CentOS Errata and Security Advisory 2009:0105
https://rhn.redhat.com/errata/RHSA-2008-0105.html
The following updated files have been uploaded and are currently
syncing to the mirrors:
s390:
updates/s390/RPMS/thunderbird-1.5.0.12-8.el4.centos.s390.rpm
s390x:
Pues yo igual lo probe con CentOs 5 y lo raro que tampoco fue vulnerable :-S
http://www.koalasoftmx.net/article.php/20080211184912266
por que? . no se !!
--
I.S.C. William López Jiménez
Departamento de Informática
Admin. del Sitio Mozblan de Tenosique S.A de C.V.
http://www.grupomozblan.com
Pero no todo es tan malo: Centos4 no es vulnerable :) igual ocupa un
kernel viejo: el 2.6.9, lo probé antes y después de una
actualización de kernel :D
Saludos !!
On Feb 11, 2008 10:49 PM, Black Hand
[EMAIL PROTECTED] wrote:
On Monday 11 February 2008 19:54:58 Joel Barrios wrote:
Urgente
Hola, para el tema de contraatacar el spam, he visto en algunos foros
en la web que muchos usuarios prefieren usar el DSPAM en lugar de
spamassassin, bueno los comentarios son que es mas efectivo y mas
rapido.
Ahora mismo estoy en procura de probarlo, pero lastimosamente no
encuentro una guia de
I.S.C. William Lopez Jimenez wrote:
Pues yo igual lo probe con CentOs 5 y lo raro que tampoco fue vulnerable :-S
La prueba de concepto está programada para arquitectura de 64bits. Busca
un parche para la prueba de concepto que permite que compile
correctamente para 64bits.
ahi te
Acabo de probar la vulnerabilidad descubierta en el núcleo, y
lamentablemente afecta a CentOS 5. Detalles en
http://www.alcancelibre.org/article.php/20080211182931638 con una
captura de pantalla probando el exploit.
Urgente alguien de el estatus acerca del RPM del kernel con el parche
On Monday 11 February 2008 19:54:58 Joel Barrios wrote:
Urgente alguien de el estatus acerca del RPM del kernel con el parche
correspondiente. Daniel Phillips publico en la lista del núcleo el
parche que se requiere, que es realmente sencillo de aplicar:
centos oficialmente esta atado de
On Mon, 2008-02-11 at 10:45 -0800, Akemi Yagi wrote:
On Feb 11, 2008 8:19 AM, Scott McClanahan [EMAIL PROTECTED] wrote:
On Mon, 2008-02-11 at 04:52 -0800, Michael A. Peters wrote:
Valent Turkovic wrote:
I saw that there is a local root exploit in the wild.
On Mon, 11 Feb 2008, jarmo wrote:
Scott McClanahan kirjoitti viestissään (lähetysaika maanantai, 11. helmikuuta
2008):
On Mon, 2008-02-11 at 10:45 -0800, Akemi Yagi wrote:
On Feb 11, 2008 8:19 AM, Scott McClanahan [EMAIL PROTECTED]
wrote:
On Mon, 2008-02-11 at 04:52 -0800, Michael A.
Howdy all,
I compiled a set of kernel RPMs with the upstream kernel patch applied.
Obviously they haven't gone through the full QA process, but I know of
them running on approximately 50 servers without any reported issues.
They're available at:
On Monday 11 February 2008 14:40:57 Craig White wrote:
I don't know the exact issues that would cause an error message of 'no
subnets to listen to' but generally, it is expected that if your
192.168.0 network, that would be a class 'C' network (255.255.255.0
subnet mask) and thus a broadcast
On Mon, 11 Feb 2008, Ross S. W. Walker wrote:
Dag Wieers wrote:
On Mon, 11 Feb 2008, jarmo wrote:
Ofcource there's a way, get vanilla kernel 2.6.24.2 and use
old config
compile it and run. I've done it.
And *poof* you lost all support or reproducability that
people crave when
A user wants to time a command/program/application and ensure the full
contents of that command's data management has been flushed from RAM/cache
and saved to disk. Is there a way to ensure the cache/RAM is flushed to
disk, or is the flushing a function of the kernel or the application?
This
Joseph L. Casale wrote:
Start with a working RIS setup, enable support for legacy RIS images.
Wow, thorough detail :) I see you have kept sp2 off the RIS
box to prevent RIS from becoming WDS. I assume this is
because there is no way to do this in WDS?
Nah, I have SP2 on there, you need
2. there have been reports of stability problems with the patch
you mean that adding a validation of users input in a code lead to
stability problem ?
To avoid continuing speculation, you should really just go ask RH
directly. Ask in the bz thread if you like.
Ray
The official patch for debian is out since a couple of hours...
Why does it take so long for RHEL ? Just a question, not a troll or
something.
kfx
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Dago Pacheco wrote:
Hi I have this CentOS 4.3 server that is used as a file, web and mail
server just for LAN hosts. After an up2date procedure (in wich there was a
lot of package involved about 500) I started having problems with file
shareing in samba server.
As the Release
On Mon, Feb 11, 2008 at 04:26:57PM -0500, Ross S. W. Walker wrote:
Problem with Debian patch is it may conflict with some of the RH
backports, but if it works why not submit it to CentOS team for
testing as I hear the RH current workaround has issues with GPFs.
I think that's with the
Matthew Miller wrote:
On Mon, Feb 11, 2008 at 04:26:57PM -0500, Ross S. W. Walker wrote:
Problem with Debian patch is it may conflict with some of the RH
backports, but if it works why not submit it to CentOS team for
testing as I hear the RH current workaround has issues with GPFs.
