From owner-freebsd-vuxml@FreeBSD.ORG Tue Apr 20 06:53:56 2004 Return-Path: Delivered-To: freebsd-vuxml@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4A29916A4CE for ; Tue, 20 Apr 2004 06:53:56 -0700 (PDT) Received: from mail.xensia.net (colo1.xensia.net [217.158.173.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 44A5343D1F for ; Tue, 20 Apr 2004 06:53:55 -0700 (PDT) (envelope-from listsucker@ipv5.net) Received: from 81-174-2-199.f5.ngi.it ([81.174.2.199] helo=godzilla) by mail.xensia.net with asmtp (TLSv1:DES-CBC3-SHA:168) id 1BFvhA-0004yP-00; Tue, 20 Apr 2004 14:53:52 +0100 Date: Tue, 20 Apr 2004 15:52:11 +0200 From: Frankye - ML To: freebsd-vuxml@FreeBSD.org Message-Id: <20040420155211.6fad1eb0@godzilla> X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.9) X-Face: =3I@Jvohf91[b8M]~KUNFaCt}pnTO2K^E#_P4`uCU]D"pHw List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Apr 2004 13:53:56 -0000 This is a multi-part message in MIME format. --Multipart=_Tue__20_Apr_2004_15_52_11_+0200_.=i41_C/ULStS__1 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit (cc-ed to the port maintainer) Hi everyone on the list and Mr. Liu An Ip spoofing issue was just posted on bugtraq. The issue seems trivial, but if anyone can spoof his ip address forging a browser header maybe an installation which make heavy use of ip based acls can suffer a lot. For what I understand you could easily spoof yourself as 127.0.0.1 ... An unofficial patch was published on bugtraq too, and is available in the message (http://marc.theaimsgroup.com/?l=bugtraq&m=108241122908409) and online (http://www.nettwerked.co.uk/code/phpbb-ipspoof.patch) Attached is the vuxml snippet for this issue. Frankye ps: To Mr. Liu: if you're not following the whole vuxml thing and you're wondering what this is all about there's some info there (http://lists.freebsd.org/pipermail/freebsd-security/2004-April/001859.ht ml) --Multipart=_Tue__20_Apr_2004_15_52_11_+0200_.=i41_C/ULStS__1 Content-Type: application/octet-stream; name="phpbb20040420.xml.snippet" Content-Disposition: attachment; filename="phpbb20040420.xml.snippet" Content-Transfer-Encoding: base64 PHZ1bG4gdmlkPSJjZmUxN2NhNi02ODU4LTQ4MDUtYmExZC1hNjBhNjFlYzliNGQiPgogIDx0b3Bp Yz5waHBCQiBpcCBzcG9vZmluZzwvdG9waWM+CiAgPGFmZmVjdHM+CiAgICA8cGFja2FnZT4KICAg ICAgPG5hbWU+cGhwYmI8L25hbWU+CiAgICAgIDxyYW5nZT48bGU+Mi4wLjhfMjwvbGU+PC9yYW5n ZT4KICAgIDwvcGFja2FnZT4KICA8L2FmZmVjdHM+CiAgPGRlc2NyaXB0aW9uPgogICAgPGJvZHkg eG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkveGh0bWwiPgogICAgICA8cD5Db21tb24ucGhw IHNjcmlwdCBhbHdheXMgdHJ1c3RzIHRoZSAoY2xpZW50IHN1cHBsaWVkKSBYLUZvcndhcmRlZC1G b3IgSFRUUCBoZWFkZXIuCiAgICAgIEEgcmVtb3RlIHVzZXIgY291bGQgZm9yZ2Ugc3VjaCBhbmQg aGVhZGVyLCBieXBhc3NpbmcgYW55IGlwIGFkZHJlc3MgYmFzZWQKICAgICAgcmVzdHJpY3Rpb25z LCBzdWNoIGFzIGJhbm5pbmcuPC9wPgogICAgPC9ib2R5PgogIDwvZGVzY3JpcHRpb24+CiAgPHJl ZmVyZW5jZXM+CiAgICA8bWxpc3QgbXNnaWQ9IjIwMDQwNDE5MDAwMTI5LjI4OTE3LnFtYWlsQHd3 dy5zZWN1cml0eWZvY3VzLmNvbSI+aHR0cDovL21hcmMudGhlYWltc2dyb3VwLmNvbS8/bD1idWd0 cmFxJmFtcDttPTEwODI0MTEyMjkwODQwOTwvbWxpc3Q+CiAgPC9yZWZlcmVuY2VzPgogIDxkYXRl cz4KICAgIDxkaXNjb3Zlcnk+MjAwNC0wNC0xODwvZGlzY292ZXJ5PgogICAgPGVudHJ5Lz4KICA8 L2RhdGVzPgo8L3Z1bG4+Cg== --Multipart=_Tue__20_Apr_2004_15_52_11_+0200_.