[SECURITY] [DSA 470-1] New Linux 2.4.17 packages fix several local root exploits (hppa)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 470-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze April 1st, 2004 http://www.debian.org/security/faq - -- Package: kernel-image-2.4.17-hppa Vulnerability : several vulnerabilities Problem-Type : local Debian-specific: no CVE ID : CAN-2003-0961 CAN-2003-0985 CAN-2004-0077 Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the mips kernel 2.4.19 for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update: CAN-2003-0961: An integer overflow in brk() system call (do_brk() function) for Linux allows a local attacker to gain root privileges. Fixed upstream in Linux 2.4.23. CAN-2003-0985: Paul Starzetz discovered a flaw in bounds checking in mremap() in the Linux kernel (present in version 2.4.x and 2.6.x) which may allow a local attacker to gain root privileges. Version 2.2 is not affected by this bug. Fixed upstream in Linux 2.4.24. CAN-2004-0077: Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap(2) system call. Due to missing function return value check of internal functions a local attacker can gain root privileges. Fixed upstream in Linux 2.4.25 and 2.6.3. For the stable distribution (woody) these problems have been fixed in version 32.3 of kernel-image-2.4.17-hppa. For the unstable distribution (sid) these problems have been fixed in version 2.4.25-1 of kernel-image-2.4.25-hppa. We recommend that you upgrade your Linux kernel packages immediately. Upgrade Instructions - wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody - Source archives: http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-image-2.4.17-hppa_32.3.dsc Size/MD5 checksum: 713 f5b7956a75870aaff51ccb52c96a0ab2 http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-image-2.4.17-hppa_32.3.tar.gz Size/MD5 checksum: 29958048 44cb813807b9b1c45984fadfc18d4ba1 Architecture independent components: http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-source-2.4.17-hppa_32.3_all.deb Size/MD5 checksum: 24109698 cefc1a3ebfce0d30f97b556ed62674d4 HP Precision architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-headers-2.4.17-hppa_32.3_hppa.deb Size/MD5 checksum: 3531296 605f593d9648fd2ab1aa2d6f106263af http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-image-2.4.17-32_32.3_hppa.deb Size/MD5 checksum: 2737992 793396152e7dea3f9a1ea8ea10c4dbe7 http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-image-2.4.17-32-smp_32.3_hppa.deb Size/MD5 checksum: 2870174 2f2df476a902378a9efa96a79367eed2 http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-image-2.4.17-64_32.3_hppa.deb Size/MD5 checksum: 3024282 1a687ccbedbba298a7e98ba7d2b20650 http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-hppa/kernel-image-2.4.17-64-smp_32.3_hppa.deb Size/MD5 checksum: 3165702 795b734b1e17a75a76c40af8f49e6ec7 These files will probably be moved into the stable distribution on its next revision. - - For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: [EMAIL PROTECTED] Package info: `apt-cache show pkg' and http://packages.debian.org/pkg -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAbDzxW5ql+IAeqTIRAkGYAJ0T4ycYceqnSp1P5zvElT9jsXpW0ACgoBMX ekopsdUvlccu2maqF7C0TXs= =3m0l -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: VPN Firewall Kernel
Hi Sean, SM I'm in the process of building a kernel for a Debian machine being used SM as a VPN Firewall. SM I need Freeswan 1.99+, MPPE for Poptop, patch-o-matic for pptp masq and SM would like GrSecurity for it's chroot and randomized capabilities. SM Applying all these patches to 2.4.25 fails with many files unpatched. SM Does anyone know of an existing Kernel that has similar features? have a look at Adamantix, which was formerly known as trusteddebian (http://www.trusteddebian.org/) and is some kind of a secured (mini) debian based distribution. If you just want a kernel, with almost everything in there belonging to security, have a look at WOLK (Working OverLoaded Kernel) at http://sourceforge.net/projects/wolk Hope that helps. best regards michael -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
HTTP Browser Authentification Bug and some more bugs
hi, further information are here: http://www.ietf.org/rfc/rfc1945.txt great idea until this is fixed(not mine): Stop all http and https servers and don't visit sites which works with the from design related unsecure http protocol! HEY, don't blame me, it's translated from german to english, read for yourself: http://www.heise.de/security/news/meldung/46175 there are some more: squid has a security Problem too, don't know whether debian-packages has the same problem: https://rhn.redhat.com/errata/RHSA-2004-134.html and tcpdump has 2 overflows: http://www.rapid7.com/advisories/R7-0017.html Greetz Konstantin -- Building an operating system without source code is like buying a self-assembly Space Shuttle with no instructions. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: HTTP Browser Authentification Bug and some more bugs
* Quoting Konstantin ([EMAIL PROTECTED]): further information are here: http://www.ietf.org/rfc/rfc1945.txt great idea until this is fixed(not mine): Stop all http and https servers and don't visit sites which works with the from design related unsecure http protocol! HEY, don't blame me, it's translated from german to english, read for yourself: http://www.heise.de/security/news/meldung/46175 Hehe, Aprils Fools Day :) The other ones seems to be real. - Rolf -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
netkit-inetd / time (port 37) related issues?
