http://www.redhat.com/support/errata/RHSA-2000-065-06.html
try that link.
its been out since october
> Another Deadrat bug? Unconfirmed but likely - there's lots of
> scans going on
> for lpd...
>
> I've also heard LPRng is exploitable... is that default with Deadrat 7?
oh, an lose the Deadrat thing - its a bit lame itself
dave
>
> Cheers,
> Marty
>
> > -----Original Message-----
> > From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]]
> > Sent: Friday, December 01, 2000 8:22 AM
> > To: [EMAIL PROTECTED]
> > Subject: lpd exploit?
> >
> > Not sure if this is true or not, but I thought I'd give a heads-up...
> >
> > [12:01] <user1> dont run redhat 7
> > [12:01] <user1> whatever you do
> > [12:01] <user1> unless you wanna get hacked quickly
> > [12:01] <user2> hah
> > [12:01] <user2> seriously?
> > [12:01] <user2> how could you hack RedHat 7?
> > [12:02] <user1> uh
> > [12:02] <user1> theres an lpd exploit out
> > [12:02] <user1> that brute forces the offset
> > [12:02] <user1> and
> > [12:02] <user1> it will root every redhat box it touches
> > [12:02] <user1> heh
> > _________________________________________________________
> > This message was sent with Sendpad.com.
> > The sender indicated his or her e-mail address as "[EMAIL PROTECTED]"
> > Send anonymous e-mail right now at http://www.sendpad.com
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug