Posts Tagged ‘update’

« Older Entries

DSA-1617 refpolicy - incompatible policy

Saturday, July 26th, 2008

In DSA-1603-1, Debian released an update to the BIND 9 domain name
server, which introduced UDP source port randomization to mitigate
the threat of DNS cache poisoning attacks (identified by the Common
Vulnerabilities and Exposures project as CVE-2008-1447).
The fix, while correct, was incompatible with the version of SELinux Reference
Policy shipped with Debian Etch, which did not permit a process running in the
named_t domain to bind sockets to UDP ports other than the standard ‘domain’
port (53).
The incompatibility affects both the ‘targeted’ and ’strict’ policy packages
supplied by this version of refpolicy.

Read the full story: DSA-1617 refpolicy - incompatible policy: http://www.debian.org/security/2008/dsa-1617

Tags: , , , , ,
Posted in Debian Security | No Comments »

Free Dope Wars Booster Script - v0.4

Friday, July 11th, 2008

An update to the massively popular Dope Wars script - Booster

Q. What is Booster?
A. Booster is an easy to install extension for the well known cross-platform browser Firefox

Booster Features include :-

  • automatic buying/selling of ST8 Drop(use your time to spend money, instead of making it)
  • custom buy/sell limits(you set the profit)
  • custom timer settings(make the tool undetectable and seem human-like)

(more…)

Tags: , ,
Posted in Firefox Extensions | No Comments »

DSA-1576 openssh - predictable random number generator

Wednesday, May 14th, 2008

The recently announced vulnerability in Debian’s openssl package
( DSA-1571-1, CVE-2008-0166) indirectly affects OpenSSH. As a result,
all user and host keys generated using broken versions of the openssl
package must be considered untrustworthy, even after the openssl update
has been applied.

Read the full story: DSA-1576 openssh - predictable random number generator: http://www.debian.org/security/2008/dsa-1576

Tags: , , ,
Posted in Debian Security | No Comments »

« Older Entries