Hi, I just noticed that my machine got hammered (well, at 25kbps) with tons of port 37 connections for the past week. Anything known regarding recent security problems with that? I run a quite-up-to-date testing machine, and I follow the Debian DSAs and take action where the lacking security support for testing requires me to do so, so it shouldn't be a known old problem. To be careful, I have now reinstalled kernel, libc, psutils, coreutils and sysvinit from known-good sources. Newest chkrootkit Debian pkg doesn't detect anything, and after reboot the traffic has stopped. (Oh, yes: time service has also be disabled in inetd.conf) cheers -- vbi -- The content of this message may or may not reflect the opinion of me, my employer, my girlfriend, my cat or anybody else, regardless of the fact whether such an employer, girlfriend, cat, or anybody else exists. I (or my employer, girlfriend, cat or whoever) disclaim any legal obligations resulting from the above message. You, as the reader of this message, may or may not have the permission to redistribute this message as a whole or in parts, verbatim or in modified form, or to distribute any message at all. pgp0.pgp Description: signature
unsubscribe
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Votre demande [uid]b5aadcd37c3da1789794bdf4dfd587b7[/uid]
Vivendi Universal Games France assure à ses clients un traitement professionnel et de qualité. Nous avons bien pris en compte votre demande et nous vous remercions de lintérêt que vous portez à nos logiciels. Une réponse personnalisée vous sera transmise sous peu. Toutefois, afin de réduire votre temps dattente, nous avons regroupé les informations techniques les plus demandées. Vous pouvez cliquer sur les liens qui peuvent concerner votre problème. Une F.A.Q. générale est mise à votre disposition en cliquant sur ce lien : http://downloads.vu-games.com/homeworld2/FAQ/FAQgen.txt Elle peut vous permettre de résoudre 70% des problèmes rencontrés avec un ordinateur. Les PATCHES les plus demandés : - Warcraft 3 Reign of chaos et frozen throne http://downloads.vu-games.com/Warcraft3/reignofchaos/Patches/Pc/Fr/War3ROC_114b_Francais.exe http://downloads.vu-games.com/Warcraft3/frozenThrone/Patches/War3TFT_114b_Francais.exe - Contract J.A.C.K. http://downloads.vu-games.com/NOLF2_Contract_Jack/patches/FR/contractjack_update_fr_10_11.exe - Adiboudchou à la campagne http://downloads.vu-games.com/adiboudchou/patches/Patch-Fr-Adiboudchou-Campagne.exe - La guerre de lanneau http://downloads.vu-games.com/LOTR_War_of_The_Ring/Patches/FR/warofthering_update_fr_110_1010011.exe - Diablo 2 et Lord of destruction http://downloads.vu-games.com/Diablo_2/patches/PC/D2Patch_110.exe http://downloads.vu-games.com/ Diablo_2_Lord_of_the_destruction/patches/PC/LODPatch_110.exe Les QUESTIONS les plus fréquentes (F.A.Q.) : (Cliquez sur la partie « support » en bas a droite puis sur « faq logiciel ») - Warcraft 3 ROC et FT : http://fr.vugames-europe.com/home.aspx?idp=2723 - Half Life et Counter Strike by Steam : http://fr.vugames-europe.com/home.aspx?idp=2954 - Adibou et l\'ombre verte : http://fr.familykids.vugames-europe.com/home.aspx?idp=5413 - Diablo 2 et LOD : http://fr.vugames-europe.com/home.aspx?idp=2955 - Adi 5 : http://fr.familykids.vugames-europe.com/home.aspx?idp=4156 - Les grands bâtisseurs 2: http://www.sierra.fr/home.aspx?idp=4677 VUGFR - Support technique TEL : 0892 880 240 (0.34 euro la minute) du lundi au samedi de 9h à 21h y compris les jours fériés http://fr.vugames-europe.com http://fr.familykids.vugames-europe.com http://fr.sierra.vu-games.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
xautolock activation behaviour
Hi, a user provided a convenience patch[1] for xautolock[2] preventing xautolock from starting its configured executible (e.g. xlock) when the computer just woke up from sleep. IMHO this would raise a security issue for people assuming xlock to be started after wakeup, so I propose to reject the patch. Any opposition? Thanks. bye, Roland [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=241213 [2] http://packages.debian.org/unstable/x11/xautolock -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
WELCOME to suse-security@suse.com
Hi! This is the ezmlm program. I'm managing the [EMAIL PROTECTED] mailing list. I'm working for my owner, who can be reached at [EMAIL PROTECTED] Acknowledgment: I have added the address [EMAIL PROTECTED] to the suse-security mailing list. Welcome to [EMAIL PROTECTED] Please save this message so that you know the address you are subscribed under, in case you later want to unsubscribe or change your subscription address. To unsubscribe, send a message to: [EMAIL PROTECTED] Please read the following before posting. As with any mailing list or newsgroup, it's usually a good idea to read the list for a few days before posting. Also, please check Peter Nixon's excellent unofficial SuSE security FAQ, http://www.susesecurity.com, before