[1015] in linux-security and linux-alert archive
Re: [linux-security] Archive/Listing
daemon@ATHENA.MIT.EDU (Tudor Popescu)
Mon Aug 19 19:20:04 1996
Date: Sat, 17 Aug 1996 16:30:13 +0200 (GMT+0200)
From: Tudor Popescu <top@tops.lbi.sfos.ro>
To: The Ghost who Admins <mevans@inficad.com>
cc: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <Pine.BSI.3.91.960813114558.22711Q-100000@inficad.com>
On Tue, 13 Aug 1996, The Ghost who Admins wrote:
> Hey all. Just wondering if anyone has a listing of all the
> vulnerabilities of the current Slackware dist. Basically, if I setup a
> new machine...what are the holes I need to patch. I know of a few but I
> KNOW I'm missing alot.
Well, for slak 3.0(not the latest 3.1) you've got:
-xterm, -dip, -splitvt, -mount, -elm filter, -rxvt, -xfree(/tmp/.X.. exploit),
-mgetty+sendfax, -perl(--version<5.003 or something) sec. holes.
I guess these are the "well-known" ones, but there could be others.
For informations just check ftp.infonexus.com(a very small and hard to
get in host - but it's worth the time, trust me.. inside you can find
just about every security hole one could think of..)
>
> Thanks in advance. :)
>
> Mike Evans
> <mevans@inficad.com>
>
hope this helps,
--ToP.