Mailing List Archive by Gossamer Threads http://www.gossamer-threads.com/lists/gentoo/security/ en-us (c) Gossamer Threads Inc. All rights reserved. 13 Feb 2012 03:52:14 -0800 120 75 23 http://www.gossamer-threads.com/lists/gentoo/security/ http://www.gossamer-threads.com/images/lists/rss_logo.jpg 08 Dec 2011 22:21:59 -0800 http://www.gossamer-threads.com/lists/gentoo/security/244096 On Nov 17, 2011, at 1:30 AM, David Sommerseth wrote: > > Hi, > > This is a very fresh CVE, and I wondered if this has caught your attention? > When 17 Nov 2011 00:48:23 -0800 http://www.gossamer-threads.com/lists/gentoo/security/242696 Hi, This is a very fresh CVE, and I wondered if this has caught your attention? When would it be reasonable to expect an update for this issue? ISC 16 Nov 2011 23:30:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/242692 Rich Freeman wrote, on 08/27/2011 03:06 PM: > However, that isn't really what we're discussing here. What we're > talking about is GLSAs vs no GLSAs. 27 Aug 2011 06:34:27 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237182 On Sat, Aug 27, 2011 at 8:34 AM, Tobias Heinlein <keytoaster@gentoo.org> wrote: > I have read that idea multiple times now, each of them by people not 27 Aug 2011 06:06:43 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237181 Rich Freeman wrote, on 08/27/2011 02:13 PM: > Note that I'm basically advocating ditching the tool. A tool is good > when it improves productivity. 27 Aug 2011 05:34:39 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237180 On Sat, Aug 27, 2011 at 4:49 AM, Christian Kauhaus <kc@gocept.com> wrote: > So in consequence I would appreciate to have both mechanisms: a timely > u 27 Aug 2011 05:13:02 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237179 Am 26.08.2011 20:08, schrieb Kevin Bryan: > SECURITY_FIXES="<www-plugins/adobe-flash-10.1.102.64" > SECURITY_REF="CVE:2010-2169 http://..." > SECURITY 27 Aug 2011 01:49:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237175 But Alex, this could be a great improvement in system at all. This can help administrators to measure better its systems, and may be "force" developer 26 Aug 2011 16:38:50 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237171 On Friday 26 August 2011 16:02:56 Kevin Bryan wrote: > I was not considering the entire process, just the part that really > impacts me: identifying v 26 Aug 2011 15:27:33 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237168 I like this approach but I have no idea about how this could be performed. ACCEPT_RISKS="remote dos" emerge ... Sounds very cool to me. Daniel On 26 Aug 2011 13:40:49 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237163 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I was not considering the entire process, just the part that really impacts me: identifying vulnerable 26 Aug 2011 13:02:56 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237162 On Friday, August 26, 2011 08:07:57 PM Alex Legler wrote: > On Friday 26 August 2011 20:00:15 Joost Roeleveld wrote: > > On Friday, August 26, 2011 07 26 Aug 2011 12:30:02 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237161 Alex. For WEB vulnerability discovering, one of the most important to us is Nessus to search and confronting against CVE database. Sometimes, Nessus 26 Aug 2011 12:27:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237160 On Friday 26 August 2011 15:22:40 Daniel A. Avelino wrote: > > When I think about automation, I had in mind something that could help > > developers 26 Aug 2011 11:44:06 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237159 Hi Kevin. That is an interesting idea. So one could check about vulnerabilies solutions _before_ package installation. And better. This could give us 26 Aug 2011 11:41:58 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237155 On Friday 26 August 2011 14:08:38 Kevin Bryan wrote: > Although I like having the summary information about what the > vulnerability is, if I'm only r 26 Aug 2011 11:40:29 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237154 On Fri, Aug 26, 2011 at 2:57 PM, Alex Legler <a3li@gentoo.org> wrote: > On Friday 26 August 2011 14:18:20 Daniel A. Avelino wrote: > > Alex. > > > > 26 Aug 2011 11:22:40 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237153 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Although I like having the summary information about what the vulnerability is, if I'm only reading the 26 Aug 2011 11:08:38 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237152 On Friday 26 August 2011 20:00:15 Joost Roeleveld wrote: > On Friday, August 26, 2011 07:06:35 PM Christian Kauhaus wrote: > > Am 26.08.2011 18:55, sc 26 Aug 2011 11:07:57 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237151 On Friday 26 August 2011 14:18:20 Daniel A. Avelino wrote: > Alex. > > May be a call for volunteers more "intense" could improve the manpower. This > 26 Aug 2011 10:57:29 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237150 Alex. May be a call for volunteers more "intense" could improve the manpower. This could be a more easy start point to address, no?. I work too in so 26 Aug 2011 10:18:20 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237149 Am 26.08.2011 18:55, schrieb Alex Legler: > Compared to other distributions, our advisories have been rather detailed with > lots of manually research 26 Aug 2011 10:06:35 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237148 On Friday 26 August 2011 18:12:00 Christian Kauhaus wrote: > Hi, > > I'm wondering that may favorite Linux distro hasn't had any security > announcem 26 Aug 2011 09:55:43 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237145 Dear Christian Everything is secure. No reason to write GLSAs or to panic. ;) Chris Am 26.08.2011 um 18:12 schrieb Christian Kauhaus: > Hi, > > 26 Aug 2011 09:43:19 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237144 Hi, I'm wondering that may favorite Linux distro hasn't had any security announcements since January. In my opinion this is really problematic. At o 26 Aug 2011 09:12:00 -0800 http://www.gossamer-threads.com/lists/gentoo/security/237143 Ruxcon 2011 Final Call For Papers The Ruxcon team is pleased to announce the final call for papers for the seventh annual Ruxcon conference. This ye 15 Aug 2011 03:53:08 -0800 http://www.gossamer-threads.com/lists/gentoo/security/236342 Shit happens - sorry to all of you guys. Linkedin did do it somehow and i didnt notice. Too much coffee and not enough sleep. Sorry ;) Regards 11-08- 11 Aug 2011 01:09:01 -0800 http://www.gossamer-threads.com/lists/gentoo/security/236172 Benefit of doubt linkedin crawls your contact list and sends out invites to all? On Aug 10, 2011 5:21 PM, "Bernhard Egger" <bernhard@aces.snu.ac.kr> w 10 Aug 2011 20:29:01 -0800 http://www.gossamer-threads.com/lists/gentoo/security/236143 I think more likely it was that linkdin was given access to his email address book... But hey you also sent yr reply to the list... On Aug 10, 2011, 10 Aug 2011 20:02:50 -0800 http://www.gossamer-threads.com/lists/gentoo/security/236142 Dude? 1. Do i know you? 2. Send what to a list? On Wed, Aug 10, 2011 at 5:15 PM, Bernhard Egger <bernhard@aces.snu.ac.kr>wrote: > dude, you send 10 Aug 2011 17:29:33 -0800 http://www.gossamer-threads.com/lists/gentoo/security/236133 dude, you send this to a list?! On 08/10/2011 07:10 AM, Wojciech Ziniewicz wrote: > > LinkedIn > > I'd like to add you to my professional network 10 Aug 2011 17:15:27 -0800 http://www.gossamer-threads.com/lists/gentoo/security/236132 LinkedIn ------------ I'd like to add you to my professional network on LinkedIn. - Wojciech Wojciech Ziniewicz Lead System Engineer at 314 T 09 Aug 2011 15:10:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/236076 Ruxcon 2011 Call For Papers The Ruxcon team is pleased to announce the call for papers for the seventh annual Ruxcon conference. This year the confe 16 May 2011 23:37:08 -0800 http://www.gossamer-threads.com/lists/gentoo/security/230769 -- Corpex Internet GmbH * Schauenburgerstraße 6 * D-20095 Hamburg Tel: +49 40 822268-0 * Fax: +49 40 822268-100 * http://www.corpex.de/ HRB 78752, Am 05 Jan 2011 02:40:39 -0800 http://www.gossamer-threads.com/lists/gentoo/security/223859 2010/10/28 Mateusz Arkadiusz Mierzwinski <mateuszmierzwinski@gmail.com> > 2010/10/28 Pavel Labushev <p.labushev@gmail.com> > > > I didn't test that p 28 Oct 2010 04:05:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220203 2010/10/28 Pavel Labushev <p.labushev@gmail.com> > > I didn't test that patch; even if it's incorrect, bugreport is not about > > a patch. It's about 28 Oct 2010 02:50:46 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220189 > I didn't test that patch; even if it's incorrect, bugreport is not about > a patch. It's about a security issue. Well, the bug report is about the 27 Oct 2010 18:23:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220164 > eruption or something else. Now collection is expanded to patches that > will not be mainstreamed :> This is GOOD PRACTICE :). Thinking about Anoth 27 Oct 2010 18:14:26 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220163 On Wed, Oct 27, 2010 at 08:33:56PM +0200, Volker Armin Hemmann wrote: > please show me some enterprise distros incorporating that patch. I didn't tes 27 Oct 2010 17:23:53 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220157 2010/10/27 Volker Armin Hemmann <volkerarmin@googlemail.com> > On Wednesday 27 October 2010, Kirktis wrote: > > and people wonder why gentoo is not t 27 Oct 2010 12:32:54 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220146 On Wednesday 27 October 2010, Kirktis wrote: > and people wonder why gentoo is not taken seriously by the enterprise. > > On 10/27/10, dev-random@mai 27 Oct 2010 11:33:56 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220142 and people wonder why gentoo is not taken seriously by the enterprise. On 10/27/10, dev-random@mail.ru <dev-random@mail.ru> wrote: > #342619 [[url]ht 26 Oct 2010 22:52:00 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220120 #342619 [[url]http://bugs.gentoo.org/342619] RESOLVED WONTFIX Are you intentionally leaving security hole in system? 26 Oct 2010 12:15:42 -0800 http://www.gossamer-threads.com/lists/gentoo/security/220111 On Sun, 2010-10-17 at 19:58 +0100, Graham Murray wrote: > Alex Legler <a3li@gentoo.org> writes: > > > As the maintainers are primarily responsible fo 17 Oct 2010 12:46:53 -0800 http://www.gossamer-threads.com/lists/gentoo/security/219734 Alex Legler <a3li@gentoo.org> writes: > As the maintainers are primarily responsible for providing unaffected > ebuilds, you'll need to ask the kerne 17 Oct 2010 11:58:17 -0800 http://www.gossamer-threads.com/lists/gentoo/security/219733 On 10/17/2010 04:51 PM, Alex Legler wrote: > Er, who here assessed the issue to be not "important"? >> [...] > You seem to be assuming that we (=Gento 17 Oct 2010 11:00:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/219732 On 10/17/2010 11:51 AM, Alex Legler wrote: > Excerpts from Israel G. Lugo's message of Sun Oct 17 15:59:15 +0200 2010: >> Your own >> vulnerability tr 17 Oct 2010 09:43:14 -0800 http://www.gossamer-threads.com/lists/gentoo/security/219728 I just wanted to clarify that my intent is not to complain, or to imply that Gentoo devs aren't working hard enough, or that "Gentoo sucks" or anythin 17 Oct 2010 08:54:26 -0800 http://www.gossamer-threads.com/lists/gentoo/security/219727 Excerpts from Israel G. Lugo's message of Sun Oct 17 15:59:15 +0200 2010: > So what's the conclusion on what happened with bug 337645? What can we > l 17 Oct 2010 08:51:42 -0800 http://www.gossamer-threads.com/lists/gentoo/security/219726 Greetings, So what's the conclusion on what happened with bug 337645? What can we learn from here? That everything went just fine and according to pl 17 Oct 2010 06:59:15 -0800 http://www.gossamer-threads.com/lists/gentoo/security/219724 Excerpts from Richard Freeman's message of Sun Sep 26 20:17:24 +0200 2010: > On 09/26/2010 12:56 PM, Robin H. Johnson wrote: > > Even hardened-kernel 26 Sep 2010 15:10:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218776 Excerpts from Calum's message of Sun Sep 26 19:28:01 +0200 2010: > On 26 September 2010 11:31, Richard Freeman <rich0@gentoo.org> wrote: > > Gentoo ha 26 Sep 2010 14:42:00 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218775 On 09/26/2010 12:56 PM, Robin H. Johnson wrote: > Even hardened-kernel was fixed within 2 days of bug opening. > > The delay is in stabilization, and 26 Sep 2010 11:17:24 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218763 On 26 September 2010 11:31, Richard Freeman <rich0@gentoo.org> wrote: > Gentoo has been vulnerable to a highly-publicized (Guardian, Slashdot, > the w 26 Sep 2010 10:28:01 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218762 On Sun, Sep 26, 2010 at 08:16:22AM -0400, Richard Freeman wrote: > On 09/26/2010 07:51 AM, Volker Armin Hemmann wrote: > > so there has been roughly a 26 Sep 2010 09:56:40 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218758 On 09/26/2010 07:51 AM, Volker Armin Hemmann wrote: > so there has been roughly a week so far. Agreed - 10 days was the figure I mentioned. So far w 26 Sep 2010 05:16:22 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218746 On Sunday 26 September 2010, Richard Freeman wrote: *gentoo-sources-2.6.32-r18 (21 Sep 2010) 21 Sep 2010; Mike Pagano <mpagano@gentoo.org> +gento 26 Sep 2010 04:51:35 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218745 Gentoo has been vulnerable to a highly-publicized (Guardian, Slashdot, the works) local privilege escalation for almost two weeks now. (Well, it has 26 Sep 2010 03:31:47 -0800 http://www.gossamer-threads.com/lists/gentoo/security/218741 Security Project Meeting 2010-09-01 =================================== Roll call --------- here: Alex Legler (a3li) Tony Vroon (chainsaw), 09 Sep 2010 13:35:16 -0800 http://www.gossamer-threads.com/lists/gentoo/security/217874 Matthias Geerdsen <vorlon@gentoo.org> said: > Hi everyone, > > the security project will hold a public meeting in #gentoo-security on > freenode this 30 Aug 2010 17:05:35 -0800 http://www.gossamer-threads.com/lists/gentoo/security/217372 Hi everyone, the security project will hold a public meeting in #gentoo-security on freenode this wednesday, 2010-09-01 at 18:30 UTC (20:30 CEST). T 30 Aug 2010 13:10:51 -0800 http://www.gossamer-threads.com/lists/gentoo/security/217361 RUXCON 2010 FINAL CALL FOR PAPERS Ruxcon would like to announce the final call for papers for the sixth annual Ruxcon conference. This year the conf 19 Aug 2010 19:13:21 -0800 http://www.gossamer-threads.com/lists/gentoo/security/216775 So to avoid "spamming" with 20+ Thank You emails I'll send out just one and thank you all collectively for the information provided (I hope this isn't 07 Apr 2010 08:06:02 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210470 On Tue, Apr 6, 2010 at 2:56 PM, Butterworth, John W. <jbutterworth@mitre.org> wrote: > If someone makes a change to a copy of a program (say a backdoo 06 Apr 2010 19:14:48 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210441 07.04.2010 04:20, Volker Armin Hemmann пишет: > If he changes the ebuild - well... emerge-webrsync with webrsync-gpg FEATURE could be used to m 06 Apr 2010 14:15:24 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210434 On Tue, Apr 6, 2010 at 11:45 PM, Butterworth, John W. < jbutterworth@mitre.org> wrote: > Thank you Shimi. > > I also came across a couple threads in 06 Apr 2010 14:06:47 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210433 Thank you Shimi. I also came across a couple threads in my research: http://sources.gentoo.org/viewcvs.py/gentoo/users/robbat2/tree-signing-gleps/ 06 Apr 2010 13:45:52 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210425 On Tue, Apr 6, 2010 at 10:26 PM, Butterworth, John W. < jbutterworth@mitre.org> wrote: > Hi. I have a security-related question for Portage/rsync: 06 Apr 2010 13:26:42 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210424 On Dienstag 06 April 2010, Butterworth, John W. wrote: > Hi. I have a security-related question for Portage/rsync: > > > > If someone makes a chan 06 Apr 2010 13:20:44 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210423 Hi. I have a security-related question for Portage/rsync: If someone makes a change to a copy of a program (say a backdoor added to apache) host 06 Apr 2010 12:26:15 -0800 http://www.gossamer-threads.com/lists/gentoo/security/210422 On Wed, 2009-12-16 at 21:06 -0500, whereislibertyandjustice@Safe-mail.net wrote: > In linux binaries, in any linux distro, I've discovered the same st 17 Dec 2009 03:14:50 -0800 http://www.gossamer-threads.com/lists/gentoo/security/203495 On 12/17/09 03:06, whereislibertyandjustice@Safe-mail.net wrote: > In linux binaries, in any linux distro, I've discovered the same strings > which I 16 Dec 2009 22:00:46 -0800 http://www.gossamer-threads.com/lists/gentoo/security/203474 On Wed, Dec 16, 2009 at 09:06:04PM -0500, whereislibertyandjustice@Safe-mail.net wrote: > Google results are vague, some suggest shell backdoors, ever 16 Dec 2009 21:20:32 -0800 http://www.gossamer-threads.com/lists/gentoo/security/203473 whereislibertyandjustice@safe-mail.net said: > In linux binaries, in any linux distro, I've discovered the same strings > which I believe may be due t 16 Dec 2009 20:49:29 -0800 http://www.gossamer-threads.com/lists/gentoo/security/203472 In linux binaries, in any linux distro, I've discovered the same strings which I believe may be due to a virus or trojan. Yet, clamav, rkhunter, chkr 16 Dec 2009 18:06:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/203469 Hello Mansour, On Wednesday 10 June 2009, Mansour Moufid wrote: > > But keep in mind there is a certain amount of work that comes with > > this. > > 11 Jun 2009 07:13:20 -0800 http://www.gossamer-threads.com/lists/gentoo/security/191091 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, Jun 4, 2009 at 6:58 AM, Robert Buchholz<rbu@gentoo.org> wrote: > However note that the Auditing 10 Jun 2009 13:35:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/191001 On Thursday 04 June 2009, Mansour Moufid wrote: > Hello list, > > I was wondering if I could get peoples' opinions of dev-util/splint > (the Secure Pr 04 Jun 2009 03:58:14 -0800 http://www.gossamer-threads.com/lists/gentoo/security/190450 Hello list, I was wondering if I could get peoples' opinions of dev-util/splint (the Secure Programming Lint) [1], and specifically in the context of 03 Jun 2009 20:44:12 -0800 http://www.gossamer-threads.com/lists/gentoo/security/190443 Peter Volkov wrote: > Ð' Срд, 13/05/2009 в 17:50 -0500, Aleksey V Lazar пишет: > > >> I'm using Portage version 2.1.6.13 right now. I 01 Jun 2009 10:24:28 -0800 http://www.gossamer-threads.com/lists/gentoo/security/190243 Ð' Срд, 13/05/2009 в 17:50 -0500, Aleksey V Lazar пишет: > I'm using Portage version 2.1.6.13 right now. I know for a fact that > I've us 29 May 2009 00:19:44 -0800 http://www.gossamer-threads.com/lists/gentoo/security/190089 