Date: Tue, 4 Feb 2003 19:08:36 -0800 (PST) From: root@FreeBSD.ORG (Root hub.FreeBSD.ORG) To: freebsd-security@FreeBSD.ORG Subject: removing restriction on who can send email to freebsd-security Message-ID: <20030205030836.D875D37B401@hub.freebsd.org>
next in thread | raw e-mail | index | archive | help
Folks,
please take a look at the following emails...these were
rejected from FreeBSD-security due to a policy of restricting
to only those subscribed to the list at the address subscribed
to the list. while well-intentioned, this policy has unintended
results.
i have removed the restriction. please contact me at
postmaster@freebsd.org if you wish to discuss the matter....i
am open to your responses.
jmb
From: Richard Nyberg <rnyberg@it.su.se>
To: freebsd-security@FreeBSD.org
Subject: patch for broken krb5 telnet
Message-ID: <20030131151944.GA335@gromit.it.su.se>
Mail-Followup-To: Richard Nyberg <rnyberg@it.su.se>,
freebsd-security@FreeBSD.org
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4i
Hi there!
I just wanted yo make you aware that there is a patch
for krb5 telnet from bg@sics.se available at
http://www.freebsd.org/cgi/query-pr.cgi?pr=bin/45397.
With this patch telnet no longer dumps core and it uses
subkeys properly.
It'd be nice to have krb5 telnet work out of the box
in FreeBSD; it's been broken for quite some time now :(
---
Happy hacking!
-Richard
From: Kris Kennaway <kris@obsecurity.org>
To: bas <steendijk@xs4all.nl>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: krb5-realm.com
Message-ID: <20030201214607.GA16797@rot13.obsecurity.org>
References: <v04210102ba60a5a98b9c@[192.168.1.27]> <3E3B1D71.21CFBD42@ursine.com>
<20030201015129.GA27949@rfc822.net> <20030131181815.A42597@greg.cex.ca> <3E3B9B03.
6ACE7B96@xs4all.nl>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="GvXjxJ+pjyke8COw"
Content-Disposition: inline
In-Reply-To: <3E3B9B03.6ACE7B96@xs4all.nl>
User-Agent: Mutt/1.4i
--GvXjxJ+pjyke8COw
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
On Sat, Feb 01, 2003 at 11:01:39AM +0100, bas wrote:
> isnt it a bad thing if every sshd on the world ends up contacting
> krb5-realm.com by default? is this also true for newer versions of sshd
> (with kerberos disabled)? i mean it may make the owners of
> krb5-realm.com powerful beings. sounds a bit .NET to me.
What evidence do you have that this is true?
Kris
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030205030836.D875D37B401>