Adam Morrison wrote:
> From the OpenBSD change logs:
> revision 1.59
> date: 1999/07/30 18:27:47; author: deraadt; state: Exp; lines: +20 -1
> do not permit regular users to chflags/fchflags on chr or blk devices --
> even if they happen to own them at the moment.
Mike Frantzen ([EMAIL PROTEC
Application: Dragon Fire 3.1 IDS for Unices
Developer: Network Security Wizards
Urgency: VERY HIGH
Symptoms: Web users can run arbitrary commands *remotely*.
Storyline:
--
In the middle of developement of a Linux IDS , I wanted to take a short glimpse
at some similar products on
In reference to the report submitted on 1/15/99, DPEC has
resolved this security issue as of our 3/99 CD release. To
obtain this update, contact DPEC at [EMAIL PROTECTED]
On Sat, 31 Jul 1999, DeMoNx wrote:
> switching all non-business/special adsl accounts over to using PPP rather
> than bridging mode for 'security reasons', I got a little suspicious. With
With good reason. In bridging mode with a Windows 9x/NT box, your network
neighborhood will show everyone e
> * Description:
> * If you know an IP that will be routed through a Gauntlet 5.0 Firewall,
> * you can remotely lock up the firewall (tested against Solaris 2.6 and
> * BSDI). It locks up to the point that one packet will disable STOP-A
> * (L1-A) on Sparcs and ~3-5 packets will disable
Hi,
Based on the recent messages post on NTBugtraq list
about MS Office Vunerability, I developed a fix program following the
instructons given by Russ Cooper. The Program set the 3rd byte of EditFlag
Key value to 00 and plus give other options for set EditFlags entries. Here
Hi,
Just to go deeper.
Definition: (taken from www.webramp.com)
What is a WebRamp?
A WebRamp is a communications
device that allows your whole office to
share Internet access. You can choose
from a va
> "Solar" == Solar Designer <[EMAIL PROTECTED]> writes:
Solar> I wouldn't normally post this, but while we're on the topic...
Solar> There's an ancient problem with SGID man that I keep seeing on
Solar> various systems. For example, on Red Hat 5.2:
This seems to be a very genera
-- Forwarded message --
Date: Sun, 01 Aug 1999 21:29:40 -0500
From: Irwan Amir Widjaja <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: bo2k plugins
Hi,
I recently (July 31st) discovered that the CAST-256 plugin v2.2 which
allows any user to connect to any CAST256 server with a
Discovered by Irwan Amir Widjaja <[EMAIL PROTECTED]> and Daniel
Roethlisberger <[EMAIL PROTECTED]>.
Two popular encryption plugins for Back Orifice 2000 have been found to
have serious security flaws: BO_CAST and BO2K IDEA. Both have been fixed.
The flaw is that due to a small error in one line o
Running tcp nmap scan against Foundry network gear make it go boom.
What makes it more sad is that Foundry is in the networking business -- they
route packets. They don't make toasters which get it's tcp/ip stack written by
a recent CS grad. Anyway, the version I have which reboots after s
Well it took longer that I thought it would, but that is always the
case. Right? This message is to announce the availability of three
new mailing lists.
The first two are BUGTRAQ-JP (Japanese) and BUGTRAQ-ES (Spanish).
The first one will be moderated by Nobuo Miwa <[EMAIL PROTECTED]>
and the sec
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Aleph -- This is just a brief follow up for anyone interested, I have
had several people ask me about this:
To remove the association between .hta and HTML applications, you can
do the following:
1. Open up Windows Explorer (i.e. double cli
13 matches
Mail list logo