|
|
| Author |
Message |
| 25 new of 251 responses total. |
remmers
|
|
response 200 of 251:
|
Mar 2 22:17 UTC 2003 |
Can't connect to any remote host. The proxy server might not be
running. If I knew how to start it, I would.
|
keesan
|
|
response 201 of 251:
|
Mar 3 16:16 UTC 2003 |
RK, if you use Lynx frequently and want a backup for it, contact me.
This sort of proxy server problem has occurred before at grex.
|
rksjr
|
|
response 202 of 251:
|
Mar 3 22:35 UTC 2003 |
Re. #201: Thank you. I'll keep your offer in mind.
|
cross
|
|
response 203 of 251:
|
Mar 3 22:38 UTC 2003 |
This response has been erased.
|
scott
|
|
response 204 of 251:
|
Mar 4 03:02 UTC 2003 |
Seems like apply a patch would be somewhat easier.
|
cross
|
|
response 205 of 251:
|
Mar 4 04:32 UTC 2003 |
This response has been erased.
|
other
|
|
response 206 of 251:
|
Mar 4 07:41 UTC 2003 |
All versions since 5.79 are affected. What version are we running?
|
other
|
|
response 207 of 251:
|
Mar 4 07:46 UTC 2003 |
X-Force has demonstrated that this vulnerability is exploitable in
real-world conditions on production Sendmail installations. This
vulnerability is readily exploitable on x86 architecture systems, and may
be exploitable on others as well.
Protection mechanisms such as implementation of a non-executable
stack do not offer any protection from exploitation of this
vulnerability. Successful exploitation of this vulnerability does not
generate any log entries.
http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950
|
gull
|
|
response 208 of 251:
|
Mar 4 14:15 UTC 2003 |
Re #206: Unless they've set sendmail up to lie about its version in its
connection banner (a good idea, IMHO), you can find that out yourself
pretty easily.
|
cross
|
|
response 209 of 251:
|
Mar 4 16:31 UTC 2003 |
This response has been erased.
|
gull
|
|
response 210 of 251:
|
Mar 4 17:03 UTC 2003 |
Incidentally, it appears this isn't exploitable on some systems. It
depends on how the binary is structured, so it may vary from build to build.
|
gull
|
|
response 211 of 251:
|
Mar 4 17:07 UTC 2003 |
I've always wondered a little if postfix is really more secure, or just
less common (and hence under less scrutiny.) I'm always a little
suspicious of claims of (in)security based on the number of *discovered*
bugs.
|
cross
|
|
response 212 of 251:
|
Mar 4 21:09 UTC 2003 |
This response has been erased.
|
jhudson
|
|
response 213 of 251:
|
Mar 4 22:49 UTC 2003 |
I'm going to get a good laugh when somebody tries to exploit that
bug against us! I don't think very many hackers can write
SunOS shellcode.
|
cross
|
|
response 214 of 251:
|
Mar 4 23:34 UTC 2003 |
This response has been erased.
|
tsty
|
|
response 215 of 251:
|
Mar 6 08:35 UTC 2003 |
script-kiddies suck.
|
dpc
|
|
response 216 of 251:
|
Mar 6 14:49 UTC 2003 |
So is it correct to assume that the widely-reported bug
in sendmail doesn't affect us?
|
cross
|
|
response 217 of 251:
|
Mar 7 07:25 UTC 2003 |
This response has been erased.
|
saizen
|
|
response 218 of 251:
|
Mar 7 08:35 UTC 2003 |
i am trying to work with centering but it seems i need the glib library 1.2
or more new... Some body could renove it? it's very important for me.
Saizen
|
dpc
|
|
response 219 of 251:
|
Mar 7 21:45 UTC 2003 |
Dan, I drew my conclusion because no staff has said otherwise,
and because staff has already hacked sendmail. Plus, no outside
crazies have seized root. I hope. 8-)
|
cross
|
|
response 220 of 251:
|
Mar 8 03:46 UTC 2003 |
This response has been erased.
|
gull
|
|
response 221 of 251:
|
Mar 10 03:32 UTC 2003 |
It hasn't been patched with the 'official' patch yet, at very least. So
it's probably vulnerable.
AFAIK there's no working exploit for this on SunOS (or any other OS)
yet, not that anyone should be reassured much by that.
|
jep
|
|
response 222 of 251:
|
Mar 10 17:34 UTC 2003 |
Backtalk isn't responding but telnet is working fine.
|
mynxcat
|
|
response 223 of 251:
|
Mar 10 19:50 UTC 2003 |
This response has been erased.
|
remmers
|
|
response 224 of 251:
|
Mar 10 21:02 UTC 2003 |
Web server was probably down for some reason.
|