openSUSE Security May 2005

security@lists.opensuse.org

89 participants
58 discussions

by pelibali

Hi, After I saw today the newest MozillaFirefox release 1.0.4 appearing on a YOU server for SUSE 9.1; really hope, that the about 3 weeks ago promised mozilla-related packages will be also released for SUSE 9.1 and 9.0 (maybe last shot for 8.2?): http://www.novell.com/linux/security/advisories/2005_28_mozilla_firefox.html Would be possible to know please, that was it just seemingly skipped or let's say shifted because new vulnerabilities? Interestingly in both http://www.novell.com/linux/security/advisories/2005_12_sr.html http://www.novell.com/linux/security/advisories/2005_13_sr.html there was not a single word about that. Best regards, Pelibali

17 years, 1 month

Why has IPv6 support worsend in SUSE 9.3

by Arjen Runsink

L.S. Does anyone know why IPv6 support has moved backwards in SUSE 9.3? This has made me seriously move to *BSD for my SOHO firewall/router/server box. It was almoste perfect in 9.2 but in 9.3 we are back to a level that looks like pre millenium support for IPv4!! BB, Arjen

17 years, 1 month

Fou4s 0.13.1 released

by Markus Gaugusch

Hi! I've fixed a bug reported and analyzed by Bjorn Tore Sund, which caused i586 packages to be installed on an x86_64 machine. This is only relevant for packages which have been installed with fou4s-0.13.0 on x86_64 machines. Everyone else has no problem and there are not other changes. (I would still upgrade every machine, because the internal rpmcache version has changed and import/export functionality depends on equal cache versions). To find out if fou4s has installed a wrong package, please run the following command: rpm -qa --qf "%{INSTALLTIME} %{NAME}-%{VERSION} %{ARCH}\n" | sort -n Look at the lines below the latest fou4s update and check the arch. I'm really sorry for any inconvenience this may have caused, but I don't have access to any x86_64 machines. As we have discussed on fou4s-devel, I'm open for any sponsoring in that area [1]. Fou4s development has been a lot of fun, but apart from the great guys at selfnet.at who offer me free hosting, it hasn't produced any real benefit yet. Encouraging comments are still very welcome, though :-) Markus Gaugusch http://fou4s.gaugusch.at/ [1] http://fou4s.gaugusch.at/archives/fou4s-devel/2005-May/000439.html PS: The --arch parameter is not yet fixed, but on the TODO list ... -- __________________ /"\ Markus Gaugusch \ / ASCII Ribbon Campaign markus(at)gaugusch.at X Against HTML Mail / \

17 years, 1 month

ServerTokens Directive Apache with SLOX4.1

by steve nutt

Hello: I am trying to reduce the amount of information given out when someone tries to Banner Grab for Version information. I read that "ServerToken" directive in httpd.conf file will limit the amount of information given out. First off I didn't find the "ServerToken" in the httpd.conf with a search. So I added it in the Global Setting section (where I found it on RedHat box). Set it to "ServerToken Prod" or "OS" or "Min" no quotation marks of course. I found "ServerSignature On" changed it to "Off", restarted httpd, and then ran "HEAD / HTTP/1.0" and it still comes back with HEAD / HTTP/1.0 200 OK Content-Length: 720 Content-Type: text/html Last-Modified: Wed, 11 May 2005 20:16:21 GMT Client-Date: Tue, 31 May 2005 04:49:32 GMT 404 Not Found Date: Tue, 31 May 2005 04:31:44 GMT Server: Apache/2.0.49 (Unix) PHP/4.3.9 # How do I get rid of this an say something else Content-Length: 1335 Content-Type: text/html; charset=ISO-8859-1 Client-Date: Tue, 31 May 2005 04:49:33 GMT Client-Response-Num: 1 Proxy-Connection: close X-Cache: MISS from firewall.domainname X-Powered-By: PHP/4.3.9 # How do I get rid of this and say something else I guess my question should be what controls the amount of information given out ServerTokens, ServerSignature, or something else? And to configure these items do I make my changes in the httpd.conf, or httpd.conf.SuSEconfig, or in /etc/sysconfig/apache? Which file and variable controls what gets displayed. I have made changes to SeverTokens and ServerSignature in httpd.conf and httpd.conf.SuSEconfig, and HTTPD_SEC_SAY_FULLNAME directive to "no" in /etc/sysconfig/apache at different times and then restarted the httpd with rchttpd restart, and then did the "HEAD / HTTP/1.0" from the command line and I always get the above with no changes. What AM I DOING WRONG? Any help here would be appreciated. Thanks: Steve