I
Dag Wieers wrote:
On Mon, 11 Feb 2008, Ross S. W. Walker wrote:
Dag Wieers wrote:
On Mon, 11 Feb 2008, jarmo wrote:
Ofcource there's a way, get vanilla kernel 2.6.24.2 and use
old config
compile it and run. I've done it.
And *poof* you lost all support or
Simon Jolle sjolle wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Centos Users
How to secure a Wiki CMS? This Wiki is based on Apache2, MySQL and PHP.
I cant read the code (lack of knowledge).
Would be glad about hints and URLs
cheers
Simon
-BEGIN PGP SIGNATURE-
Version:
Good Day All,
I have issues installing VMware Server on CentOS 5, its asking for the
location of c header files, i have installed them all but i am still
unable to install VMWare Server
here is the output
What is the location of the directory of C header files that match your
running
kernel?
On Mon, Feb 11, 2008 at 03:05:10PM -0500, Scott Ehrlich wrote:
A user wants to time a command/program/application and ensure the full
contents of that command's data management has been flushed from RAM/cache
and saved to disk. Is there a way to ensure the cache/RAM is flushed to
disk, or
Dag Wieers wrote:
On Mon, 11 Feb 2008, jarmo wrote:
Scott McClanahan kirjoitti viestissään (lähetysaika
maanantai, 11. helmikuuta
2008):
On Mon, 2008-02-11 at 10:45 -0800, Akemi Yagi wrote:
On Feb 11, 2008 8:19 AM, Scott McClanahan
[EMAIL PROTECTED]
wrote:
On Mon,
On Mon, 2008-02-11 at 09:55 +, Anne Wilson wrote:
On Sunday 10 February 2008 22:25, Craig White wrote:
On Sun, 2008-02-10 at 22:04 +, Anne Wilson wrote:
I'm having a lot of problems with nmbd quitting while I'm working.
'service smb status' shows samba running, but 'nmbd dead but
Valent Turkovic wrote:
I saw that there is a local root exploit in the wild.
http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
And I see my centos box still has: 2.6.18-53.1.4.el5
yum says there are no updates... am I safe?
Valent.
On Jan 8, 2008 4:56 PM, Mark Weaver [EMAIL PROTECTED] wrote:
Alain Spineux wrote:
On Jan 7, 2008 11:40 PM, Mark Weaver [EMAIL PROTECTED] wrote:
Alain Spineux wrote:
On Jan 7, 2008 6:10 PM, Mark Weaver [EMAIL PROTECTED] wrote:
Hi all,
I've got a Dell Inspiron 1501 with a Broadcom 1390
Tony Barratt wrote:
Hello List,
I have a few intel centos 3.9 boxes with perl-5.8.0-94.EL3 installed.
This seems like a very early version of 5.8 perl.
centos 4.6 has 5.8.1.
Would it be sensible to just upgrade to this rpm? I want a stable platform
for cgi. I suppose I could just try it, but
Valent Turkovic wrote:
I saw that there is a local root exploit in the wild.
http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
And I see my centos box still has: 2.6.18-53.1.4.el5
yum says there are no updates... am I safe?
Valent.
Define safe :)
The RHEL-5 (and therefore
Valent Turkovic wrote:
I saw that there is a local root exploit in the wild.
http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
And I see my centos box still has: 2.6.18-53.1.4.el5
yum says there are no updates... am I safe?
No, you are not safe - and you should have
Valent Turkovic wrote:
I saw that there is a local root exploit in the wild.
http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
And I see my centos box still has: 2.6.18-53.1.4.el5
yum says there are no updates... am I safe?
Valent.
No you're not... and we are a lot in this
Erek Dyskant wrote:
Howdy all,
I compiled a set of kernel RPMs with the upstream kernel patch applied.
Obviously they haven't gone through the full QA process, but I know of
them running on approximately 50 servers without any reported issues.
They're available at:
Matthew Miller wrote:
On Mon, Feb 11, 2008 at 06:00:14PM -0500, Ross S. W. Walker wrote:
I wonder if any existing user-land utilities have hooks into
vmsplice that may be able to be accessed via PHP, Perl, or CGI?
It's a system call.
Yes, but conceivable an application can make use
On Mon, 2008-02-11 at 04:52 -0800, Michael A. Peters wrote:
Valent Turkovic wrote:
I saw that there is a local root exploit in the wild.
http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
And I see my centos box still has: 2.6.18-53.1.4.el5
yum says there are no
On Mon, Feb 11, 2008 at 06:00:14PM -0500, Ross S. W. Walker wrote:
I wonder if any existing user-land utilities have hooks into
vmsplice that may be able to be accessed via PHP, Perl, or CGI?
It's a system call.
Yes, but conceivable an application can make use of such a system
call since
On Mon, 11 Feb 2008, kfx wrote:
The official patch for debian is out since a couple of hours...
Why does it take so long for RHEL ? Just a question, not a troll or
something.
1. ask them
2. there have been reports of stability problems with the
patch -- it does little good to rush out a
On Sunday 10 February 2008 22:25, Craig White wrote:
On Sun, 2008-02-10 at 22:04 +, Anne Wilson wrote:
I'm having a lot of problems with nmbd quitting while I'm working.
'service smb status' shows samba running, but 'nmbd dead but pid file
exists'. Log files show lines like
37 matches
Mail list logo