On Wed, Mar 02, 2005 at 07:20:38AM -0300, Carlos de Oliveira wrote:
> Whats wrong with slashdot this morning?
Nothing.
Slashdot seems to work flawlessly.
--
Frank - my stupid blog: http://00f.net
___
Full-Disclosure - We believe in it.
Charter:
On Thu, Nov 25, 2004 at 12:17:42PM +0200, Adi Pircalabu wrote:
> Also Opera 7.54 should be added, it crashes on the above code, at least
> the native FreeBSD version
It looks like Konqueror (3.3.1) is safe.
After a few seconds, the script stops and a popup tells the user that a
script is bl
On Sun, Sep 05, 2004 at 10:38:46PM +0200, Kornbrust, Alexander wrote:
> DIR=ltr>
>
> http://lists.netsys.com/full-disclosure-charter.html
ding models 3800, 3200 and 2800. Latest models will all run
Linux instead.
--
__ /*- Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
__
I just got a reply from Brocade.
The vulnerability has been addressed in version 3.2 of their firmware
which is soon to be released.
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \&
sue.
Multiple emails were sent later to those vendors with the hope of having
some news about that issue, but it was a waste of time. At this point I
guess there is nothing else that can be done.
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";
he would find the right contact but I
never got anything else since.
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
; developers working on this project.
Did you verify this info?
http://www.mozillazine.org/talkback.html?article=5107
Netscape 7.2 is going to be released in a few days.
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP S
On Thu, Jul 22, 2004 at 01:31:21PM -0700, Gregory A. Gilliss wrote:
> Really...FreeBSD comes with user nobody set to /sbin/nologin out of the
> box.
Wonderful.
Just like all unix-like systems for 20 years.
___
Full-Disclosure - We believe in it.
Ch
Does anyone have a security contact at LSI Logic's ?
Best regards,
-Frank.
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
On Wed, May 26, 2004 at 12:12:17PM +0200, Ondrej Krajicek wrote:
> Wouldn't it be easier then to abandon MSN and use (say) Jabber?
Definitely.
I can't understand "I'm using proprietary, closed-source software but
I'd like it to do something the vendor hasn't implemented" complains. You
chos
, a large amount of money was transfered to his
account from a couple of popular antivirus vendors :)
--
__ /*- Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jed
w has been found in xxx and is
actively being exploited by black hats", they will consider patching as a
waste of time. They may even yell at you if patching systems implies a
small downtime, even if it'ss a critical patch, as long as it has not been
covered by for-PHBs press.
Best
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
d :@ link.
This is equivalent to http://64.29.173.91/
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
_
o answer was ever received and no fixed version seems to be available yet.
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
_
bution available from
ftp://ftp.c9x.org/qmail/ which is basically qmail 1.03 with most patches
from the web site.
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr
SD, FreeBSD 4, OpenBSD and
derivatives.
So no, as long as there are plenty of users, it's not dead.
--
__ /*- Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ ht
On Thu, Jan 08, 2004 at 11:12:46PM +0200, Georgi Guninski wrote:
> $ gcc gcc-crash.c
> gcc: Internal compiler error: program cc1 got fatal signal 11
Confirmed on FreeBSD 4.9-STABLE and OpenBSD-current (no propolice catch,
though).
--
__ /*-Frank DENIS (Jedi/Sect
sionnally, and thanks to other people for finding them.
Internet Explorer is obviously unmaintained software.
Best regards,
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server
before clicking anywhere and you are still vulnerable to trivial flaws. So
instead of blaming whoever found the IE bugs of the week, just switch to
other browsers.
Best regards,
--
__ /*-Frank DENIS (Jedi/Sector One) -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Ser
gents of the University of California. All rights reserved.
*
* This code is derived from software contributed to Berkeley by
* Jan-Simon Pendry.
*
...
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/&quo
ok.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
___
Full-Dis
;t see the point.
How it is a security flaw? Or even a bug (is a browser supposed to support
very long URLs anyway)?
Yes, IE is probably the most outdated and the most buggy browser out there
(ridiculous CSS bugs) but not every bug should be posted to full-disclosure.
--
__ /*- Fra
On Fri, Oct 24, 2003 at 12:22:25PM +, Jean-Kevin Grosnakeur wrote:
[...]
> void(*sleep)()=(void*)sc;sleep(5);
[...]
Thank you for that funny joke.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";
traps.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
___
Full-Disclo
NIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
pgp0.pgp
Description: PGP signature
Internet Explorer has an useless feature that allows evaluation of
Javascript expressions in style sheets through the "expression" keyword.
It allows execution of arbitrary javascript as soon as an HTML message is
read in older versions of Outlook and in most webmail systems filtering
On Sat, Sep 27, 2003 at 12:24:47PM +0159, Jedi/Sector One wrote:
> The bug can at least be triggered on version 1.2.6
Forget the previous mail, I've messed up different versions.
1.2.6 is ok, sorry.
--
Let internet explore your host
On Fri, Sep 26, 2003 at 10:50:02PM -, Mandrake Linux Security Team wrote:
> The problematic code first appeared in ProFTPD 1.2.7rc1, and
> the provided packages are all patched by the ProFTPD team to protect
> against this vulnerability.
Uh?
The bug can at least be triggered on versio
x27;t be fully trusted by other people. Vendors that don't
answer can't be trusted at all.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server
On Mon, Sep 15, 2003 at 08:35:43PM -0700, [EMAIL PROTECTED] wrote:
> with a XSS bug, this works in IE:
> Other less exciting versions of this XSS:
> http://sitefinder.verisign.com/lpc?url=meow'>alert(document.cookie)<'
Did you _at least_ tell Verisign about this before posting this?
I maile
ay save
your company against bandwidth hogs (especially peer-to-peer like Kazaa).
Best regards,
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://
On Sun, Sep 14, 2003 at 05:59:59AM -0700, Elv1S wrote:
> http://www.k-otik.com/exploits/09.14.mysql.c.php
> don't know if this vuln is patched ?
Yes, just upgrade MySQL to 4.0.15 or apply the small patch posted in the
advisory.
Best regards,
--
__ /*- Frank DENIS (Jedi
am is not only very reactive, the guys
are also extremely nice]
MySQL 4.0.15, which includes a fix for this vulnerability and other
unrelated bugs, is now available for download from the following location :
http://www.mysql.com/downloads/mysql-4.0.html
--
__ /*- Fra
is rather stupid.
But this is actually a _very good_ thing.
People are having their system patched before a more serious worm comes out.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FT
oks like spammers are always experimenting new silly ways of guessing
valid email addresses.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/
aracters are replaced by underscores, the
shellcode should be at least changed a bit to be credible.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Clara
e full-disclosure. A great source of fun.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
msg01362/pgp0.pgp
Description: PGP signature
s.
As the freeware versions aren't available any more on the main site, they
are likely to never get fixed.
--
__ /*- Frank DENIS (Jedi/Sector One) <[EMAIL PROTECTED]> -*\ __
\ '/http://www.PureFTPd.Org/";> Secure FTP Server \' /
\/ http://www.Jedi.Claranet.Fr/";> Misc. free software \/
msg00684/pgp0.pgp
Description: PGP signature
40 matches
Mail list logo