posting. suse-security is *NOT* intended for general Linux questions; use one of the general lists instead (suse-linux, suse-linux-e, etc.). Some Frequently Asked, Frequently Asked Questions Q1. What is the suse-security mailing list? A1. suse-security is a list for discussions about security and SuSE Linux. It is *not* a replacement for bugtraq. Q2. What is appropriate content for the list? A2. Information and discussions about OS or network security as it relates to SuSE Linux and discussions about recent SuSE security advisories are common topics. Q3. What is not appropriate content for the list? A3. Commercial postings of any kind, job postings, non-computer/Linux related material. Likewise, new exploits that you may have discovered should be sent to [EMAIL PROTECTED] and not this list. Please, please read one of the many security FAQs before posting a question--asking questions like Does anyone know where I can find a list of known-ports? or How do I create a Linux firewall? will most likely result flames. Q4. How can I retrieve the FAQ? A4. Send an email to [EMAIL PROTECTED] Q5. Can I send attachments to the list? A5. The short answer is 'no', you can't but see the FAQ more details. Q6. Are there archives of the list? A6. Yes, http://lists.suse.com/archive/suse-security/ Currently, they are not searchable. Q7. Why do my replies go to the original poster and not the list? A7. There is a more complete answer in FAQ, but the short answer is that it's better this way. Trust us on this one, please. Q8. Can I get the list digest form? A8. Not from us. There's a much more complete discussion about this in the FAQ as well. Q9. How do I pause deliveries from the list while I'm on vacation? A9. You unsubscribe before you leave and resubscribe when you return. --- Administrative commands for the suse-security list --- I can handle administrative requests automatically. Please do not send them to the list address! Instead, send your message to the correct command address: For help and a description of available commands, send a message to: [EMAIL PROTECTED] To subscribe to the list, send a message to: [EMAIL PROTECTED] To remove your address from the list, just send a message to the address in the ``List-Unsubscribe'' header of any list message. If you haven't changed addresses since subscribing, you can also send a message to: [EMAIL PROTECTED] For addition or removal of addresses, I'll send a confirmation message to that address. When you receive it, simply reply to it to complete the transaction. If you need to get in touch with the human owner of this list, please send a message to: [EMAIL PROTECTED] Please include a FORWARDED list message with ALL HEADERS intact to make it easier to help you. --- Enclosed is a copy of the request I received. Return-Path: [EMAIL PROTECTED] Received: (qmail 25187 invoked from network); 1 Apr 2004 16:35:06 - Received: from unknown (HELO hermes.suse.de) (195.135.221.8) by 0 with SMTP; 1 Apr 2004 16:35:06 - Received: from scanhost.suse.de (scanhost.suse.de [10.0.0.5]) by hermes.suse.de (Postfix) with ESMTP id 819A31AC7F for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:35:06 +0200 (CEST) Received: from hermes.suse.de ([10.0.0.1]) by scanhost.suse.de (scanhost [10.0.0.5]) (amavisd-new, port 10025) with ESMTP id 27223-01 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:35:02 +0200 (CEST) Received: from Cantor.suse.de (ns.suse.de [195.135.220.2]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by hermes.suse.de (Postfix) with ESMTP id 0E7FB1AD5F for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:34:26 +0200 (CEST) Received: from ns.linux.net.ni (ns.linux.net.ni [209.124.105.122]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by Cantor.suse.de (Postfix) with ESMTP id 1BCFB3C5E1B for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:34:14 +0200 (CEST) Received: from ns.linux.net.ni (localhost [127.0.0.1]) by ns.linux.net.ni (8.12.10/8.12.10/SuSE Linux
Jakob Stærk/JAKS/DK/MD Foods is out of the office.
I will be out of the office starting 30-03-2004 and will not return until 20-04-2004. For urgent matters contact [EMAIL PROTECTED] or [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Werner Thöni ist NICHT im Büro
Ich werde ab 31.03.2004 nicht im Büro sein. Ich kehre zurück am 05.04.2004. Ich werde Ihre Nachricht nach meiner Rückkehr beantworten. In dringenden Fällen wenden Sie sich bitte an meinen Stellvertreter Hrn. Martin RÖDLACH. mailto:[EMAIL PROTECTED] Aus Gründen der Vertraulichkeit wird Ihre eMail nicht weitergeleitet! Mit freundlichen Grüßen Dipl.-Ing. Werner THÖNI Leiter Systemgruppe UNIX Allgemeines Rechenzentrum Innsbruck fon: ++43-512-5345-0 fax: ++43-512-5345-1382 mailto:[EMAIL PROTECTED] http://www.arz.co.at
confirm unsubscribe from suse-security@suse.com
