Vihar, take the first right > (second signal) after the Vasant Vihar Bus Depot. > > 3. Take the second turn to the left. Now you're on Street > BB. > > 4. Go up the stairs of the 3rd block of houses on your > left (BB/3). BB/3G is on the 3rd floor, on the left (the > door without any nameplate -- I don't want the cops to > find out my location ;) > > Time: (Once again): 5:30 PM. Please be on time! > > Agenda: 1. Fixing up demos for LA2004. > 2. Deciding on volunteer tasks. > 3. Determining CDs to be sold. > 4. Anything else related to LA2004 > 5. Snakes and chai. > > Regards, > > -- Raju > -- > Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ > GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F > It is the mind that moves > > > > ------------------------------ > > Message: 2 > Date: Sat, 7 Feb 2004 08:29:58 +0530 > From: Raj Mathur <[EMAIL PROTECTED]> > Subject: Re: [ilugd] Meeting for LA2004 on Sunday > To: The Linux-Delhi mailing list <[EMAIL PROTECTED]> > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > >>>>> "Raj" == Raj Mathur <[EMAIL PROTECTED]> writes: > > Raj> South Delhi it is then :) Meeting for all involved with LA > Raj> 2004 on Sunday, 5pm at my place. Please drop in if you > Raj> haven't managed to sign up for hard manual labour and/or > Raj> donating your skills, resources and hard-earned money for the > Raj> event! > > Raj> Address: BB/3G DDA Flats Munirka > > *Cough* did I mention? > > Date: Sunday, February 8 > > -- Raju > -- > Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ > GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F > It is the mind that moves > > > > ------------------------------ > > Message: 3 > Date: Sat, 7 Feb 2004 08:45:14 +0530 > From: Raj Mathur <[EMAIL PROTECTED]> > Subject: [ilugd] (fwd) Open Journal Blog Authenticaion Bypassing > Vulnerability > To: [EMAIL PROTECTED], > [EMAIL PROTECTED] > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > [Please upgrade if you use Open Journal -- Raju] > > This is an RFC 1153 digest. > (1 message) > ---------------------------------------------------------------------- > > Message-ID: <[EMAIL PROTECTED]> > From: "Tri Huynh" <[EMAIL PROTECTED]> > Sender: [EMAIL PROTECTED] > To: <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> > Cc: <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> > Subject: [Full-Disclosure] Open Journal Blog Authenticaion Bypassing Vulnerability > Date: Fri, 6 Feb 2004 12:47:36 -0800 > > Open Journal Blog Authenticaion Bypassing Vulnerability > ================================================= > > PROGRAM: Open Journal > HOMEPAGE: http://www.grohol.com/downloads/oj/ > VULNERABLE VERSIONS: 2.5 and below > > > DESCRIPTION > ================================================= > > OpenJournal is a completely Web-based interface > (say bye-bye to FTP, manual archiving, etc.). Features > include: automated file creation; automated index > updating; editing of all files through a Web-based > interface; entries with or without titles and time posted; > automated archiving based on a weekly or monthly format. > All done through ordinary text files and no additional > perl modules needed to run it > > DETAILS > ================================================= > By feeding special crafted data into the uid parameter of the URL, an > attacker > can by pass the authentication process and access directly > to the software's control panel. > The below example will let the hacker add a new user to the software > account database. > > http://www.test.com/cgi-bin/oj.cgi?db=default&uid=%00&userid=hacker&auth=adduser > > > WORKAROUND > ================================================= > Open Journal's author (Dr John Grohol) is contacted.A patched version > (2.6) is ready for downloading on the website. > > > CREDITS > ================================================= > > Discovered by Tri Huynh from SentryUnion > > > DISLAIMER > ================================================= > > The information within this paper may change without notice. Use of > this information constitutes acceptance for use in an AS IS condition. > There are NO warranties with regard to this information. In no event > shall the author be liable for any damages whatsoever arising out of > or in connection with the use or spread of this information. Any use > of this information is at the user's own risk. > > > FEEDBACK > ================================================= > > Please send suggestions, updates, and comments to: [EMAIL PROTECTED] > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > > ------------------------------ > > End of this Digest > ****************** > > -- > Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ > GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F > It is the mind that moves > > > > ------------------------------ > > Message: 4 > Date: Sat, 7 Feb 2004 09:19:23 +0530 > From: Raj Mathur <[EMAIL PROTECTED]> > Subject: [ilugd] (fwd) [apache-ssl] Apache-SSL security advisory - > apache_1.3.28+ssl_1.52 and prior > To: [EMAIL PROTECTED], > [EMAIL PROTECTED] > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > [Please upgrade Apache mod_ssl -- Raju] > > This