Mailing List Archive by Gossamer Threads http://www.gossamer-threads.com/lists/gentoo/security/ en-us (c) Gossamer Threads Inc. All rights reserved. 24 Nov 2009 00:09:28 -0800 120 75 23 http://www.gossamer-threads.com/lists/gentoo/security/ http://www.gossamer-threads.com/images/lists/rss_logo.jpg Hello list, I was wondering if I could get peoples' opinions of dev-util/splint (the Secure Programming Lint) [1], and specifically in the context of 03 Jun 2009 20:44:12 -0800 http://www.gossamer-threads.com/lists/gentoo/security/190443 A while back I setup a small cron job to parse the GLSA feed and post it to Twitter. I've been tweaking it and watching it and it seems stable enough 03 Mar 2009 14:30:24 -0800 http://www.gossamer-threads.com/lists/gentoo/security/183327 I have a gentoo desktop profile system and I would like to use tcp wrappers to secure certain services like ssh. I followed the documentation I could 09 Jan 2009 20:51:20 -0800 http://www.gossamer-threads.com/lists/gentoo/security/179151 21 Oct 2008 04:19:09 -0800 http://www.gossamer-threads.com/lists/gentoo/security/174016 I will be out of the office starting 18/08/2008 and will not return until 29/08/2008. I will have limited access to my email while away from the off 20 Aug 2008 20:03:43 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170746 Hello all, as you might be aware, the Gentoo Security Team encourages users to report security vulnerabilities or findings of code audits that are n 20 Aug 2008 14:37:04 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170739 06 Aug 2008 07:12:56 -0800 http://www.gossamer-threads.com/lists/gentoo/security/170062 Hi, I attached a summary of last week's meeting. The summary and the log are also linked from [1] and should find their way to our /proj dir in the 21 Jul 2008 11:49:16 -0800 http://www.gossamer-threads.com/lists/gentoo/security/169272 Hi everyone, the security project will hold a public meeting in #gentoo-security this monday, 2008-07-14 at 19:00 UTC (21:00 CEST). The tentative ag 12 Jul 2008 16:18:29 -0800 http://www.gossamer-threads.com/lists/gentoo/security/168604 Hi, I am trying to run syslog-ng v1.6.8 without root privileges, under dedicated account. All goes fine, except messages from kernel buffer /proc/kms 17 Jun 2008 01:46:55 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62056 Hi, I'm worried with the so-called "Treacherous Computing" appearance in recent Linux kernels. I have read about it on EFF & GNU portals and can't se 17 Jun 2008 01:46:55 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62062 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, the recently publicized SSL weak key generation for debian-based systems (c.f. http://www.debian.o 17 May 2008 02:08:36 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62484 I will be out of the office starting 03/31/2008 and will not return until 04/07/2008. I will respond to your message when I return. ________________ 01 Apr 2008 14:01:02 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62481 Ich bin bis 14.04.2008 abwesend Sehr geehrte Damen und Herren! In der Zeit vom 25.03.2008 bis einschließlich 11.04.2008 befinde ich mich im Urlaub 28 Mar 2008 20:00:33 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62476 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I'm seeing a bunch of keys in my keyring with GSWoT(1) and PGP Global Directory(2) signatures on them. 28 Mar 2008 12:13:43 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62475 Hi list! Am I right that there is currently no way portage tries to verify that the rsync-mirror is not spoofed? Doesn't that pose a major threat? I 20 Mar 2008 03:45:40 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62469 Hi, I found many guides on harddisk encryption with cryptsetup-LUKS but none of them clarifies if it makes sense to use a hash-function (like sha256) 15 Mar 2008 05:38:41 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62466 I will be out of the office starting 10/03/2008 and will not return until 17/03/2008. I will respond to your message when I return. ________________ 11 Mar 2008 14:01:03 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62465 -- gentoo-security@lists.gentoo.org mailing list 11 Mar 2008 08:28:38 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62464 -- gentoo-security@lists.gentoo.org mailing list 07 Mar 2008 01:15:34 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62462 -- gentoo-security@lists.gentoo.org mailing list 07 Mar 2008 00:12:22 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62460 Hi! Now that my initrd-script is ready and provides me with the means to encrypt partitions with a gpg-encrypted key-file [1], I'd like to use the ve 03 Mar 2008 11:53:28 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62456 I benchmakerked them also about two years ago. At that time anibus encryption, xtc and lrw modes didnt exist in the kernel. I concentrated on 256 b 29 Feb 2008 19:28:39 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62449 -- Darren Taylor Protecht Advisory www.protecht.com.au -- gentoo-security@lists.gentoo.org mailing list 28 Feb 2008 13:50:47 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62446 Hi! I just did some benchmarking on different ciphers for cryptsetup-luks and now I've got some questions: 1. Is it a valid way to benchmark by usin 27 Feb 2008 11:58:11 -0800 http://www.gossamer-threads.com/lists/gentoo/security/62439