Mailing List Archive by Gossamer Threads http://www.gossamer-threads.com/lists/gentoo/security/ en-us (c) Gossamer Threads Inc. All rights reserved. 24 Nov 2009 14:54:40 -0800 120 75 23 http://www.gossamer-threads.com/lists/gentoo/security/ http://www.gossamer-threads.com/images/lists/rss_logo.jpg Hello list, I was wondering if I could get peoples' opinions of dev-util/splint (the Secure Programming Lint) [1], and specifically in the context of 03 Jun 2009 20:44:12 -0800 http://www.gossamer-threads.com/lists/gentoo/security/190443 A while back I setup a small cron job to parse the GLSA feed and post it to Twitter. I've been tweaking it and watching it and it seems stable enough 03 Mar 2009 14:30:24 -0800 http://www.gossamer-threads.com/lists/gentoo/security/183327 I have a gentoo desktop profile system and I would like to use tcp wrappers to secure certain services like ssh. I followed the documentation I could 09 Jan 2009 20:51:20 -0800 http://www.gossamer-threads.com/lists/gentoo/security/179151 21 Oct 2008 04:19:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/174016 I will be out of the office starting 18/08/2008 and will not return until 29/08/2008. I will have limited access to my email while away from the off 20 Aug 2008 20:03:43 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170746 Hello all, as you might be aware, the Gentoo Security Team encourages users to report security vulnerabilities or findings of code audits that are n 20 Aug 2008 14:37:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170739 06 Aug 2008 07:12:56 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170062 Hi, I attached a summary of last week's meeting. The summary and the log are also linked from [1] and should find their way to our /proj dir in the 21 Jul 2008 11:49:16 -0800 http://www.gossamer-threads.com/lists/gentoo/security/169272 Hi everyone, the security project will hold a public meeting in #gentoo-security this monday, 2008-07-14 at 19:00 UTC (21:00 CEST). The tentative ag 12 Jul 2008 16:18:29 -0800 http://www.gossamer-threads.com/lists/gentoo/security/168604 Hi, I am trying to run syslog-ng v1.6.8 without root privileges, under dedicated account. All goes fine, except messages from kernel buffer /proc/kms 17 Jun 2008 01:46:55 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62056 Hi, I'm worried with the so-called "Treacherous Computing" appearance in recent Linux kernels. I have read about it on EFF & GNU portals and can't se 17 Jun 2008 01:46:55 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62062 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, the recently publicized SSL weak key generation for debian-based systems (c.f. http://www.debian.o 17 May 2008 02:08:36 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62484 I will be out of the office starting 03/31/2008 and will not return until 04/07/2008. I will respond to your message when I return. ________________ 01 Apr 2008 14:01:02 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62481 Ich bin bis 14.04.2008 abwesend Sehr geehrte Damen und Herren! In der Zeit vom 25.03.2008 bis einschließlich 11.04.2008 befinde ich mich im Urlaub 28 Mar 2008 20:00:33 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62476 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I'm seeing a bunch of keys in my keyring with GSWoT(1) and PGP Global Directory(2) signatures on them. 28 Mar 2008 12:13:43 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62475 Hi list! Am I right that there is currently no way portage tries to verify that the rsync-mirror is not spoofed? Doesn't that pose a major threat? I 20 Mar 2008 03:45:40 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62469 Hi, I found many guides on harddisk encryption with cryptsetup-LUKS but none of them clarifies if it makes sense to use a hash-function (like sha256) 15 Mar 2008 05:38:41 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62466 I will be out of the office starting 10/03/2008 and will not return until 17/03/2008. I will respond to your message when I return. ________________ 11 Mar 2008 14:01:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62465 -- gentoo-security@lists.gentoo.org mailing list 11 Mar 2008 08:28:38 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62464 -- gentoo-security@lists.gentoo.org mailing list 07 Mar 2008 01:15:34 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62462 -- gentoo-security@lists.gentoo.org mailing list 07 Mar 2008 00:12:22 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62460 Hi! Now that my initrd-script is ready and provides me with the means to encrypt partitions with a gpg-encrypted key-file [1], I'd like to use the ve 03 Mar 2008 11:53:28 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62456 I benchmakerked them also about two years ago. At that time anibus encryption, xtc and lrw modes didnt exist in the kernel. I concentrated on 256 b 29 Feb 2008 19:28:39 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62449 -- Darren Taylor Protecht Advisory www.protecht.com.au -- gentoo-security@lists.gentoo.org mailing list 28 Feb 2008 13:50:47 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62446 Hi! I just did some benchmarking on different ciphers for cryptsetup-luks and now I've got some questions: 1. Is it a valid way to benchmark by usin 27 Feb 2008 11:58:11 