Date: Thu, 4 Dec 2003 15:23:03 +0200 From: Peter Pentchev <roam@ringlet.net> To: Lukas Ertl <l.ertl@univie.ac.at> Cc: hubs@freebsd.org Subject: Re: HEADS UP! Watch out for security on your machines and exploits! Message-ID: <20031204132303.GB347@straylight.m.ringlet.net> In-Reply-To: <20031204133520.A748@korben.in.tern> References: <20031203234849.7238C2A7EA@canning.wemm.org> <20031204133520.A748@korben.in.tern>
next in thread | previous in thread | raw e-mail | index | archive | help
--5I6of5zJg18YgZEa Content-Type: text/plain; charset=windows-1251 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Dec 04, 2003 at 01:37:20PM +0100, Lukas Ertl wrote: > On Wed, 3 Dec 2003, Peter Wemm wrote: >=20 > > Please take EXTRA care to watch your mirrors for 'funny stuff' and make= damn > > sure that you're fully up todate with patches. > > > > Being a cvsup*/ftp*/etc mirror means that you're going to be scanned and > > probed. Especially now. >=20 > (I'm cc'ing ports@ on this.) >=20 > Since the gentoo hack was obviously made through a vunerable version of > rsync, I ask if it's possible to update the rsync port to the new version. I sent a patch to update rsync to 2.5.7 to Oliver Eikemeier, the port maintainer, earlier today. G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@sbnd.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 I am the thought you are now thinking. --5I6of5zJg18YgZEa Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/zzU37Ri2jRYZRVMRAoi6AJ9nnTz2Ri0AjgOfXmWfYlpcrXA2FACgsouT /Ik2OkO5yB8ZOC6Tl0le2Gw= =oQjq -----END PGP SIGNATURE----- --5I6of5zJg18YgZEa--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031204132303.GB347>