Hi! This is the ezmlm program. I'm managing the [EMAIL PROTECTED] mailing list. I'm working for my owner, who can be reached at [EMAIL PROTECTED] To confirm that you would like [EMAIL PROTECTED] removed from the suse-security mailing list, please send an empty reply to this address: [EMAIL PROTECTED] Usually, this happens when you just hit the reply button. If this does not work, simply copy the address and paste it into the To: field of a new message. I haven't checked whether your address is currently on the mailing list. To see what address you used to subscribe, look at the messages you are receiving from the mailing list. Each message has your address hidden inside its return path; for example, [EMAIL PROTECTED] receives messages with return path: suse-security-return-number[EMAIL PROTECTED] --- Administrative commands for the suse-security list --- I can handle administrative requests automatically. Please do not send them to the list address! Instead, send your message to the correct command address: For help and a description of available commands, send a message to: [EMAIL PROTECTED] To subscribe to the list, send a message to: [EMAIL PROTECTED] To remove your address from the list, just send a message to the address in the ``List-Unsubscribe'' header of any list message. If you haven't changed addresses since subscribing, you can also send a message to: [EMAIL PROTECTED] For addition or removal of addresses, I'll send a confirmation message to that address. When you receive it, simply reply to it to complete the transaction. If you need to get in touch with the human owner of this list, please send a message to: [EMAIL PROTECTED] Please include a FORWARDED list message with ALL HEADERS intact to make it easier to help you. --- Enclosed is a copy of the request I received. Return-Path: [EMAIL PROTECTED] Received: (qmail 25947 invoked from network); 1 Apr 2004 21:39:22 - Received: from unknown (HELO hermes.suse.de) (195.135.221.8) by 0 with SMTP; 1 Apr 2004 21:39:22 - Received: from scanhost.suse.de (scanhost.suse.de [10.0.0.5]) by hermes.suse.de (Postfix) with ESMTP id 45C681ABAC for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:39:22 +0200 (CEST) Received: from hermes.suse.de ([10.0.0.1]) by scanhost.suse.de (scanhost [10.0.0.5]) (amavisd-new, port 10025) with ESMTP id 04597-17 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:39:18 +0200 (CEST) Received: from Cantor.suse.de (ns.suse.de [195.135.220.2]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by hermes.suse.de (Postfix) with ESMTP id 8C8681ABB3 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:39:18 +0200 (CEST) Received: from mail.muncc.marmionacademy.org (unknown [66.99.20.134]) by Cantor.suse.de (Postfix) with ESMTP id 623AF3C65EB for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:38:16 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by mail.muncc.marmionacademy.org (Postfix) with ESMTP id 710FE14 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:14 -0600 (CST) Received: from mail.muncc.marmionacademy.org ([127.0.0.1]) by localhost (www [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 32646-04 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:14 -0600 (CST) Received: from c-24-14-189-113.client.comcast.net (c-24-14-189-113.client.comcast.net [24.14.189.113]) by mail.muncc.marmionacademy.org (Postfix) with ESMTP id 46D6F5D7 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:14 -0600 (CST) From: Patrick McDonnell [EMAIL PROTECTED] Organization: MUNCC To: [EMAIL PROTECTED] Date: Thu, 1 Apr 2004 13:41:03 -0600 User-Agent: KMail/1.6.1 MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-Id: [EMAIL PROTECTED] X-Virus-Scanned: by amavisd-new at scanhost.suse.de -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
HTTP Browser Authentification Bug and some more bugs
hi, further information are here: http://www.ietf.org/rfc/rfc1945.txt great idea until this is fixed(not mine): Stop all http and https servers and don't visit sites which works with the from design related unsecure http protocol! HEY, don't blame me, it's translated from german to english, read for yourself: http://www.heise.de/security/news/meldung/46175 there are some more: squid has a security Problem too, don't know whether debian-packages has the same problem: https://rhn.redhat.com/errata/RHSA-2004-134.html and tcpdump has 2 overflows: http://www.rapid7.com/advisories/R7-0017.html Greetz Konstantin -- Building an operating system without source code is like buying a self-assembly Space Shuttle with no instructions.
Re: HTTP Browser Authentification Bug and some more bugs
* Quoting Konstantin ([EMAIL PROTECTED]): further information are here: http://www.ietf.org/rfc/rfc1945.txt great idea until this is fixed(not mine): Stop all http and https servers and don't visit sites which works with the from design related unsecure http protocol! HEY, don't blame me, it's translated from german to english, read for yourself: http://www.heise.de/security/news/meldung/46175 Hehe, Aprils Fools Day :) The other ones seems to be real. - Rolf
netkit-inetd / time (port 37) related issues?