=i41_C/ULStS__1-- From owner-freebsd-vuxml@FreeBSD.ORG Tue Apr 20 09:59:54 2004 Return-Path: Delivered-To: freebsd-vuxml@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D473716A4CE for ; Tue, 20 Apr 2004 09:59:54 -0700 (PDT) Received: from avgw.bjut.edu.cn (avgw.bjut.edu.cn [202.112.78.85]) by mx1.FreeBSD.org (Postfix) with SMTP id 1BACF43D2D for ; Tue, 20 Apr 2004 09:59:54 -0700 (PDT) (envelope-from liukang@bjpu.edu.cn) Received: from bjpu.edu.cn ([202.112.78.226]) by avgw.bjut.edu.cn (SAVSMTP 3.1.5.43) with SMTP id M2004042100595202097 for ; Wed, 21 Apr 2004 00:59:52 +0800 Received: (eyou send program); Wed, 21 Apr 2004 00:50:30 +0800 Message-ID: <282479830.17835@bjpu.edu.cn> X-EYOUMAIL-SMTPAUTH: liukang@bjpu.edu.cn Received: from unknown (HELO ssc) (unknown@61.149.183.223) by 202.112.78.226 with SMTP; Wed, 21 Apr 2004 00:50:30 +0800 From: "Kang Liu" To: "'Frankye - ML'" , Date: Wed, 21 Apr 2004 00:59:51 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 1 (Highest) X-MSMail-Priority: High X-Mailer: Microsoft Office Outlook, Build 11.0.5510 Importance: High X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 In-Reply-To: <282468679.17872@bjpu.edu.cn> Thread-Index: AcQm3aAqTvNfVAKsSKiMwdxIHadFhQAFsz4g Subject: RE: [vuxml entry] phpBB 2.0.8a ip spoofing X-BeenThere: freebsd-vuxml@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Documenting security issues in VuXML List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Apr 2004 16:59:55 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thank you very much for informing me of this problem. I've read it from bugtraq and tested it on my own computer. I think the IP spoof vulnerability can be confirmed. But as you said, this vulnerability only affect the boards which use IP based ACL, By default, there is no IP based ACL unless the board manager create it. I do not mean this problem can be ignored, Further more, there might be another problem which may lead to DoS. I'm trying to contact with the founder to confirm the potential vulnerability, After that I will send a PR as soon as I can. Regards, Liu Kang -----BEGIN PGP SIGNATURE----- Version: PGP 8.0.3 iQA/AwUBQIVWvNCgh1up3pM4EQIVAwCcDcRZ/hcnQ8RTAn5Lp5lSTAneQeoAoPw4 o4dR7Gh1fo36pP+hWSsVjf3w =Fmto -----END PGP SIGNATURE----- From owner-freebsd-vuxml@FreeBSD.ORG Tue Apr 20 14:26:12 2004 Return-Path: Delivered-To: freebsd-vuxml@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5E18916A4CE for ; Tue, 20 Apr 2004 14:26:12 -0700 (PDT) Received: from corbulon.video-collage.com (corbulon.video-collage.com [64.35.99.179]) by mx1.FreeBSD.org (Postfix) with ESMTP id A8F1C43D45 for ; Tue, 20 Apr 2004 14:26:11 -0700 (PDT) (envelope-from mi+mx@aldan.algebra.com) Received: from 250-217.customer.cloud9.net (195-11.customer.cloud9.net [168.100.195.11])i3KLQ9rp050354 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Tue, 20 Apr 2004 17:26:10 -0400 (EDT) (envelope-from mi+mx@aldan.algebra.com) Received: from localhost (mteterin@localhost [127.0.0.1]) i3KLPx7n006141 for ; Tue, 20 Apr 2004 17:26:00 -0400 (EDT) (envelope-from mi+mx@aldan.algebra.com) From: Mikhail Teterin Organization: Murex N.A. To: freebsd-vuxml@FreeBSD.org