[Full-disclosure] [SECURITY] [DSA 965-1] New ipsec-tools packages fix denial of service

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 965-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 6th, 2006

[Full-disclosure] What can a Remote Vulnerability Scanner do in Future?

hi there: I'm engaged in design a Remote Vulnerability Scanner. We have done a non-preemptive multithread engine and written almost 2000 vulnerability plugins. Each one of plugins according to one CVE ID. After we done these work, we get confused and don't know what to do. first, although M

[Full-disclosure] Previously costly software now completely free.

FYI: Recently I noticed that both the nSight Network Intelligence Console (http://www.obtuse.net/software/nsight/) and VMWare GSX Server (http://www.vmware.com/products/gsx/) are now completely free of charge for both commercial and non-commercial use. Both pretty cool somewhat security-related s

[Full-disclosure] Re: VHCS Security Patch - 2006-02-05 --> Fake!

Hi Alex, My apologies if I've been a bit rough, but public security mailing-lists are intended to deal with (un)security issues. I don't understand why you didn't announce in mls the issue if a new vuln was being fixed. It seemed some kind of joke or hack, since I missed the "die()" function and I

Re: [Full-disclosure] Re: Re: ZoneAlarm phones home

http://theinquirer.net/?article=29157 >The company says it will fix the "bug" soon. In the meantime you can work >around it by adding: ># Block access to ZoneLabs Server >127.0.0.1 zonelabs.com >to your Windows host file. On 2/4/06, Dave Korn <[EMAIL PROTECTED]> wrote: > Ivan . wrote: > > >> obse

[Full-disclosure] VHCS Security Patch - 2006-02-05 --> Fake!

Hi, I've just visited VHCS main page and noticed the following "security patch": http://vhcs.net/new/modules/news/article.php?storyid=23 It reads: "This patch is for all VHCS versions. You have to update only one GUI file - /vhcs2/gui/include/login.php Just replace the file " Well, just do N

[Full-disclosure] [ GLSA 200602-01 ] GStreamer FFmpeg plugin: Heap-based buffer overflow

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200602-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -

Re: [Full-disclosure] NSA tracking open source security tools

Is anybody else getting tired of the threads about the NSA tracking stuff? All of these threads have a lineage back into the 80's as far as I am concerned I see repeated threads with some changes like TV Soap operas! ;) For author's of open source, you should feel honored if Governments want to