Re: [Sheflug] Sheflug Meeting / AccessSpace NIS

[Will Newton <nospam [at] misconception.org.uk>]

On Mon, 2 Apr 2001, Richard Lowe wrote:

> Local attacks are still very bad.
> But I dont remember anything about either bug, so I dont know anymore.
> but assuming they dont lead to a user gaining extra privelidges, they
> arent that bad, but still something to be wary of.

.joerc problem:
http://www.securityfocus.com/bid/2437

DEADJOE problem:
http://www.securityfocus.com/bid/1959

> The point being (apart from the stupid fd leak) non of them were really
> Redhats fault (IIRC), you can blame them for starting a stupid number of
> services my default, but it seems most distributions do that.

ICBW but looking at the stuff currently in beta at RedHat, I think 7.1 may
be a much more secure distribution. Only ssh available to the world by
default, and I think there is also going to be a rudimentary firewall
setup thingy in the installer.

Have to wait and see if it ends up that way though. :)

---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word 
 "unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.