Hi, I just noticed that my machine got hammered (well, at 25kbps) with tons of port 37 connections for the past week. Anything known regarding recent security problems with that? I run a quite-up-to-date testing machine, and I follow the Debian DSAs and take action where the lacking security support for testing requires me to do so, so it shouldn't be a known old problem. To be careful, I have now reinstalled kernel, libc, psutils, coreutils and sysvinit from known-good sources. Newest chkrootkit Debian pkg doesn't detect anything, and after reboot the traffic has stopped. (Oh, yes: time service has also be disabled in inetd.conf) cheers -- vbi -- The content of this message may or may not reflect the opinion of me, my employer, my girlfriend, my cat or anybody else, regardless of the fact whether such an employer, girlfriend, cat, or anybody else exists. I (or my employer, girlfriend, cat or whoever) disclaim any legal obligations resulting from the above message. You, as the reader of this message, may or may not have the permission to redistribute this message as a whole or in parts, verbatim or in modified form, or to distribute any message at all. pgpJpxIuDPysr.pgp Description: signature
unsubscribe
Votre demande [uid]b5aadcd37c3da1789794bdf4dfd587b7[/uid]
Vivendi Universal Games France assure à ses clients un traitement professionnel et de qualité. Nous avons bien pris en compte votre demande et nous vous remercions de lintérêt que vous portez à nos logiciels. Une réponse personnalisée vous sera transmise sous peu. Toutefois, afin de réduire votre temps dattente, nous avons regroupé les informations techniques les plus demandées. Vous pouvez cliquer sur les liens qui peuvent concerner votre problème. Une F.A.Q. générale est mise à votre disposition en cliquant sur ce lien : http://downloads.vu-games.com/homeworld2/FAQ/FAQgen.txt Elle peut vous permettre de résoudre 70% des problèmes rencontrés avec un ordinateur. Les PATCHES les plus demandés : - Warcraft 3 Reign of chaos et frozen throne http://downloads.vu-games.com/Warcraft3/reignofchaos/Patches/Pc/Fr/War3ROC_114b_Francais.exe http://downloads.vu-games.com/Warcraft3/frozenThrone/Patches/War3TFT_114b_Francais.exe - Contract J.A.C.K. http://downloads.vu-games.com/NOLF2_Contract_Jack/patches/FR/contractjack_update_fr_10_11.exe - Adiboudchou à la campagne http://downloads.vu-games.com/adiboudchou/patches/Patch-Fr-Adiboudchou-Campagne.exe - La guerre de lanneau http://downloads.vu-games.com/LOTR_War_of_The_Ring/Patches/FR/warofthering_update_fr_110_1010011.exe - Diablo 2 et Lord of destruction http://downloads.vu-games.com/Diablo_2/patches/PC/D2Patch_110.exe http://downloads.vu-games.com/ Diablo_2_Lord_of_the_destruction/patches/PC/LODPatch_110.exe Les QUESTIONS les plus fréquentes (F.A.Q.) : (Cliquez sur la partie « support » en bas a droite puis sur « faq logiciel ») - Warcraft 3 ROC et FT : http://fr.vugames-europe.com/home.aspx?idp=2723 - Half Life et Counter Strike by Steam : http://fr.vugames-europe.com/home.aspx?idp=2954 - Adibou et l\'ombre verte : http://fr.familykids.vugames-europe.com/home.aspx?idp=5413 - Diablo 2 et LOD : http://fr.vugames-europe.com/home.aspx?idp=2955 - Adi 5 : http://fr.familykids.vugames-europe.com/home.aspx?idp=4156 - Les grands bâtisseurs 2: http://www.sierra.fr/home.aspx?idp=4677 VUGFR - Support technique TEL : 0892 880 240 (0.34 euro la minute) du lundi au samedi de 9h à 21h y compris les jours fériés http://fr.vugames-europe.com http://fr.familykids.vugames-europe.com http://fr.sierra.vu-games.com
xautolock activation behaviour
Hi, a user provided a convenience patch[1] for xautolock[2] preventing xautolock from starting its configured executible (e.g. xlock) when the computer just woke up from sleep. IMHO this would raise a security issue for people assuming xlock to be started after wakeup, so I propose to reject the patch. Any opposition? Thanks. bye, Roland [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=241213 [2] http://packages.debian.org/unstable/x11/xautolock
WELCOME to suse-security@suse.com
Hi! This is the ezmlm program. I'm managing the [EMAIL PROTECTED] mailing list. I'm working for my owner, who can be reached at [EMAIL PROTECTED] Acknowledgment: I have added the address debian-security@lists.debian.org to the suse-security mailing list. Welcome to [EMAIL PROTECTED] Please save this message so that you know the address you are subscribed under, in case you later want to unsubscribe or change your subscription address. To unsubscribe, send a message to: [EMAIL PROTECTED] Please read the following before posting. As with any mailing list or newsgroup, it's usually a good idea to read the list for a few days before posting. Also, please check Peter Nixon's excellent unofficial SuSE security FAQ, http://www.susesecurity.com, before posting. suse-security is *NOT* intended for general Linux questions; use one of the general lists instead (suse-linux, suse-linux-e, etc.). Some Frequently Asked, Frequently Asked Questions Q1. What is the suse-security mailing list? A1. suse-security is a list for discussions about security and SuSE Linux. It is *not* a replacement for bugtraq. Q2. What is appropriate content for the list? A2. Information and discussions about OS or network security as it relates to SuSE Linux and discussions about recent SuSE security advisories are common topics. Q3. What is not appropriate content for the list? A3. Commercial postings of any kind, job postings, non-computer/Linux related material. Likewise, new exploits that you may have discovered