[Full-Disclosure] New version of ike-scan (IPsec IKE scanner) available - v1.1

ike-scan v1.1 has been released. Major changes are: a) More IKE backoff patterns which allows more systems to be fingerprinted; b) Compiles on more platforms including Windows-32 systems with Cygwin; c) Windows-32 command line binary available (includes Cygwin DLL); and d) Identifies systems

[Full-Disclosure] GLSA: openssl (200302-10)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - - GENTOO LINUX SECURITY ANNOUNCEMENT 200302-10 - - - PACKAGE : openssl SUMMARY : timing based attack DATE:

[Full-Disclosure] Diskless Bastions NFS; How secure is NFS (on Linux) rated?

Hello to the list! I have recently been experimenting with a diskless, network booting bastion with root over NFS. One advantage I have found is that Host-based IDS can be run on the NFS server not the bastion. This means that filesystem changes made by an intruder can be spotted, and reversed,

[Full-Disclosure] FW: Citibank tries to gag crypto bug disclosure

From http://cryptome.org/pacc.htm To: [EMAIL PROTECTED] Subject: Citibank tries to gag crypto bug disclosure Date: Thu, 20 Feb 2003 09:57:34 + From: Ross Anderson [EMAIL PROTECTED] Citibank is trying to get an order in the High Court today gagging public disclosure of crypto

[Full-Disclosure] [RHSA-2003:057-06] Updated shadow-utils packages fix exposure

- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated shadow-utils packages fix exposure Advisory ID: RHSA-2003:057-06 Issue date:2003-02-12 Updated on:2003-02-18 Product:

[Full-Disclosure] [ESA-20030220-005] OpenSSL timing-based attack vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ++ | EnGarde Secure Linux Security Advisory February 20, 2003 | | http://www.engardelinux.org/ ESA-20030220-005