Date: Sat, 27 Jun 1998 22:42:40 -0400 (EDT) From: Mike <mike@seidata.com> To: Taavi Talvik <taavi@uninet.ee> Cc: Greg Lehey <grog@lemis.com>, Jason Godsey <godsey@godsey.net>, isp@FreeBSD.ORG, current@FreeBSD.ORG Subject: Re: qpopper compromise (was: !!! FLASH TRAFFIC !!! QPOPPER REMOTE ROOT EXPLOIT (fwd)) Message-ID: <Pine.BSF.3.96.980627222814.12229A-100000@ns1.seidata.com> In-Reply-To: <Pine.BSF.3.95.980628033821.5160A-100000@ns.uninet.ee>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 28 Jun 1998, Taavi Talvik wrote: Well... I suppose this is applicable for any isp and I'm running current... so I'm posting to all original addrs. *ducks behind chair* To think that I'd almost deleted the initial '!!!...!!!' post as well thinking it was spam. ;) > Only thing, popper built with latest patches (incl. patch-ag) dies with > SIGSEGV on my box immediately when accessed.. Ditto... > This is on current approximately one month old. And ditto. No matter how many times you reboot/respawn it still dies with sig 11. Reverting to the old version restores functionality. This is with 3.0-980520-SNAP and the /usr/ports/mail/popper package from about 7-8pm today (27th). I had to dig for it (amongst a few thousand 'popper existed on sig 11' lines)... but I did also find the following: Jun 27 19:28:58 ns1 /usr/local/libexec/popper[5622]: Unable to obtain socket and address of client, err = 38 *shrug* -mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980627222814.12229A-100000>