17 years, 1 month

unsubscrive

by Profunser Andreas TSN

unsubscribe

17 years, 1 month

url redirected

by Gary Saptaputra

Hi, Is there a tools that can check whether your suse box got hacked or not? It's suse enterprise 9. Whenever I tried to access my webpage hosted on suse box, I always get redirected to external website. It looked like someone has been intercepting the request. Hope anyone can give me some insight on how to get rid of this. Thks. __________________________________________________ Do You Yahoo!? Download the latest ringtones, games, and more! http://sg.mobile.yahoo.com

17 years, 1 month

*****SPAM***** [suse-security] Mail server access fine from outside, not inside

by Antonio Montani Jimenez

Greetings, i have a webpage and a mail server accesible from the internet. However, i cant access both of them internally using my public adress, i have to access it through the internal address, 192.168..... is it a firewall problem, i presume... but i havent fdigured it out... i tried dnating anything going to my public adress from anywhere to be forwarded to the mail server, and it works from the outside, but not on the inside. any suggestions? thanks in advance �Tienes alguna duda en tu VIDA? www.howstuffworks.comIf You Ask Me A Fu**in' Question You'd Better Be Prepared For The AnswerNoel GallagherOasis Frontman17/10/02 __________________________________ Do you Yahoo!? Yahoo! Small Business - Try our new Resources site http://smallbusiness.yahoo.com/resources/

17 years, 1 month

Questions about patch levels

by steve nutt

Hello, Can anyone on this list refer me to a document that explains how SUSE patch version works? For instance we have a SLOX 4.1 mail server that is based in part on Suse Enterprise Server 8.0 and United Linux that is running apache-1.3.26-163. Now this is a very old version of apache but what is the 163 exactly? I need to know if this version is still vulnerable. How do I know what was fixed within this version, and for that matter earlier versions. This particular apache version 1.3.26 has a lot of problems. Our scanner is lighting up like a Christmas tree everytime it is scanned. It is fully patched but !!!!! Someone said the fix is back ported or something. What is backported mean. Why dont they just upgrade to the newer version with the fix? How do you know what fixed what? I need some help. Ive got a boss that is on me to get his figured out. Is there a document or a database that will tell me if a particular vulnerability has been patched and what version did it. Thanks Steve

17 years, 1 month

watching freeradius server with bigsister

by Sebastian Uhlig - ICA

Hello list, I mabye off topic so please answer to my private e-mail address. I try to add my radius server to the uxmon-net file of my big sister installation. host.example.com(host_example_com) secret="XYZ" port="1812" user="username" pass="xyz" time="5" radius Also I installed the Athen::Radius Modul from CPAN, rebooted the server, cleared the caches, but I didn't seem to work. If I try the user account manual through radtest from the bigsister server it works without any problems. Any ideas or a mission impossible? Thanks in advantage. Sebastian

17 years, 1 month

Broken update

by Bjorn Tore Sund

Given that the maintenance info is out for SLES and the packages are coming in with fou4s and YOU I assume the security announcement for libtiff is pending soon. The rpms for SuSE 9.2 x86-64 are broken. The libtiff rpm tries to put files in /usr/lib, in conflict with libtiff-32bit - the files should be going into /usr/lib64. I recommend not forcing the updates in, but waiting for the fixed packages from SuSE - which I assume are on their way? Lots of stuff may otherwise be broken... Bjørn -- Bjørn Tore Sund Phone: (+47) 555-84894 Stupidity is like a System administrator Fax: (+47) 555-89672 fractal; universal and Math. Department Mobile: (+47) 918 68075 infinitely repetitive. University of Bergen VIP: 81724 Support: system(a)mi.uib.no Contact: teknisk(a)mi.uib.no Direct: bjornts(a)mi.uib.no

17 years, 1 month

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

1997

1996

openSUSE Security May 2005