Date: Tue, 20 Apr 2004 17:25:59 -0400 User-Agent: KMail/1.6.1 MIME-Version: 1.0 Content-Disposition: inline X-UID: 2383 Content-Type: text/plain; charset="koi8-u" Content-Transfer-Encoding: 7bit Message-Id: <200404201725.59379@misha-mx.virtual-estates.net> X-Scanned-By: MIMEDefang 2.39 X-Mailman-Approved-At: Tue, 20 Apr 2004 14:29:30 -0700 Subject: KNewsTicker and the VuXML RSS feed X-BeenThere: freebsd-vuxml@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Documenting security issues in VuXML List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Apr 2004 21:26:12 -0000 Hello! Was anyone able to add the http://www.vuxml.org/freebsd/rss.xml to their KNewsTicker? Mine just says: "no articles available". Does KNT expect an earlier format of the RSS or is there something else I'm missing? Thanks! -mi From owner-freebsd-vuxml@FreeBSD.ORG Tue Apr 20 15:02:17 2004 Return-Path: Delivered-To: freebsd-vuxml@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 965A216A4CE for ; Tue, 20 Apr 2004 15:02:17 -0700 (PDT) Received: from mail.xensia.net (colo1.xensia.net [217.158.173.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id EBB2943D45 for ; Tue, 20 Apr 2004 15:02:16 -0700 (PDT) (envelope-from listsucker@ipv5.net) Received: from 81-174-2-199.f5.ngi.it ([81.174.2.199] helo=godzilla) by mail.xensia.net with asmtp (TLSv1:DES-CBC3-SHA:168) id 1BG3Jn-000GaB-00; Tue, 20 Apr 2004 23:02:15 +0100 Date: Wed, 21 Apr 2004 00:00:35 +0200 From: Frankye - ML To: freebsd-vuxml@freebsd.org Message-Id: <20040421000035.62afcd17@godzilla> In-Reply-To: <200404201725.59379@misha-mx.virtual-estates.net> References: <200404201725.59379@misha-mx.virtual-estates.net> X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.9) X-Face: =3I@Jvohf91[b8M]~KUNFaCt}pnTO2K^E#_P4`uCU]D"pHw List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Apr 2004 22:02:17 -0000 On Tue, 20 Apr 2004 17:25:59 -0400 Mikhail Teterin wrote: | Hello! | | Was anyone able to add the http://www.vuxml.org/freebsd/rss.xml | to their KNewsTicker? yes, works as a charm. I'm using the rss-reader extension for the phoe^Wfirebir^Wfirefox browser, the liferea rss reader parses it equally well (it's in the ports). | Mine just says: "no articles available". Does KNT expect an earlier | format of the RSS or is there something else I'm missing? Thanks! Some googling reveals that, as of 21:17 UTC on Apr 20, 2004, the kdenetwork module has "Initial, incomplete, RSS 2.0 support"[1], may that be the problem? Frankye [1] http://cia.navi.cx/stats/author/raabe/.message/876802 From owner-freebsd-vuxml@FreeBSD.ORG Tue Apr 20 18:32:42 2004 Return-Path: Delivered-To: freebsd-vuxml@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BB77416A4CE for ; Tue, 20 Apr 2004 18:32:42 -0700 (PDT) Received: from mail.xensia.net (colo1.xensia.net [217.158.173.