Re: [SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation
The behavior of the etch package changed too. Do not install the package on production system yet. The limit in /etc/postfix/main.cf stopped working: maildrop_destination_recipient_limit= 1 Almost all E-Mails are rejected and sender get errors like this: : user unknown. Command output: ERR: authdaemon: s_connect() failed: Permission denied Invalid user specified. I've tried to change the permission for common files, but this won't fix the problem. Something is wrong with the behavior to the previous version. On Thu, 2010-01-28 at 14:10 +0200, Antti-Juhani Kaijanaho wrote: > On Thu, Jan 28, 2010 at 12:37:52PM +0100, Steffen Joeris wrote: > > For the stable distribution (lenny), this problem has been fixed in > > version 2.0.4-3+lenny1. > > This update appears to have dropped the hard dependency on courier-authlib. > As > a result, mail starts bouncing. > -- Building an operation system without source code, is like buying a self assemble space shuttle without instructions. signature.asc Description: This is a digitally signed message part
Re: Grsecurity patches on Debian
hi, I use Grsecurity with High level for over 2 years now on 2.4.X without any problems running debian woody. These daemons works fine: ssh postfix courier-imap (with and without ssl) courier-pop (with and without ssl) apache apache-ssl mysql snort and a view other ... The best way would be for you to test this configuration offline on a system with the same packages and then install it on the production system. For further question and special question you can contact the grsecurity mailing list. It is a very low traffic list and brad sprengler help you with every question or the pax team. Greetz Konstantin On Tue, 8 Feb 2005 02:32:03 +0100 Xavier Sudre <[EMAIL PROTECTED]> wrote: > On Monday 07 February 2005 at 16:17, Andras Got wrote: > > Hi, > > > > That's it, the chpax. I tried these things almost a year ago with JSP > > thingy. I googled and the like, but chpax didn't help. > > > > I meant that I selected high settings, then selected custom, then did some > > changes. :) > > > > A. > > > > > > Thomas Sjögren írta: > > > > >On Mon, Feb 07, 2005 at 02:10:07PM +0100, Andras Got wrote: > > > > > >>You should start with grsec low and proc restricions set customly. > > >>Hardening your kernel is always a option. > > > > > > > > >Running grsec isn't a problem, I use on both clients and servers. > > >Dont start with grsec low but with the custom option, > > >CONFIG_GRKERNSEC_CUSTOM and read the help sections. > > > > > > > > >>The grsec default high settings, > > > > > > > > >IIRC it defaults to custom. > > > > > > > > >>and PaX break Jetty (java server container) in two, so it simply won't > > >>start, gradm won't help as I know. > > > > > > > > >changing PaX-settings is done by chpax or paxctl. gradm is for the acl. if > > >something breaks > > >chpax -peMRXs usually works, after that its about fine tuning. > > > > > Using grsecurity with level set to High enables Pax features. > This works well on most daemons delivered as packages in Debian Woody > and hopefuly testing. At least this is the case for Apache, Postfix and Cyrus. > > When ever there is a problem with a binary there will be a log trace in > the syslog specifying the binary that was terminated. You can correct > the problem by using chpax. > > Xavier. > > -- > Xavier Sudre > Homepage: http://xavier.sudre.fr/ > Email:[EMAIL PROTECTED] > GPG key: http://xavier.sudre.fr/gpg/xavier.asc > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > Building an operation system without source code, is like buying a self assemble space shuttle without instructions. pgp8BqUPZYcjK.pgp Description: PGP signature
security.debian.org
to the admins: security.debian.org seems to be down Greetz Konstantin
security.debian.org
to the admins: security.debian.org seems to be down Greetz Konstantin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: found this in my /var/log/apache/access.log <>
thx for helping I have the same entries in an old Cobalt Raq3 and thaught about the last security problems in apache <1.3.26. All cobalt raq3 use 1.3.6, which is very old. Thanx for helping Greetz Konstantin Filtschew -- may the source be with you
found this in my /var/log/apache/access.log
hi, found this in my /var/log/apache/access.log, what does that mean: 217.37.212.241 - - [04/May/2003:15:17:22 +0200] "GET /default.ida?XX XX%u9090%u6858%ucbd3%u7801%u 9090 %u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b 00%u 531b%u53ff%u0078%u%u00=a HTTP/1.0" 404 277 "-" "-" 217.128.213.22 - - [04/May/2003:14:50:16 +0200] "GET /default.ida?XX XX%u9090%u6858%ucbd3%u7801%u 9090 %u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b 00%u 531b%u53ff%u0078%u%u00=a HTTP/1.0" 404 277 "-" "-" 217.218.66.141 - - [04/May/2003:13:39:56 +0200] "GET /default.ida?XX XX%u9090%u6858%ucbd3%u7801%u 9090 %u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b 00%u 531b%u53ff%u0078%u%u00=a HTTP/1.0" 404 277 "-" "-" 212.65.17.26 - - [04/May/2003:06:30:32 +0200] "GET /.hash=680d6f5c4d584f6b5d941a f136938db3751a840b HTTP/1.1" 404 324 "-" "-" 212.65.17.26 - - [04/May/2003:06:30:32 +0200] "GET /.hash=e175a0da67b1fefbb5acd8 cdc7ccc516ede015d1 HTTP/1.1" 404 324 "-" "-" 212.65.17.26 - - [04/May/2003:06:30:32 +0200] "GET /.hash=8c10ba0aae81edb7ae51eb 156b2fcb770b66864a HTTP/1.1" 404 324 "-" "-" thx for help Konstantin Filtschew
Snort signature download script
hi, there is a signature download script posted on http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=173254 from http://www.xssass.be I tried it, but he tells me, that the md5 checksum is wrong you can download the script from here: http://www.xssass.be/updateSnort who can tell me anything about the script and it's quality thx for help Konstantin Filtschew __ | may the source be with you | <<<<<<<<<>>>>>>>>>>>
