XSS exploit thingy

2011-07-11 Thread James Mcphee
Ok, I'll be the first to admit that I've shrugged off quite a few known XSS exploits because they were too much of a pain to fix in the shrinkwrap apps I was working with. But, this article brings home just how dangerous they are. http://www.thehackernews.com/2011/07/xss-harvest-harvesting-cross-

adding an rpm to a kickstart repo

2011-07-11 Thread Steven A. DuChene
I have copied the various files off of a Redhat dvd to a kickstart server and created a working ks.cfg file. I am able to kickstart servers with the default install files that were on the original DVD media. However I want to be able to update some of the rpms with newer ones like a newer kernel

Re: CentOS 6 almost ready!

2011-07-11 Thread R P Herrold
On Mon, 11 Jul 2011, Dennis Kibbe wrote: On Sun, 2011-07-10 at 12:00 -0400, R P Herrold wrote: There are are no publicly known SSL issues in the openssl maintained by CentOS Please state the CVE, or if a private zero day, Lisa, please One thing that people might not realize is that Red Ha

Re: CentOS 6 almost ready!

2011-07-11 Thread Dennis Kibbe
Here's Red Hat's explaination https://access.redhat.com/security/updates/backporting/?sc_cid=3093 It's all about not breaking a customer's system. Dennis - Original Message - From: "Phillip Waclawski" To: "Main PLUG discussion list" Sent: Monday, July 11, 2011 12:38:46 PM Subj

RE: CentOS 6 almost ready!

2011-07-11 Thread Lee Reynolds
I’ve always been very glad that Redhat does this. Maintaining binary compatibility is a must when you’ve literally got hundreds of distinct systems to support. Lee Reynolds Tech Support Analyst Sr ASU Advanced Computing Center hpc.asu.edu GWC-178 480.965.9460

Re: CentOS 6 almost ready!

2011-07-11 Thread Phillip Waclawski
Yep, I remember Linus Torvalds yelling at Red Hat for confusing folks that way, but it does make sense for an enterprise distro to do something like that, Phil W. - Original Message - From: "Dennis Kibbe" To: plug-discuss@lists.plug.phoenix.az.us Sent: Monday, July 11, 2011 5:23:22

Re: CentOS 6 almost ready!

2011-07-11 Thread Alex Dean
On Jul 11, 2011, at 1:23 PM, Dennis Kibbe wrote: > On Sun, 2011-07-10 at 12:00 -0400, R P Herrold wrote: >> On Sun, 10 Jul 2011, Lisa Kachold wrote: >> >>> Thanks - I am especially interested in see the SSL updated. Currently the >>> "stable" SSL available from the repo for CentOs 5 is exploita

Re: Looking for NAS Hardware Recommendations

2011-07-11 Thread Joseph Sinclair
rsync will preserve ownership if you set the option to do so (I don't recall the exact flag offhand). I actually prefer rsync over the Samba mount because cifs doesn't understand POSIX permissions. If you root the box you can certainly do the rsync over ssh, but on a local net native(uncompress

Re: CentOS 6 almost ready!

2011-07-11 Thread Dennis Kibbe
On Sun, 2011-07-10 at 12:00 -0400, R P Herrold wrote: > On Sun, 10 Jul 2011, Lisa Kachold wrote: > > > Thanks - I am especially interested in see the SSL updated. Currently the > > "stable" SSL available from the repo for CentOs 5 is exploitable. > > There are are no publicly known SSL issues in