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62439 F A S T T R A C K D E G R E E P R O G R A M Obtain the degree you deserve, based on your present knowledge and life experience. A prosperous 21 Feb 2008 19:07:18 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62431 Can anyone tell me what service/application would start sendmail? I discovered my Gentoo computer recently very active with I/O on the harddrive and 19 Feb 2008 04:39:12 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62409 After reading the tangent topic in bug id 209460 concerning kernel vulnerabilities and GLSAs I did some searching and came across the "Kernels and GLS 16 Feb 2008 15:57:23 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62399 I am probably being paranoid, but I'd like to encrypt my /home/username folder on my laptop. I tried EncFS using [1], but KDE didn't seem to work und 15 Feb 2008 16:09:41 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62386 unsubscribe -- gentoo-security@lists.gentoo.org mailing list 11 Feb 2008 09:37:58 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62384 Any concert about the Linux Kernel Local Root Exploit as showed in the Common Vulnerabilities and Exposure site with id's CVE-2008-0009, CVE-2008-0010 11 Feb 2008 08:40:25 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62380 Hi guys: I am sending this E-mail because I am after Tavis (taviso@gentoo.org). I'm not able to get in touch with him, perhaps he's been busy or 21 Sep 2007 05:04:26 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62376 Hi folks, robbat2 is finish up analysis (robbat2 can you please ping me with your status) of the recent compromise and we should release a news updat 20 Aug 2007 13:22:02 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62372 05 Aug 2007 23:20:38 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62371 I am using SELinux on one of my boxes and one thing that pussels me is that some "sec-policy/selinux-*" seems not to be merged even when I have the pa 22 Apr 2007 12:14:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62367 I remember the days, when summers were hot, winters were cold, and notifications about kernel security were made using GLSAs. Then they stopped witho 16 Apr 2007 01:36:30 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62350 _________________________________________ www.nextmail.ru - ÐÏÞÔÁ ÎÏ×ÏÇÏ ÐÏËÏÌÅÎÉÑ -- gentoo-security@gentoo.org mailing list 01 Feb 2007 01:42:45 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62349 Hello, Recently I sent this problem that I am facing, in gentoo-users list but got no reply. Do you have any experience with this issue? Yiannis > 10 Dec 2006 07:13:06 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62347 Hi, I was wondering what the possibilities are for caldav support on Gentoo, does anyone inhere know something about that? Cheers -- gentoo-secu 07 Dec 2006 06:10:16 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62342 -- gentoo-security@gentoo.org mailing list 25 Nov 2006 09:34:41 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62334 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi All, I'm just becoming a gentoo dev and at the moment I'm mainly concerned with a few security-rela 20 Nov 2006 02:03:05 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62332 On Sat, 04 Nov 2006 13:54:56 -0500, John Schember <j5483@yahoo.com> wrote: > On Sat, 2006-11-04 at 13:40 -0500, Kwon wrote: >> Can a hacked instance 04 Nov 2006 16:47:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62330 Hello, can/does mounting a partition with noexec, ro etc. provide additional security or are those limitations easy to circumvent? Example: webserv 04 Nov 2006 04:11:22 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62322 >> Basically what I want to do is create a series of VERY tiny VMs that >> are all independent of each other, which provide one service. For >> insta 03 Nov 2006 10:04:33 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62318 I just got "Topics (messages 722 throught 723):" -- gentoo-security@gentoo.org mailing list 26 Oct 2006 15:12:38 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62316 On Wed, 25 Oct 2006 09:38:04 -0400, fire-eyes <sgtphou@fire-eyes.org> wrote: > I am having a very irritating problem with the wireless driver and c 26 Oct 2006 12:52:46 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62315 Am testing Arpstar (masked), which seems to be issuing lots of Cain and Abel attack warnings - which I presume are false. 1. Does anyone know if Ar 22 Oct 2006 12:46:12 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62314 Could some of the developers comment on the questions and comments made in this thread please: http://forums.gentoo.org/viewtopic-t-507914.html Geo 18 Oct 2006 22:03:02 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62313 Hi once more, On 10/10/06, Miguel Figueiredo Mascarenhas Sousa Filipe <miguel.filipe@gmail.com> wrote: > Hi again, > > On 10/8/06, Daniel Black <drag 10 Oct 2006 20:26:17 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62310 Hi, On 10/8/06, 7v5w7go9ub0o <7v5w7go9ub0o@gmail.com> wrote: > It is my understanding that dhcpcd client requires root or a > privileged user. Am pre 09 Oct 2006 04:18:36 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62304 It is my understanding that dhcpcd client requires root or a privileged user. Am presently running dhcpcd in a chroot jail (ssp and grsecurity-hardene 08 Oct 2006 14:26:56 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62296 How do I unsubscribe from this list. It says that i'm not subscribed!! -- gentoo-security@gentoo.org mailing list 05 Oct 2006 15:14:12 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62291 Hi, I've been looking for a way to use our internal gentoo box (file - & printserver) to also cache windowsupdates & mac updates. Since we have a co 04 Oct 2006 04:37:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62278 remove -------------- Original message ---------------------- From: gentoo-security+help@gentoo.org 28 Sep 2006 18:03:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62275 -- Best regards, Orlenko Stas System Administrator NIX Solutions Ltd. ICQ: 213638564 Cell: 38 097 891 91 47 "When you know what your network can 28 Sep 2006 05:27:33 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62274 Hi, dev-libs/libvc have been masked for the bug #127757. But I submit a patch for this issue and it have been put in the tree. Is it possible to unma 13 Sep 2006 01:20:39 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62269 I spent several hours yesterday and today fleshing out a proper default policy file for Gentoo. Now we don't have use the crappy Redhat version from 06 Sep 2006 14:24:42 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62268 Hi List! Continuing the previous GLSA thread: I have an EMT64 system, and I don't want to spend the time right now to find out if the GLSA is wrong 04 Sep 2006 04:53:53 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62262 Sorry if this is a little OT, but I thought it might be an appropriate question for this audience... Has anyone had much experience with RS232 (seri 02 Sep 2006 16:32:39 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62256 Hi! Below is example of report which I received from chkrootkit. What's the goal of listing all these .keep and .packlist files? There a lot of them, 26 Aug 2006 09:14:44 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62254 Hi! Is GLSA 200607-02 include freetype 1.3.x? # glsa-check -l | grep '\[N\]' 200607-02 [N] FreeType: Multiple integer overflows ( media-libs/freetyp 07 Aug 2006 10:21:01 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62239 I will be out of the office starting 08/07/2006 and will not return until 08/08/2006. As it's a long weekend in Canada I will respond to your messag 07 Aug 2006 09:37:27 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62237 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Interesting study. I like the premise of it. However, I'm not sure I agree with their method. From t 07 Aug 2006 09:17:16 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62236 Hi, I just stumbled over an article from SearchSecurity.com which was linked to in a heise newsticker posting that tries to analyze how fast distribu 07 Aug 2006 04:42:21 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62235 Hi! Looks like some of screensavers used in xlock conflict with hardened: 2006-07-31_19:07:03.64042 kern.alert: grsec: signal 11 sent to /usr/bin/xl 31 Jul 2006 12:24:41 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62232 I suspect that Oracle prefer to certify their apps against a binary distribution as then it is easier to know that everyone is running the same packag 31 Jul 2006 07:27:48 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62231 -- gentoo-security@gentoo.org mailing list 28 Jul 2006 14:26:32 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62228 Just received this CERT announce concerning firefox vulnerabilities. I checked portage and there is no ebuild for 1.5.0.5. Anyone have an idea when 27 Jul 2006 18:04:34 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62219 Hello everybody, I'm searching a free tools to manage user and passwords, but in static mode. I'm explained: I'm searching for a free tool which may 27 Jul 2006 03:08:51 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62216 The subject kinda says it all. I've been hunting around for an automated solution to backing up my encrypted home directory to a remote server throug 12 Jul 2006 06:22:13 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62211 Well, there you go not following instructions... :) If your still reading, I'm testing promail recipies. Making sure I didn't screw up what was alre 07 Jul 2006 11:41:27 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62210 Hi, My new IM (Jabber) adress is : beber@jabber.fr My new email is : beber@gna.org Beber -- gentoo-security@gentoo.org mailing list 30 May 2006 03:12:58 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62205 Recently, I have noticed one our servers (running Gentoo) shows something strange in the "top" command. The CPU usage % column shows *integer* valu 26 Apr 2006 08:14:22 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62190 Hi folks! I'd like to announce that Systrace is back in the portage tree, it consists of two packages: sys-apps/systrace the userspace application 25 Apr 2006 23:57:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62184 Hi all, I'm currently having a problem with ProFTPd with a gentoo server at work. The problem is that files uploaded to the