is an RFC 1153 digest. > (1 message) > ---------------------------------------------------------------------- > > Message-ID: <[EMAIL PROTECTED]> > From: Adam Laurie <[EMAIL PROTECTED]> > Sender: [EMAIL PROTECTED] > To: [EMAIL PROTECTED], [EMAIL PROTECTED], > [EMAIL PROTECTED], [EMAIL PROTECTED] > Subject: [Full-Disclosure] [apache-ssl] Apache-SSL security advisory - apache_1.3.28+ssl_1.52 and prior > Date: Fri, 06 Feb 2004 12:05:24 +0000 > > Apache-SSL optional client certificate vulnerability > ---------------------------------------------------- > > Synopsis > -------- > > If configured with SSLVerifyClient set to 1 or 3 (client certificates > optional) and SSLFakeBasicAuth, Apache-SSL 1.3.28+1.52 and all earlier > versions would permit a client to use real basic authentication to > forge a client certificate. > > All the attacker needed is the "one-line DN" of a valid user, as used > by faked basic auth in Apache-SSL, and the fixed password ("password" > by default). > > Fix > --- > > Install Apache-SSL 1.3.29+1.53 from the usual places (see > http://www.apache-ssl.org/). > > Credits > ------- > > This vulnerability was found and reported by Wietse Venema. > > cheers, > Adam > -- > Adam Laurie Tel: +44 (20) 8742 0755 > A.L. Digital Ltd. Fax: +44 (20) 8742 5995 > The Stores http://www.thebunker.net > 2 Bath Road http://www.aldigital.co.uk > London W4 1LT mailto:[EMAIL PROTECTED] > UNITED KINGDOM PGP key on keyservers > > > -------------------------------------------------------------------------- --------- > to unsubscribe, send a blank email to: [EMAIL PROTECTED] > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > > ------------------------------ > > End of this Digest > ****************** > > -- > Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ > GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F > It is the mind that moves > > > > ------------------------------ > > Message: 5 > Date: Sat, 07 Feb 2004 11:17:53 +0530 > From: Suresh Ramasubramanian <[EMAIL PROTECTED]> > Subject: [ilugd] Re: [LIH](fwd) [apache-ssl] Apache-SSL security > advisory - apache_1.3.28+ssl_1.52 and prior > To: [EMAIL PROTECTED] > Cc: [EMAIL PROTECTED] > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii; format=flowed > > Raj Mathur [2/7/2004 9:19 AM] : > > > [Please upgrade Apache mod_ssl -- Raju] > > apache-ssl != apache with mod_ssl > > Two entirely different beasts here. > > apache-ssl = http://www.apache-ssl.org#mod_ssl (which takes you straight > to the part where the site says "apache-ssl is not mod_ssl) :) > > mod_ssl = http://www.modssl.org/ > > srs > > -- > [EMAIL PROTECTED] (Suresh Ramasubramanian) > [EMAIL PROTECTED]:/usr/src$ mv linux Gnu/Linux > mv: cannot move `linux' to `Gnu/Linux': No such file or directory > jaharkes @ cs.cmu.edu in reply to RMS on linux.kernel > > > > ------------------------------ > > Message: 6 > Date: Sat, 7 Feb 2004 07:08:11 +0000 (GMT) > From: Vijay Thakur <[EMAIL PROTECTED]> > Subject: Re: [ilugd] Best Mobile for Internet access in Linux OS > To: The Linux-Delhi mailing list <[EMAIL PROTECTED]> > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=iso-8859-1 > > > > Shivkumar Jagannath <[EMAIL PROTECTED]> wrote:hi, > I can tell you that I have personally used the Samsung > NCH-191 Reliance phone on my linux box and it works > like a breeze!. btw I got the cable (with charger > inbuilt) for Rs 75 at Nehru place in Delhi. > > ===== > catch ya later (Ive gotta UnWire Life!!!) > shiv > > __________________________________ > Do you Yahoo!? > Yahoo! SiteBuilder - Free web site building tool. Try it! > http://webhosting.yahoo.com/ps/sb/ > > _______________________________________________ > ilugd mailing list > [EMAIL PROTECTED] > http://frodo.hserus.net/mailman/listinfo/ilugd > > Yahoo! India Education Special: Study in the UK now. > > ------------------------------ > > Message: 7 > Date: Sat, 7 Feb 2004 13:04:17 +0530 > From: "Amit Sharma" <[EMAIL PROTECTED]> > Subject: Re: [ilugd] IMAP makes my server slow .... > To: "SWAMI NATHAN" <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset="iso-8859-1" > > please guide me how to upgrade or reconfigure imap. > > amit > > ----- Original Message ----- > From: SWAMI NATHAN > To: [EMAIL PROTECTED] > Cc: [EMAIL PROTECTED] > Sent: Saturday, 07 February, 2004 12:10 PM > Subject: RE: [ilugd] IMAP makes my server slow .... > > > Hi Amit, > > Imap should have only one entry on ps -ef, i think you may have to upgrade your imap or reconfigure. > > > > Swami > > > > >From: amit sharma > >Reply-To: The Linux-Delhi mailing list > >To: The Linux-Delhi mailing list > >CC: [EMAIL PROTECTED] > >Subject: [ilugd] IMAP makes my server slow .... > >Date: Fri, 6 Feb 2004 04:39:48 -0800 (PST) > > > >hi, > > > >i am using Red Hat 8.0 (PCQ Version) > > > >i have about 80 users on imap (version imap-2001a-15) > >my problem is that the sever gets very slow probably > >due to imap access from the users. at any given point > >of time > >ps -ef|grep imapd shows about 15-20 entries. > > > >1. is the server goes down due to imap only? > >2. from where can i obtain the latest imap rpm (if > >any) > >3. any tips/ tweaks to manage