[1015] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

Re: [linux-security] Archive/Listing

daemon@ATHENA.MIT.EDU (Tudor Popescu)
Mon Aug 19 19:20:04 1996

Date: Sat, 17 Aug 1996 16:30:13 +0200 (GMT+0200)
From: Tudor Popescu <top@tops.lbi.sfos.ro>
To: The Ghost who Admins <mevans@inficad.com>
cc: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <Pine.BSI.3.91.960813114558.22711Q-100000@inficad.com>

On Tue, 13 Aug 1996, The Ghost who Admins wrote:

> Hey all. Just wondering if anyone has a listing of all the 
> vulnerabilities of the current Slackware dist. Basically, if I setup a 
> new machine...what are the holes I need to patch. I know of a few but I 
> KNOW I'm missing alot.

Well, for slak 3.0(not the latest 3.1) you've got:
-xterm, -dip, -splitvt, -mount, -elm filter, -rxvt, -xfree(/tmp/.X.. exploit),
-mgetty+sendfax, -perl(--version<5.003 or something)   sec. holes.

I guess these are the "well-known" ones, but there could be others.
For informations just check ftp.infonexus.com(a very small and hard to 
get in host - but it's worth the time, trust me.. inside you can find 
just about every security hole one could think of..) 

> 
> Thanks in advance. :)
> 
> Mike Evans
> <mevans@inficad.com>
> 

hope this helps,
--ToP.

home help back first fref pref prev next nref lref last post