From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Q2m4J-00067p-Rh for garchives@archives.gentoo.org; Thu, 24 Mar 2011 15:03:29 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 5D1211C027; Thu, 24 Mar 2011 15:01:44 +0000 (UTC) Received: from shakti.fmp.com (shakti.fmp.com [208.81.244.105]) by pigeon.gentoo.org (Postfix) with ESMTP id 2D2371C027 for ; Thu, 24 Mar 2011 15:01:43 +0000 (UTC) Received: from [192.168.1.16] ([::ffff:10.8.0.4]) (AUTH: LOGIN fmouse@fmp.com) by shakti.fmp.com with esmtp; Thu, 24 Mar 2011 10:01:43 -0500 id 000000000026BAE2.000000004D8B5CD7.00002ED9 Subject: Re: [gentoo-desktop] Vulnerabilities on an RFC-1918 masqueraded Linux box. From: Lindsay Haisley To: gentoo-desktop@lists.gentoo.org In-Reply-To: <20110324102926.935d0152.zilka@fi.muni.cz> References: <1300723912.1757.71.camel@ubuntu> <20110323104425.31e154c9.zilka@fi.muni.cz> <1300905997.21521.142.camel@vishnu.fmp.com> <20110324102926.935d0152.zilka@fi.muni.cz> Organization: FMP Computer Services Date: Thu, 24 Mar 2011 10:01:42 -0500 Message-Id: <1300978902.21521.245.camel@vishnu.fmp.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-desktop@lists.gentoo.org Reply-to: gentoo-desktop@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 7bit X-Mailer: Evolution 2.26.3 X-Archives-Salt: X-Archives-Hash: c559f4f2ef3fcfa74b0d7445a386ea07 On Thu, 2011-03-24 at 10:29 +0100, Roman Zilka wrote: > > I actually did mean libmng - it's a good example exactly because it's > so unpopular, yet exists on real systems. As for the reference, see > `emerge -pv libmng`. Sorry! I did a google search for "libmng" yesterday and turned up nothing. I must have misspelled it since I tried it today and came up with all kinds of references. My apologies to all. > For the sake of security of that server, I hope you skipped a number > of other steps you took. I had one of my colleagues, who runs one of Austin's top computer security firms take a look at the situation. He concurred with me on the diagnosis, and there were a limited number of things that could be done, including updating glibc. Customers are free to put whatever they want on their websites, and those who run WordPress are warned that they're liable for damages if their apps get hacked and the system compromised. > I suggest quitting this discussion. It's getting way > off-topic, too general and unfit for this mailinglist, as all these > questions can be answered by checking sources someone else has > previously spent their time on writing. Roman, are you a moderator on this list? The Gentoo website describes it as a "Mailing list devoted to Gentoo on the desktop" so I assumed that Gentoo desktop security was an appropriate topic. That having been said, perhaps you might recommend a few of the best "sources someone else has previously spent their time on writing" since you seem to have knowledge of these, and I'll be happy to let the thread drop. -- Lindsay Haisley | "The difference between a duck is because FMP Computer Services | one leg is both the same" 512-259-1190 | - Anonymous http://www.fmp.com |