should be sent to [EMAIL PROTECTED] and not this list. Please, please read one of the many security FAQs before posting a question--asking questions like Does anyone know where I can find a list of known-ports? or How do I create a Linux firewall? will most likely result flames. Q4. How can I retrieve the FAQ? A4. Send an email to [EMAIL PROTECTED] Q5. Can I send attachments to the list? A5. The short answer is 'no', you can't but see the FAQ more details. Q6. Are there archives of the list? A6. Yes, http://lists.suse.com/archive/suse-security/ Currently, they are not searchable. Q7. Why do my replies go to the original poster and not the list? A7. There is a more complete answer in FAQ, but the short answer is that it's better this way. Trust us on this one, please. Q8. Can I get the list digest form? A8. Not from us. There's a much more complete discussion about this in the FAQ as well. Q9. How do I pause deliveries from the list while I'm on vacation? A9. You unsubscribe before you leave and resubscribe when you return. --- Administrative commands for the suse-security list --- I can handle administrative requests automatically. Please do not send them to the list address! Instead, send your message to the correct command address: For help and a description of available commands, send a message to: [EMAIL PROTECTED] To subscribe to the list, send a message to: [EMAIL PROTECTED] To remove your address from the list, just send a message to the address in the ``List-Unsubscribe'' header of any list message. If you haven't changed addresses since subscribing, you can also send a message to: [EMAIL PROTECTED] For addition or removal of addresses, I'll send a confirmation message to that address. When you receive it, simply reply to it to complete the transaction. If you need to get in touch with the human owner of this list, please send a message to: [EMAIL PROTECTED] Please include a FORWARDED list message with ALL HEADERS intact to make it easier to help you. --- Enclosed is a copy of the request I received. Return-Path: [EMAIL PROTECTED] Received: (qmail 25187 invoked from network); 1 Apr 2004 16:35:06 - Received: from unknown (HELO hermes.suse.de) (195.135.221.8) by 0 with SMTP; 1 Apr 2004 16:35:06 - Received: from scanhost.suse.de (scanhost.suse.de [10.0.0.5]) by hermes.suse.de (Postfix) with ESMTP id 819A31AC7F for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:35:06 +0200 (CEST) Received: from hermes.suse.de ([10.0.0.1]) by scanhost.suse.de (scanhost [10.0.0.5]) (amavisd-new, port 10025) with ESMTP id 27223-01 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:35:02 +0200 (CEST) Received: from Cantor.suse.de (ns.suse.de [195.135.220.2]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by hermes.suse.de (Postfix) with ESMTP id 0E7FB1AD5F for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:34:26 +0200 (CEST) Received: from ns.linux.net.ni (ns.linux.net.ni [209.124.105.122]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by Cantor.suse.de (Postfix) with ESMTP id 1BCFB3C5E1B for [EMAIL PROTECTED]; Thu, 1 Apr 2004 18:34:14 +0200 (CEST) Received: from ns.linux.net.ni (localhost [127.0.0.1]) by ns.linux.net.ni
Jakob Stærk/JAKS/DK/MD Foods is out of the office.
I will be out of the office starting 30-03-2004 and will not return until 20-04-2004. For urgent matters contact [EMAIL PROTECTED] or [EMAIL PROTECTED]
confirm unsubscribe from suse-security@suse.com
Hi! This is the ezmlm program. I'm managing the [EMAIL PROTECTED] mailing list. I'm working for my owner, who can be reached at [EMAIL PROTECTED] To confirm that you would like debian-security@lists.debian.org removed from the suse-security mailing list, please send an empty reply to this address: [EMAIL PROTECTED] Usually, this happens when you just hit the reply button. If this does not work, simply copy the address and paste it into the To: field of a new message. I haven't checked whether your address is currently on the mailing list. To see what address you used to subscribe, look at the messages you are receiving from the mailing list. Each message has your address hidden inside its return path; for example, [EMAIL PROTECTED] receives messages with return path: suse-security-return-number[EMAIL PROTECTED] --- Administrative commands for the suse-security list --- I can handle administrative requests automatically. Please do not send them to the list address! Instead, send your message to the correct command address: For help and a description of available commands, send a message to: [EMAIL PROTECTED] To subscribe to the list, send a message to: [EMAIL PROTECTED] To remove your address from the list, just send a message to the address in the ``List-Unsubscribe'' header of any list message. If you haven't changed addresses since subscribing, you can also send a message to: [EMAIL PROTECTED] For addition or removal of addresses, I'll send a confirmation message to that address. When you receive it, simply reply to it to complete the transaction. If you need to get in touch with the human owner of this list, please send a message to: [EMAIL PROTECTED] Please include a FORWARDED list message with ALL HEADERS intact to make it easier to help you. --- Enclosed is a copy of the request I received. Return-Path: [EMAIL PROTECTED] Received: (qmail 14458 invoked from network); 1 Apr 2004 17:36:39 - Received: from unknown (HELO hermes.suse.de) (195.135.221.8) by 0 with SMTP; 1 Apr 2004 17:36:39 - Received: from scanhost.suse.de (scanhost.suse.de [10.0.0.5]) by hermes.suse.de (Postfix) with ESMTP id 