|
|
| Author |
Message |
| 25 new of 251 responses total. |
aruba
|
|
response 196 of 251:
| 
Mar 2 21:23 UTC 2003 |
Do you mean the UPS failed to work, Scott?
|
keesan
|
|
response 197 of 251:
|
Mar 2 21:46 UTC 2003 |
Several of our clocks were blinking '4:45' this morning around 7:00.
|
scott
|
|
response 198 of 251:
|
Mar 2 22:09 UTC 2003 |
I don't know exactly what the UPS does, but the last few reboots have required
power-cycling the UPS because it was stuck in some kind of fault mode. There
was some kind of power blip last night; I heard both my UPSs go off but none
of my clocks were affected.
|
rksjr
|
|
response 199 of 251:
|
Mar 2 22:12 UTC 2003 |
Currently entering:
lynx, g http://www.cyberspace.org
yields:
Alert!: Unable to connect to remote host.
|
remmers
|
|
response 200 of 251:
|
Mar 2 22:17 UTC 2003 |
Can't connect to any remote host. The proxy server might not be
running. If I knew how to start it, I would.
|
keesan
|
|
response 201 of 251:
|
Mar 3 16:16 UTC 2003 |
RK, if you use Lynx frequently and want a backup for it, contact me.
This sort of proxy server problem has occurred before at grex.
|
rksjr
|
|
response 202 of 251:
|
Mar 3 22:35 UTC 2003 |
Re. #201: Thank you. I'll keep your offer in mind.
|
cross
|
|
response 203 of 251:
|
Mar 3 22:38 UTC 2003 |
This response has been erased.
|
scott
|
|
response 204 of 251:
|
Mar 4 03:02 UTC 2003 |
Seems like apply a patch would be somewhat easier.
|
cross
|
|
response 205 of 251:
|
Mar 4 04:32 UTC 2003 |
This response has been erased.
|
other
|
|
response 206 of 251:
|
Mar 4 07:41 UTC 2003 |
All versions since 5.79 are affected. What version are we running?
|
other
|
|
response 207 of 251:
|
Mar 4 07:46 UTC 2003 |
X-Force has demonstrated that this vulnerability is exploitable in
real-world conditions on production Sendmail installations. This
vulnerability is readily exploitable on x86 architecture systems, and may
be exploitable on others as well.
Protection mechanisms such as implementation of a non-executable
stack do not offer any protection from exploitation of this
vulnerability. Successful exploitation of this vulnerability does not
generate any log entries.
http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950
|
gull
|
|
response 208 of 251:
|
Mar 4 14:15 UTC 2003 |
Re #206: Unless they've set sendmail up to lie about its version in its
connection banner (a good idea, IMHO), you can find that out yourself
pretty easily.
|
cross
|
|
response 209 of 251:
|
Mar 4 16:31 UTC 2003 |
This response has been erased.
|
gull
|
|
response 210 of 251:
|
Mar 4 17:03 UTC 2003 |
Incidentally, it appears this isn't exploitable on some systems. It
depends on how the binary is structured, so it may vary from build to build.
|
gull
|
|
response 211 of 251:
|
Mar 4 17:07 UTC 2003 |
I've always wondered a little if postfix is really more secure, or just
less common (and hence under less scrutiny.) I'm always a little
suspicious of claims of (in)security based on the number of *discovered*
bugs.
|
cross
|
|
response 212 of 251:
|
Mar 4 21:09 UTC 2003 |
This response has been erased.
|
jhudson
|
|
response 213 of 251:
|
Mar 4 22:49 UTC 2003 |
I'm going to get a good laugh when somebody tries to exploit that
bug against us! I don't think very many hackers can write
SunOS shellcode.
|
cross
|
|
response 214 of 251:
|
Mar 4 23:34 UTC 2003 |
This response has been erased.
|
tsty
|
|
response 215 of 251:
|
Mar 6 08:35 UTC 2003 |
script-kiddies suck.
|
dpc
|
|
response 216 of 251:
|
Mar 6 14:49 UTC 2003 |
So is it correct to assume that the widely-reported bug
in sendmail doesn't affect us?
|
cross
|
|
response 217 of 251:
|
Mar 7 07:25 UTC 2003 |
This response has been erased.
|
saizen
|
|
response 218 of 251:
|
Mar 7 08:35 UTC 2003 |
i am trying to work with centering but it seems i need the glib library 1.2
or more new... Some body could renove it? it's very important for me.
Saizen
|
dpc
|
|
response 219 of 251:
|
Mar 7 21:45 UTC 2003 |
Dan, I drew my conclusion because no staff has said otherwise,
and because staff has already hacked sendmail. Plus, no outside
crazies have seized root. I hope. 8-)
|
cross
|
|
response 220 of 251:
|
Mar 8 03:46 UTC 2003 |
This response has been erased.
|