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2B1BA43D53 for ; Tue, 20 Apr 2004 18:32:42 -0700 (PDT) (envelope-from listsucker@ipv5.net) Received: from 81-174-2-199.f5.ngi.it ([81.174.2.199] helo=godzilla) by mail.xensia.net with asmtp (TLSv1:DES-CBC3-SHA:168) id 1BG6bR-0006OD-00; Wed, 21 Apr 2004 02:32:41 +0100 Date: Wed, 21 Apr 2004 03:28:20 +0200 From: Frankye - ML To: freebsd-vuxml@freebsd.org Message-Id: <20040421032820.3854bd61@godzilla> In-Reply-To: <200404201725.59379@misha-mx.virtual-estates.net> References: <200404201725.59379@misha-mx.virtual-estates.net> X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.9) X-Face: =3I@Jvohf91[b8M]~KUNFaCt}pnTO2K^E#_P4`uCU]D"pHw List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Apr 2004 01:32:42 -0000 Hi everyone FWIW, I've tried to validate[1] the vuxml rss feed, and the result was that is not in RFC-822 format. According to the rfc[2] the correct value for UTC is... UT Frankye [1] http://feedvalidator.org/ http://rss.scripting.com/ [2] "Standard for the Format of ARPA Internet Text Messages" section 5 http://www.sendmail.org/rfc/0822.html#5 From owner-freebsd-vuxml@FreeBSD.ORG Wed Apr 21 04:52:28 2004 Return-Path: Delivered-To: freebsd-vuxml@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3303916A4CE for ; Wed, 21 Apr 2004 04:52:28 -0700 (PDT) Received: from gw.celabo.org (gw.celabo.org [208.42.49.153]) by mx1.FreeBSD.org (Postfix) with ESMTP id EE60143D49 for ; Wed, 21 Apr 2004 04:52:27 -0700 (PDT) (envelope-from nectar@celabo.org) Received: from localhost (localhost [127.0.0.1]) by gw.celabo.org (Postfix) with ESMTP id 834CB54846; Wed, 21 Apr 2004 06:52:27 -0500 (CDT) Received: from gw.celabo.org ([127.0.0.1]) by localhost (hellblazer.celabo.org [127.0.0.1]) (amavisd-new, port 10024) with SMTP id 84127-08; Wed, 21 Apr 2004 06:52:17 -0500 (CDT) Received: from lum.celabo.org (lum.celabo.org [10.0.1.107]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "lum.celabo.org", Issuer "celabo.org CA" (verified OK)) by gw.celabo.org (Postfix) with ESMTP id A3EEF5488F; Wed, 21 Apr 2004 06:51:25 -0500 (CDT) Received: by lum.celabo.org (Postfix, from userid 501) id B92B91D087C; Wed, 21 Apr 2004 05:38:13 -0500 (CDT) Date: Wed, 21 Apr 2004 05:38:13 -0500 From: "Jacques A. Vidrine" To: Frankye - ML Message-ID: <20040421103813.GB19492@lum.celabo.org> Mail-Followup-To: "Jacques A. Vidrine" , Frankye - ML , freebsd-vuxml@freebsd.org References: <200404201725.59379@misha-mx.virtual-estates.net> <20040421032820.3854bd61@godzilla> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20040421032820.3854bd61@godzilla> X-Url: http://www.celabo.org/ User-Agent: Mutt/1.5.6i cc: freebsd-vuxml@freebsd.org Subject: Re: the feed appears to be "invalid" (was: Re: KNewsTicker and the VuXML RSS feed) X-BeenThere: freebsd-vuxml@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Documenting security issues in VuXML List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Apr 2004 11:52:28 -0000 On Wed, Apr 21, 2004 at 03:28:20AM +0200, Frankye - ML wrote: > Hi everyone > > FWIW, I've tried to validate[1] the vuxml rss feed, and the result was > that is not in RFC-822 format. > According to the rfc[2] the correct value for UTC is... UT > > Frankye > > [1] http://feedvalidator.org/ > http://rss.scripting.com/ > [2] "Standard for the Format of ARPA Internet Text Messages" section 5 > http://www.sendmail.org/rfc/0822.html#5 Thanks, Frankye! I've corrected the timezone string to be `+0000' rather than `UTC'. Cheers, -- Jacques Vidrine / nectar@celabo.org / jvidrine@verio.net / nectar@freebsd.org