the server better with > >imap? > > > >regards, > >amit > > > > > > > >__________________________________ > >Do you Yahoo!? > >Yahoo! Finance: Get your refund fast by filing online. > >http://taxes.yahoo.com/filing.html > > > >_______________________________________________ > >ilugd mailing list > >[EMAIL PROTECTED] > >http://frodo.hserus.net/mailman/listinfo/ilugd > > > -------------------------------------------------------------------------- ---- > Gifts for Him & Her. Valentine's Day. At MSN Shopping. > > ------------------------------ > > Message: 8 > Date: Sat, 07 Feb 2004 13:18:15 +0530 > From: Sandip Bhattacharya <[EMAIL PROTECTED]> > Subject: Re: [ilugd] IMAP makes my server slow .... > To: The Linux-Delhi mailing list <[EMAIL PROTECTED]> > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii; format=flowed > > Amit Sharma wrote: > > > Hi Amit, > > > > Imap should have only one entry on ps -ef, i think you may have to upgrade your imap or reconfigure. > > > > Wrong. The default way of running the WU imap server on redhat is using > inetd/xinetd. For each client connection xinetd starts a separate imapd > process - after the login process imapd drops root priviledges and > switches to the user id of the login. > > Use "ps aux|grep imap" to see how the different imap processes are > running under different user ids. > > - Sandip > > > -- > Sandip Bhattacharya http://www.sandipb.net > sandip at puroga.com > Puroga Technologies Pvt. Ltd. > http://www.puroga.com > > > > ------------------------------ > > Message: 9 > Date: Sat, 7 Feb 2004 02:54:48 -0800 (PST) > From: Amit Sharma <[EMAIL PROTECTED]> > Subject: Re: [ilugd] IMAP makes my server slow .... > To: The Linux-Delhi mailing list <[EMAIL PROTECTED]> > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > well ... ps aux|grep imap shows 10-15 output. > > but core question is how to upgrade IMAP (if it can be > upgraded) and/or how to configure for optimum usage. > > amit > > --- Sandip Bhattacharya <[EMAIL PROTECTED]> > wrote: > > Amit Sharma wrote: > > > > > Hi Amit, > > > > > > Imap should have only one entry on ps -ef, i > > think you may have to upgrade your imap or > > reconfigure. > > > > > > > Wrong. The default way of running the WU imap server > > on redhat is using > > inetd/xinetd. For each client connection xinetd > > starts a separate imapd > > process - after the login process imapd drops root > > priviledges and > > switches to the user id of the login. > > > > Use "ps aux|grep imap" to see how the different imap > > processes are > > running under different user ids. > > > > - Sandip > > > > > > -- > > Sandip Bhattacharya > > http://www.sandipb.net > > sandip at puroga.com > > Puroga Technologies Pvt. Ltd. > > http://www.puroga.com > > > > _______________________________________________ > > ilugd mailing list > > [EMAIL PROTECTED] > > http://frodo.hserus.net/mailman/listinfo/ilugd > > > __________________________________ > Do you Yahoo!? > Yahoo! Finance: Get your refund fast by filing online. > http://taxes.yahoo.com/filing.html > > > > ------------------------------ > > Message: 10 > Date: Sat, 07 Feb 2004 20:32:35 +0530 > From: Sandip Bhattacharya <[EMAIL PROTECTED]> > Subject: Re: [ilugd] IMAP makes my server slow .... > To: The Linux-Delhi mailing list <[EMAIL PROTECTED]> > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii; format=flowed > > Amit Sharma wrote: > > well ... ps aux|grep imap shows 10-15 output. > > Which is fine and perfectly normal in most network services, whether it > is pop3 server or smtp server or http server or any network service > which is either multithreaded or multiprocessed or is launched using > inetd/xinetd. If multiple imap listing while running ps is what is > causing you to think about upgrade, then i am afraid nothing else will > help you either. > > Just try running top on a console and watch it for a while - if you have > the same machine running samba or pop3 services, you will see over time > different processes of the same program coming up in the listing. The > only difference will be the second column from the left which shows the > uid under which the process is running. I repeat, this is perfectly normal. > > > > > but core question is how to upgrade IMAP (if it can be > > upgraded) and/or how to configure for optimum usage. > > What is optimum for you? What is the problem that you think you are facing? > a. Are you seeing higher system load? > b. are you facing disk-thrashing (high swap usage)? How much memory do > you have in that case? > c. Do you think the clients are actually facing difficulties in > connection/speed while fetching mail? > > - Sandip > > > -- > Sandip Bhattacharya http://www.sandipb.net > sandip at puroga.com > Puroga Technologies Pvt. Ltd. > http://www.puroga.com > > > > ------------------------------ > > _______________________________________________ > ilugd mailing list > [EMAIL PROTECTED] > http://frodo.hserus.net/mailman/listinfo/ilugd > > > End of ilugd Digest, Vol 11, Issue 14 > ************************************* > > _______________________________________________ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
