Some people wrote to me: your script is bad, it detects qemu, but qemu
is bugfree.
ok, looking qemu:
qemu makes mount the directory /tmp/mount.$$. Attacker creates many
symlinks /tmp/dir.\d+ -> /etc and if qemu
(/usr/sbin/qemu-make-debian-root) starts then /etc goes
out from root directory tree.
[Bastian Blank]
> You know that parts of the config settings are only supported in the
> legacy-format?
Nope. What parts is that?
> Is there documentation how to import new schemas in the new config
> tree?
I found http://www.zytrax.com/books/ldap/ch6/slapd-config.html>.
> Also modification ar
Package: wnpp
Severity: wishlist
Owner: Francois Marier <[EMAIL PROTECTED]>
* Package name: sflphone
Version : 0.9.1
Upstream Author : Savoir-faire Linux <[EMAIL PROTECTED]>
* URL : http://www.sflphone.org
* License : GPL
Programming Lang: C++
Description
On Tuesday 12 August 2008 22:57, Adeodato Simó wrote:
> * Shachar Or [Sun, 10 Aug 2008 18:36:35 +0300]:
> > I am not suggesting this data will be put in with the package's
> > description,
>
> Why not? I think (briefly) explaining some of the most relevant
> recommends and suggests is a perfect use
Charles Plessy wrote:
> Le Mon, Aug 11, 2008 at 07:02:02PM -0400, Felipe Sateler a écrit :
>> Goswin von Brederlow wrote:
>>
>> Could they be added as XB-Comment:? I use XS-Comment and it appears in the
>> dsc, I don't know if XB-* appear in the deb or elsewhere.
>
> Hi Felipe,
>
> The answer i
Le Mon, Aug 11, 2008 at 07:02:02PM -0400, Felipe Sateler a écrit :
> Goswin von Brederlow wrote:
>
> Could they be added as XB-Comment:? I use XS-Comment and it appears in the
> dsc,
> I don't know if XB-* appear in the deb or elsewhere.
Hi Felipe,
The answer is only in the sources for the mome
Dmitry E. Oboukhov wrote:
> EVL>>> The idea behind libpam-tmpdir is that it creates a subdirectory of /tmp
> EVL>>> that is only accessible by that user, and then sets TMPDIR and other
> EVL>>> variables to that. Hence, it doesn't matter nearly as much if you
> EVL>>> create a non-random filename,
Seems this wasn't strictly necessary according to pythonsupport's docs:
*** You don't need X[BS]-Python-Version fields. You don't need ***
*** debian/pycompat. You don't need to call dh_python after***
*** dh_pysupport. Just remove all of these.***
However python-central st
On Tue, Aug 12, 2008 at 3:07 PM, Daniel Moerner <[EMAIL PROTECTED]> wrote:
> transset-df is a modified version of xorg's transset and requires compositing
> to function.
Might be a good idea to encourage transset-df upstream to join the
upstream xorg project and commit his changes there.
--
by
* Shachar Or [Sun, 10 Aug 2008 18:36:35 +0300]:
> I am not suggesting this data will be put in with the package's description,
Why not? I think (briefly) explaining some of the most relevant
recommends and suggests is a perfect use of the description space. And
if more verbosity is needed, that
Package: wnpp
Severity: wishlist
Owner: Eric Evans <[EMAIL PROTECTED]>
* Package name: python-keyczar
Version : 05b
Upstream Author : Arkajit Dey <[EMAIL PROTECTED]>
* URL : http://code.google.com/p/keyczar/
* License : Apache 2.0
Programming Lang: Python
D
report for etch:
http://uvw.ru/report.etch.txt
107 packages :(
On 18:23 Tue 12 Aug , Dmitry E. Oboukhov wrote:
TDEO> The script in attach looks through a mirror of a specified distributive
TDEO> and makes a search of '>\s*/tmp/' and 'tee [^|]*/tmp/' constructions.
TDEO> It finds less err
Package: wnpp
Severity: wishlist
Owner: Daniel Moerner <[EMAIL PROTECTED]>
Package name: transset-df
Version : 6
Upstream Author : Daniel Forchheimer <[EMAIL PROTECTED]>
URL : http://www.forchheimer.se/transset-df/
License : 'Use however you want. I can't
On Tue, Aug 12, 2008 at 12:35:30PM -0300, Steve Langasek wrote:
> It is possible; I'm currently awaiting feedback from the OpenLDAP
> comaintainers before we enable it.
You know that parts of the config settings are only supported in the
legacy-format? Is there documentation how to import new sche
On Tue, Aug 12, 2008 at 05:21:26PM +0200, Petter Reinholdtsen wrote:
> [Soren Hansen]
> > On Mon, Aug 11, 2008 at 08:48:29AM +0200, Petter Reinholdtsen wrote:
> >> I really wish there was some organized way for packages to
> >> automatically add schemas and settings to the OpenLDAP server
> >> con
[Soren Hansen]
> On Mon, Aug 11, 2008 at 08:48:29AM +0200, Petter Reinholdtsen wrote:
>> I really wish there was some organized way for packages to
>> automatically add schemas and settings to the OpenLDAP server
>> configuration, at install time.
>
> The new cn=config backend in recent OpenLDAP v
EVL>>> The idea behind libpam-tmpdir is that it creates a subdirectory of /tmp
EVL>>> that is only accessible by that user, and then sets TMPDIR and other
EVL>>> variables to that. Hence, it doesn't matter nearly as much if you
EVL>>> create a non-random filename, because nobody but you can access
Dmitry E. Oboukhov wrote:
A while ago, the use of libpam-tmpdir was suggested in order to mitigate
some of these attacks. It would be nice to see it in use by default, some
day.
Obviously there will always be some programs that don't look at the
TMPDIR environment variable
The script in attach looks through a mirror of a specified distributive
and makes a search of '>\s*/tmp/' and 'tee [^|]*/tmp/' constructions.
It finds less errors then I've found earlier however the results of its
work are more accurate.
The script looks through all the files of packages marked
>>> A while ago, the use of libpam-tmpdir was suggested in order to mitigate
>>> some of these attacks. It would be nice to see it in use by default, some
>>> day.
>>
>>> Obviously there will always be some programs that don't look at the
>>> TMPDIR environment variable and directly use /tmp.
>> w
On Tue, Aug 12, 2008 at 10:38:07AM +0400, Dmitry E. Oboukhov wrote:
SM> A while ago, the use of libpam-tmpdir was suggested in order to mitigate
SM> some of these attacks. It would be nice to see it in use by default, some
SM> day.
SM> Obviously there will always be some programs that don't look
Package: wnpp
Severity: wishlist
X-Debbugs-CC: debian-devel@lists.debian.org
--- Please fill out the fields below. ---
Package name: life
Version: 0.9.8
Upstream Author: Christophe Prud'homme <[EMAIL PROTECTED]>
URL: http://www.prudhomm.org/life
License: LGPL
De
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm not a DD so I can't add myself to the list; I'd like to see better
support for importing dsc files and binaries into the archive (aka to
importing an existing archives (import-archive now works though after
I gave it a lobotomy).
Database wise, t
23 matches
Mail list logo