96A001ABC8 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 19:36:39 +0200 (CEST) Received: from hermes.suse.de ([10.0.0.1]) by scanhost.suse.de (scanhost [10.0.0.5]) (amavisd-new, port 10025) with ESMTP id 18572-14 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 19:36:36 +0200 (CEST) Received: from Cantor.suse.de (ns.suse.de [195.135.220.2]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by hermes.suse.de (Postfix) with ESMTP id 032B91ABB1 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 19:35:33 +0200 (CEST) Received: from eeek.org.uk (195-97-219-244.onyx.net [195.97.219.244]) by Cantor.suse.de (Postfix) with SMTP id 625073C5E1A for [EMAIL PROTECTED]; Thu, 1 Apr 2004 19:35:31 +0200 (CEST) Received: from enyc (helo=localhost) by eeek.org.uk with local-esmtp (Exim 3.35 #1 (Debian)) id 1B960h-0008GS-00 for [EMAIL PROTECTED]; Thu, 01 Apr 2004 18:29:47 +0100 Date: Thu, 1 Apr 2004 18:29:47 +0100 (BST) From: debian-security@lists.debian.org X-X-Sender: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: unsibscribe In-Reply-To: [EMAIL PROTECTED] Message-ID: [EMAIL PROTECTED] References: [EMAIL PROTECTED] MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: [EMAIL PROTECTED] X-Virus-Scanned: by amavisd-new at scanhost.suse.de unsubscribe
Re: VPN Firewall Kernel
I need Freeswan 1.99+, MPPE for Poptop, patch-o-matic for pptp masq and would like GrSecurity for it's chroot and randomized capabilities. Applying all these patches to 2.4.25 fails with many files unpatched. I maintain patchset with similiar capabilities(eyck.forumakad.pl/Projects/bsd), try using openswan instead of freewswan, this should reduce number of conflicts, also, don't load all of POM, just the pieces you need. Does anyone know of an existing Kernel that has similar features? You can count on WOLK (wolk.sf.net) having all the features you need, with having competent maintainer on top. I wouldn't recommend 2.4.x wolk since it's not very well tested and is non-free in spirit. Go with 2.6.x though. -- Dariush Pietrzak, Key fingerprint = 40D0 9FFB 9939 7320 8294 05E0 BCC7 02C4 75CC 50D9
Re: xautolock activation behaviour
Roland Stigge [EMAIL PROTECTED] writes: Hi, a user provided a convenience patch[1] for xautolock[2] preventing xautolock from starting its configured executible (e.g. xlock) when the computer just woke up from sleep. IMHO this would raise a security issue for people assuming xlock to be started after wakeup, so I propose to reject the patch. Any opposition? Thanks. bye, Roland [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=241213 [2] http://packages.debian.org/unstable/x11/xautolock (Let him) Make it a config option that defaults to locking. Its the users choice to compromise. MfG Goswin
Werner Thöni ist NICHT im Büro
Ich werde ab 31.03.2004 nicht im Büro sein. Ich kehre zurück am 05.04.2004. Ich werde Ihre Nachricht nach meiner Rückkehr beantworten. In dringenden Fällen wenden Sie sich bitte an meinen Stellvertreter Hrn. Martin RÖDLACH. mailto:[EMAIL PROTECTED] Aus Gründen der Vertraulichkeit wird Ihre eMail nicht weitergeleitet! Mit freundlichen Grüßen Dipl.-Ing. Werner THÖNI Leiter Systemgruppe UNIX Allgemeines Rechenzentrum Innsbruck fon: ++43-512-5345-0 fax: ++43-512-5345-1382 mailto:[EMAIL PROTECTED] http://www.arz.co.at
confirm unsubscribe from suse-security@suse.com
Hi! This is the ezmlm program. I'm managing the [EMAIL PROTECTED] mailing list. I'm working for my owner, who can be reached at [EMAIL PROTECTED] To confirm that you would like debian-security@lists.debian.org removed from the suse-security mailing list, please send an empty reply to this address: [EMAIL PROTECTED] Usually, this happens when you just hit the reply button. If this does not work, simply copy the address and paste it into the To: field of a new message. I haven't checked whether your address is currently on the mailing list. To see what address you used to subscribe, look at the messages you are receiving from the mailing list. Each message has your address hidden inside its return path; for example, [EMAIL PROTECTED] receives messages with return path: suse-security-return-number[EMAIL PROTECTED] --- Administrative commands for the suse-security list --- I can handle administrative requests automatically. Please do not send them to the list address! Instead, send your message to the correct command address: For help and a description of available commands, send a message to: [EMAIL PROTECTED] To subscribe to the list, send a message to: [EMAIL PROTECTED] To remove your address from the list, just send a message to the address in the ``List-Unsubscribe'' header of any list message. If you haven't changed addresses since subscribing, you can also send a message to: [EMAIL PROTECTED] For addition or removal of addresses, I'll send a confirmation message to that address. When you receive it, simply reply to it to complete the transaction. If you need to get in touch with the human owner of this list, please send a message to: [EMAIL PROTECTED] Please include a FORWARDED list message with ALL HEADERS intact to make it easier to help you. --- Enclosed is a copy of the request I received. Return-Path: [EMAIL PROTECTED] Received: (qmail 25947 invoked from network); 1 Apr 2004 21:39:22 - Received: from unknown (HELO hermes.suse.de) (195.135.221.8) by 0 with SMTP; 1 Apr 2004 21:39:22 - Received: from scanhost.suse.de (scanhost.suse.de [10.0.0.5]) by hermes.suse.de (Postfix) with ESMTP id 45C681ABAC for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:39:22 +0200 (CEST) Received: from