virtual domains always ha 24 Mar 2006 12:47:29 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62183 Hi All, I'm trying to protect my dhcp server with some rules within iptables against some DoS, and I see all the "hopefully dropped" packages in my 22 Mar 2006 09:32:47 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62175 This is the summary of the IRC meeting the Gentoo Linux Security Team had on Monday, March 20, 20:00 UTC in #gentoo-security (freenode). A raw IRC log 22 Mar 2006 08:02:30 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62174 Hello. I install apache + php with hardened patch. When i enter index.php in browser i get this error message in apache error.log: [error] [client 22 Mar 2006 00:39:14 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62171 21 Mar 2006 09:43:57 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62170 Hello I would like to use iplimit in my firewall. I use iptables-1.3.4 with "extensions" USE flag and gentoo-sources-2.6.15-r1 I can't find iplimit 20 Mar 2006 05:21:11 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62169 Small reminder, The Security project will hold an online meeting via IRC, on Freenode's #gentoo-security channel, tomorrow, March 20th, at 2000 UTC. 19 Mar 2006 14:38:19 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62168 Hello everyone, The Security project will hold an online meeting on the #gentoo-security channel next Monday, March 20th, at 2000 UTC. The tentative 14 Mar 2006 12:59:45 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62167 Hi list readers, I wonder when version 1.4.6 of squirrelmail is becoming stable, it was released on 23 February 2006. I wouldn't ask if there wouldn' 08 Mar 2006 16:03:00 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62160 Hello list, I am trying to setup a password on my local rsync portage mirror. This is what I have done thus far: On the server: 1. Added "secrets 07 Mar 2006 10:20:54 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62158 Re: [gentoo-security] Should I change my password? -------------------------------------------------- Thank you fellows for your helpful responses. I 18 Feb 2006 12:44:27 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62140 Hey all. Gentoo Linux AMD64 - running pretty sweet - except, I've noticed that even under minimal loads, my system seems to have mini-lockups frequen 16 Feb 2006 07:58:01 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62122 Hi, The current behaviour of a default Gentoo install is to load iptables after the network has been initialised. Upon shutting down likewise iptable 04 Feb 2006 05:50:47 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62104 Hello, I'm trying to setup Prelude IDS on a new server and I seem to be running into problems with prelude-manager upon startup. It does start but 25 Jan 2006 14:09:54 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62099 -----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 Hello, I am being forced to run software on my computer that I do not inherently trust. It is sup 18 Jan 2006 07:58:23 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62088 I wonder how long this list is been idle. On 1/18/06, tfn2k tfn2k <tfn2kk@gmail.com> wrote: > -- Int'l Anti-Microsoft Assn. Japan/S'pore Dept. fsck 18 Jan 2006 04:40:26 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62085 18 Jan 2006 04:07:54 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62083 Hello list, I have the pleasure to inform you that, thanks to the help of Xavier Neys and Kurt Lieber, the GLSA-feed located at http://www.gentoo.o 08 Dec 2005 12:44:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62080 Hello everyone, I have installed iptables yesterday and currently using a basic script from web to enable firewall. The script logs the dropped pack 27 Nov 2005 08:09:54 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62069 I've been chewing on this idea for a while and am hoping someone on the list may help me with a concern. The notion is that big company B will distr 23 Nov 2005 13:29:34 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62066 > I ran syslog-ng as a non-root user once before, but now I run it as > root. From what I can remember, syslog-ng opened /proc/kmsg before > dropping 17 Nov 2005 06:52:37 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62061 > dedicated non-root account. May be we need to ask syslog-ng authors to > implement the same scheme as in sysklogd? Or syslog-ng could have root per 16 Nov 2005 04:54:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62058 Hi I read the following artivle http://www.securityfocus.com/news/11355/2 which has prompted me to reconsider my security setup, it is a home system 15 Nov 2005 06:03:48 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62050 Hello, I am trying to setup KMail to use GnuPG. I have emerged unstable gnupg (1.9.19), gpg-agent (1.9.19) and pinentry (0.7.2-r1). I am now trying 10 Nov 2005 11:15:21 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62044 09 Nov 2005 06:38:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62032 Hi, I have a server that's doing just about everything a server can do. It's serving webpages with Apache, running mysql, handling mail for around 30 08 Nov 2005 15:21:20 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62019