. (i have had lots of buggy programs which screw that up anyway)
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpP0I5dtBZDS.pgp
Description: PGP signature
1032088314260665400 32% /var
[EMAIL PROTECTED] lock]$
now what quota (nor moving /var/run/screen) will NOT fix is stuffing
/var via /usr/bin/logger (that is just a bit more work then the above)
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpY62bhcbBUt.pgp
Description: PGP signature
other file if they are
`open'
i still maintain that users owning a directory in /var/run/screen is
not really a big deal since there are loads of world writable
directories in /var. maybe if tex is fixed i might be convinced.
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpPdV4RFBK14
'/tmp/quota.user' \
--protect '/tmp/quota.group' \
/tmp
still i don't think its good to overload /tmp with this kind of
garbage more then necessary or that list could get rediculous.
FHS may answer some of these questions too.
--
Ethan Benson
http://www.alaska.net/~erbenson
? :)
Filesystem Hierarchy Standard http://www.pathname.com/fhs/
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpjNwrmkEkhv.pgp
Description: PGP signature
/
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpX7DziT3giG.pgp
Description: PGP signature
On Mon, Jul 31, 2000 at 03:07:38AM +, Jim Breton wrote:
On Sat, Jul 29, 2000 at 02:41:51PM -0800, Ethan Benson wrote:
we we could just fix the DoS in gpm, no?
Presumably so, though I'm not sure how the internals of gpm work... it
is conceivable that any data written to that socket
, is that safe?
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgp43KHwR50fq.pgp
Description: PGP signature
On Sat, Jul 29, 2000 at 03:37:30AM +, Jim Breton wrote:
Yup. Until we have a package which sets restricted permissions on its
own, when it creates the socket. :-{
we we could just fix the DoS in gpm, no?
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpBUWm6B9m9K.pgp
Description
On Sat, Jul 29, 2000 at 02:41:51PM -0800, Ethan Benson wrote:
On Sat, Jul 29, 2000 at 03:37:30AM +, Jim Breton wrote:
Yup. Until we have a package which sets restricted permissions on its
own, when it creates the socket. :-{
we we could just fix the DoS in gpm, no?
i just tried
and mounted nosuid.
even still one can leave a process running with the group privileges
quite easily... man screen.
what is gpmctl actually used for anyway?
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgprkFfJOy6oE.pgp
Description: PGP signature
On Fri, Jul 28, 2000 at 08:11:12AM +, Jim Breton wrote:
On Thu, Jul 27, 2000 at 11:56:03PM -0800, Ethan Benson wrote:
pam_group is only relativly secure if your system is installed and
configured a certain way:
Yup, some of that is mentioned in the documentation... nevertheless
since there are
other ways to get local access, (say a bad CGI in apache, could get
you a www-data shell) or of course bind, wu-ftpd etc.
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgptbO3ET77i6.pgp
Description: PGP signature
provides a way to write secure suid scripts.
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpZWH5UZFaSE.pgp
Description: PGP signature
presume they don't use bind 8 becuase it
probably needs to be 110% rewritten to make it secure...
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpEGDrMlblZT.pgp
Description: PGP signature
it idiot-proof. If you have any of
idiots should not be running bind.
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpwjrDkHbPnQ.pgp
Description: PGP signature
[29409]: starting. named 4.9.7-REL Thu May 21 19:27:54 1998
$ uname -mrs
OpenBSD 2.6 i386
$
i am not sure about 2.7 but i doubt its any different.
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpzNJYXg53Rl.pgp
Description: PGP signature
On Mon, Jun 05, 2000 at 12:59:36PM +0100, Zak Kipling wrote:
On Mon, 5 Jun 2000, Ethan Benson wrote:
idiots should not be running bind.
Very true. But we can't very well have an install script which asks Are
you an idiot? and aborts installation if the user answers Yes ;-)
Bottom line
certainly very
brain-dead...
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpmIS4PYEupv.pgp
Description: PGP signature
`Peanuts'? the classic strip where Lucy pulls the
football away as Charlie Brown comes running to kick it springs to
mind...
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgppMeEnjZJLl.pgp
Description: PGP signature
On Fri, May 26, 2000 at 02:37:59AM -0700, Alexander Hvostov wrote:
Ethan,
Only one problem. Charlie Brown doesn't have hordes of lawyers.
and the Free software movement does?
MS has hoards of lawyers and billions of dollors and even they are not
escaping the US govt ;-)
--
Ethan Benson
-rsaref
(think thats what its called) that is legal but its total crap. this
september rsaref will die however.
On 29-Apr-2000 23:13:57 Ethan Benson wrote:
that version is anchient, and was not very compatible, even with
newer
PGP. GPG is not really compatible with PGP2.6 (read RSA/IDEA
On Sun, Apr 30, 2000 at 12:58:09AM -, Pollywog wrote:
On 30-Apr-2000 00:17:24 Ethan Benson wrote:
On Sun, Apr 30, 2000 at 12:12:19AM -, Pollywog wrote:
Where does one get the extensions?
i don't know where the upstream sources are, but they are packaged
for
debian (potato
, Pollywog wrote:
You mean that the patent will expire in September, correct?
20th of September yes. party!
we know were far gone when we party over tech patents expiring :P
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpaC7yeA1TqE.pgp
Description: PGP signature
)
the idea was shot down for some reason, i don't recall exactly why.
as for capabilities i really think they should just get it over with
and add the filesystem support for them to ext3, along with ACL
support (whose space was hijacked to allow for large files).
--
Ethan Benson
http
changed/removed. unfortunatly sxid appears to have
been removed from potato because of one non-reproducable RC bug :(
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpv8bAZF7G5o.pgp
Description: PGP signature
On Thu, Apr 27, 2000 at 04:30:28PM +, Jim Breton wrote:
On Thu, Apr 27, 2000 at 01:13:34AM -0800, Ethan Benson wrote:
this contrasts with linux's immutable bit that the superuser may
remove whenever he wants, making it mostly pointless. (i read
Yah I looked at it that way too at first
rmd160
/bin/rmd160
$ which sha1
/bin/sha1
$
lets see you break those ;-)
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpITutWqgNRO.pgp
Description: PGP signature
On Thu, Apr 27, 2000 at 10:58:54AM +0200, L. Besselink wrote:
On Wed, 26 Apr 2000, Ethan Benson wrote:
so why don't we use sha1 or rmd160 or all three like OpenBSD ;-)
lets see you break those ;-)
--
Ethan Benson
http://www.alaska.net/~erbenson/
I think the system
On Thu, Apr 27, 2000 at 01:36:23PM +0200, Tollef Fog Heen wrote:
* Ethan Benson
| one neat way would be a CD-RW, have both an ordinary CDROM and a
| CD-RW drive, when you upgrade or install something move the
| checksums cd-rw to the RW drive, update it then take it out and put
| it back
) and it is NOT vulnerable. i used the exploit described on
securityfocus.
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpH3aJVDO7tM.pgp
Description: PGP signature
uses PAM improperly, ignoring session modules) or xdm (which
does not use PAM at all (last time i checked)) for all other
interactive logins pam_limits works very nicely. (the best way i
suppose would be to fix wdm's pam support, but i don't know how to do
that :( )
--
Ethan Benson
http
Simons
http://www.nmt.edu/~npsimons/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpWN8uDkMO2m.pgp
Description: PGP signature
, no idea.
--
Ethan Benson
http://www.alaska.net/~erbenson/
?
--
Ethan Benson
http://www.alaska.net/~erbenson/
301 - 335 of 335 matches
Mail list logo
