> > Give MIT a few days to do this right. You can use the FreeBSD patch
> > in the meantime if you feel there is a significant need.
>
> Will do.
>
There are some other things we are doing as well such as adding in
support for X Windows Forwarding and perhaps START_TLS.
Jeffrey Altman * S
On Thu, Jul 26, 2001 at 08:58:22PM +, Jeffrey Altman wrote:
> In article <[EMAIL PROTECTED]>,
> Nicolas Williams <[EMAIL PROTECTED]> wrote:
> : I can't speak for the MIT folk, BUT, FreeBSD has produced patches to the
> : telnetd in their "port" of MIT krb5 v1.2.2, and it applies cleanly to
> :
In article <[EMAIL PROTECTED]>,
Nicolas Williams <[EMAIL PROTECTED]> wrote:
: On Thu, Jul 26, 2001 at 11:44:56AM -0700, Booker C. Bense wrote:
: > On 24 Jul 2001, Ken Raeburn wrote:
: >
: > > Yes, it applies. Tom's working on a patch.
: > >
: >
: > - Is it likely to be much different from the F
On Thu, Jul 26, 2001 at 11:44:56AM -0700, Booker C. Bense wrote:
> On 24 Jul 2001, Ken Raeburn wrote:
>
> > Yes, it applies. Tom's working on a patch.
> >
>
> - Is it likely to be much different from the FreeBSD patches?
> (i.e. get rid of nfrontp and use output_data() ?)
I can't speak for the
On 24 Jul 2001, Ken Raeburn wrote:
> Yes, it applies. Tom's working on a patch.
>
- Is it likely to be much different from the FreeBSD patches?
(i.e. get rid of nfrontp and use output_data() ?)
- I'm thinking it would be good to have new deamons in place
by the weekend if possible.
- Booker C
Cool, these patches apply cleanly to MIT krb5 v1.2.2's telnetd.
The only place that's still left doing a bad thing with netobug/nfrontp
is a section of code ifdef'ed so only CRAY2 and/or UNICOS systems use it.
Thanks,
Nico
On Tue, Jul 24, 2001 at 06:11:58PM -0500, Jacques A. Vidrine wrote:
>
Yes, it applies. Tom's working on a patch.
Ken
On Tue, Jul 24, 2001 at 02:24:44PM -0700, John Rudd wrote:
>
>
> So, most of my machines don't use the standard vendor telnet, but
> instead use one form or another of a kerberized telnet. Does anyone
> know if today's announcement applies to kerberized telnetd's?
>
> http://www.securityfocus.
Yes, it does.
I tested as suggested on FreeBSD security list with the following command
to our kerberized telnetd, and it dumped core.
perl -e '$c=sprintf("%c%c", 255, 246); sleep 10; print $c x1000 . "\r\n"' \
| nc localhost 23
(The nc command is netcat-1.10 from ftp://avian.org/src/h
In article <[EMAIL PROTECTED]>,
John Rudd <[EMAIL PROTECTED]> wrote:
:
:
: So, most of my machines don't use the standard vendor telnet, but
: instead use one form or another of a kerberized telnet. Does anyone
: know if today's announcement applies to kerberized telnetd's?
:
: http://www.sec
So, most of my machines don't use the standard vendor telnet, but
instead use one form or another of a kerberized telnet. Does anyone
know if today's announcement applies to kerberized telnetd's?
http://www.securityfocus.com/bid/3064
--
John "kzin" Rudd http://people.uc
11 matches
Mail list logo
