Freek Dijkstra wrote:
> The correct action in this case, IMHO, should have been to apply the
> patch (of course!), but also add a postinst script, which gives a BIG
> warning telling people that they need to change /etc/sudoers
> The postinst script by kernel-image-* packages are examples of how
On Sat, 28 Jan 2006 13:56:50 +0100, Florian Weimer wrote:
> * Nick Boyce:
>
> >>From this I infer that mod_auth_ldap for Debian-packaged Apache 2 must
> > be included with the main Debian Apache packages, and that no
> > libapache(2)-auth-ldap package is required - and that I therefore need
> > f
The goal is to have an internal webserver:
- DONE - running on a high numbered port
- DONE - firewall forwards 80-> on webserver
- DONE - external hits on www.blah.com
served by the httpserver
- - internal/intranet also can hit
This is hardly a topic for debian-security but anyway...
also sprach hanasaki <[EMAIL PROTECTED]> [2006.01.29.1945 +0100]:
> What iptable rule can be put on the firewall so that internal port 80
> traffic going to the external NIC on port 80 comes back to the internal
> webserver on port ?
No
On Sun, Jan 29, 2006 at 01:13:47PM +0100, Moritz Muehlenhoff wrote:
> Freek Dijkstra wrote:
> > The correct action in this case, IMHO, should have been to apply the
> > patch (of course!), but also add a postinst script, which gives a BIG
> > warning telling people that they need to change /etc/s
On Mon, Jan 30, 2006 at 10:37:07AM +1100, Matt Palmer wrote:
> I'm sure there are plenty of people who have security.debian.org in their
> sources.list without being subscribed to d-s-a. Hell, I'm a security
> conscious person and I'm subscribed to d-s-a primarily so I know when I
> should be watc
6 matches
Mail list logo