Robert Buchholz wrote: > On Wednesday 13 May 2009, Aleksey V Lazar wrote: > >> Robert Buchholz wrote: >> >>> On Tuesday 29 July 2008, Bill wro 13 May 2009 15:50:10 -0800 http://www.gossamer-threads.com/lists/gentoo/security/188791 On Wednesday 13 May 2009, Aleksey V Lazar wrote: > Robert Buchholz wrote: > > On Tuesday 29 July 2008, Bill wrote: > >>> Currently (to the best of my 12 May 2009 15:24:34 -0800 http://www.gossamer-threads.com/lists/gentoo/security/188722 Robert Buchholz wrote: > On Tuesday 29 July 2008, Bill wrote: > >>> Currently (to the best of my understanding) there is no easy way >>> (e.g.: an 12 May 2009 15:18:07 -0800 http://www.gossamer-threads.com/lists/gentoo/security/188721 On Tuesday 03 March 2009 17:30:24 Douglas J Hunley wrote: > A while back I setup a small cron job to parse the GLSA feed and post it to > Twitter. I'v 06 Mar 2009 10:57:05 -0800 http://www.gossamer-threads.com/lists/gentoo/security/183449 Am Mittwoch 04 März 2009 schrieb Aleksey V Lazar: > Douglas J Hunley wrote: > > If you want to, simply follow > > @Gentoo_Security and you'll get 'in 05 Mar 2009 00:33:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/183376 Twitter. -- Michael Thompson -original message- Subject: Re: [gentoo-security] small announcement for the community From: Aleksey V Lazar <lazar@mnsu 04 Mar 2009 09:47:08 -0800 http://www.gossamer-threads.com/lists/gentoo/security/183356 Douglas J Hunley wrote: > If you want to, simply follow > @Gentoo_Security and you'll get 'instant' updates of new GLSAs > > I'm sorry, what does 04 Mar 2009 09:44:34 -0800 http://www.gossamer-threads.com/lists/gentoo/security/183355 A while back I setup a small cron job to parse the GLSA feed and post it to Twitter. I've been tweaking it and watching it and it seems stable enough 03 Mar 2009 14:30:24 -0800 http://www.gossamer-threads.com/lists/gentoo/security/183327 I can think of three reasons: less clutter, less maintenance, and keeping the machine from wasting time parsing the file on busy systems that may have 14 Jan 2009 13:17:59 -0800 http://www.gossamer-threads.com/lists/gentoo/security/179459 Thank you for all the suggestions, they have been very helpful and I now have my tcp wrappers up and running. Just out of curiosity, why doesn't the 12 Jan 2009 16:32:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/179307 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi there... You can also install the "DenyHosts" package, which will parse your syslog for failed 12 Jan 2009 09:50:14 -0800 http://www.gossamer-threads.com/lists/gentoo/security/179268 Search for "tcp wrappers howto" on Google. Yes, this must be maintained manually. I recommend to do away with /etc/host.deny and have "ALL :ALL@ALL :d 09 Jan 2009 21:51:47 -0800 http://www.gossamer-threads.com/lists/gentoo/security/179152 I have a gentoo desktop profile system and I would like to use tcp wrappers to secure certain services like ssh. I followed the documentation I could 09 Jan 2009 20:51:20 -0800 http://www.gossamer-threads.com/lists/gentoo/security/179151 gentoo-security+subscribe@lists.gentoo.org 21 Oct 2008 04:23:05 -0800 http://www.gossamer-threads.com/lists/gentoo/security/174017 21 Oct 2008 04:19:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/174016 I will be out of the office starting 18/08/2008 and will not return until 29/08/2008. I will have limited access to my email while away from the off 20 Aug 2008 20:03:43 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170746 Hello all, as you might be aware, the Gentoo Security Team encourages users to report security vulnerabilities or findings of code audits that are n 20 Aug 2008 14:37:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170739 06 Aug 2008 07:12:56 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170062