hermes.suse.de ([10.0.0.1]) by scanhost.suse.de (scanhost [10.0.0.5]) (amavisd-new, port 10025) with ESMTP id 04597-17 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:39:18 +0200 (CEST) Received: from Cantor.suse.de (ns.suse.de [195.135.220.2]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by hermes.suse.de (Postfix) with ESMTP id 8C8681ABB3 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:39:18 +0200 (CEST) Received: from mail.muncc.marmionacademy.org (unknown [66.99.20.134]) by Cantor.suse.de (Postfix) with ESMTP id 623AF3C65EB for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:38:16 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by mail.muncc.marmionacademy.org (Postfix) with ESMTP id 710FE14 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:14 -0600 (CST) Received: from mail.muncc.marmionacademy.org ([127.0.0.1]) by localhost (www [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 32646-04 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:14 -0600 (CST) Received: from c-24-14-189-113.client.comcast.net (c-24-14-189-113.client.comcast.net [24.14.189.113]) by mail.muncc.marmionacademy.org (Postfix) with ESMTP id 46D6F5D7 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:14 -0600 (CST) From: Patrick McDonnell [EMAIL PROTECTED] Organization: MUNCC To: [EMAIL PROTECTED] Date: Thu, 1 Apr 2004 13:41:03 -0600 User-Agent: KMail/1.6.1 MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-Id: [EMAIL PROTECTED] X-Virus-Scanned: by amavisd-new at scanhost.suse.de
GOODBYE from suse-security@suse.com
Hi! This is the ezmlm program. I'm managing the [EMAIL PROTECTED] mailing list. I'm working for my owner, who can be reached at [EMAIL PROTECTED] Acknowledgment: I have removed the address debian-security@lists.debian.org from the suse-security mailing list. This address is no longer a subscriber. --- Administrative commands for the suse-security list --- I can handle administrative requests automatically. Please do not send them to the list address! Instead, send your message to the correct command address: For help and a description of available commands, send a message to: [EMAIL PROTECTED] To subscribe to the list, send a message to: [EMAIL PROTECTED] To remove your address from the list, just send a message to the address in the ``List-Unsubscribe'' header of any list message. If you haven't changed addresses since subscribing, you can also send a message to: [EMAIL PROTECTED] For addition or removal of addresses, I'll send a confirmation message to that address. When you receive it, simply reply to it to complete the transaction. If you need to get in touch with the human owner of this list, please send a message to: [EMAIL PROTECTED] Please include a FORWARDED list message with ALL HEADERS intact to make it easier to help you. --- Enclosed is a copy of the request I received. Return-Path: [EMAIL PROTECTED] Received: (qmail 26709 invoked from network); 1 Apr 2004 21:40:57 - Received: from unknown (HELO hermes.suse.de) (195.135.221.8) by 0 with SMTP; 1 Apr 2004 21:40:57 - Received: from scanhost.suse.de (scanhost.suse.de [10.0.0.5]) by hermes.suse.de (Postfix) with ESMTP id 9F4FE1ABAC for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:40:57 +0200 (CEST) Received: from hermes.suse.de ([10.0.0.1]) by scanhost.suse.de (scanhost [10.0.0.5]) (amavisd-new, port 10025) with ESMTP id 05021-20 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:40:48 +0200 (CEST) Received: from Cantor.suse.de (ns.suse.de [195.135.220.2]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by hermes.suse.de (Postfix) with ESMTP id 560941ABBF for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:40:48 +0200 (CEST) Received: from mail.muncc.marmionacademy.org (unknown [66.99.20.134]) by Cantor.suse.de (Postfix) with ESMTP id 50E8A3C66F1 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 23:38:39 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by mail.muncc.marmionacademy.org (Postfix) with ESMTP id B24CD650 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:38 -0600 (CST) Received: from mail.muncc.marmionacademy.org ([127.0.0.1]) by localhost (www [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 32657-04 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:38 -0600 (CST) Received: from c-24-14-189-113.client.comcast.net (c-24-14-189-113.client.comcast.net [24.14.189.113]) by mail.muncc.marmionacademy.org (Postfix) with ESMTP id 9716B14 for [EMAIL PROTECTED]; Thu, 1 Apr 2004 15:38:38 -0600 (CST) From: Patrick McDonnell [EMAIL PROTECTED] Organization: MUNCC To: [EMAIL PROTECTED] Date: Thu, 1 Apr 2004 13:41:28 -0600 User-Agent: KMail/1.6.1 MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-Id: [EMAIL PROTECTED] X-Virus-Scanned: by amavisd-new at scanhost.suse.de
Re: VPN Firewall Kernel
Hi Sean, SM I'm in the process of building a kernel for a Debian machine being used SM as a VPN Firewall. SM I need Freeswan 1.99+, MPPE for Poptop, patch-o-matic for pptp masq and SM would like GrSecurity for it's chroot and randomized capabilities. SM Applying all these patches to 2.4.25 fails with many files unpatched. SM Does anyone know of an existing Kernel that has similar features? have a look at Adamantix, which was formerly known as trusteddebian (http://www.trusteddebian.org/) and is some kind of a secured (mini) debian based distribution. If you just want a kernel, with almost everything in there belonging to security, have a look at WOLK (Working OverLoaded Kernel) at http://sourceforge.net/projects/wolk Hope that helps. best regards michael