|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Solaris sadmind Buffer Overflow Vulnerability
Subject: Re: Solaris sadmind Buffer Overflow Vulnerability
From: Anthony D. Urso (anthonyu
KILLA.NET)
Date: Sun Dec 12 1999 - 13:52:37 CST
- Next message: Jake Luck: "64bit Sol7 on Ultra1 < 200mhz bug"
- Previous message: visi0n: "Re: Big problem on linux 2.0"
- In reply to: Brad Powell: "Re: Solaris sadmind Buffer Overflow Vulnerability"
- Reply: Anthony D. Urso: "Re: Solaris sadmind Buffer Overflow Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Fri, Dec 10, 1999 at 01:12:10PM -0800, Brad Powell wrote:
> You missed a couple other things that will help. Tcp_wrappers on
> the service,
Since sadmind communicates via udp, tcp_wrappers' tcpd will provide
no help. I recommend xinetd (http://www.synack.net/xinetd/) which will
"wrap" all services designed to run out of inetd, including rpc/udp
services.
It is able to link with libwrap and use hosts.allow/hosts.deny, or
even better, it has its own acl format for limiting connections to those
from more trusted hosts.
-- AuPGP Key ID: 0x385B44CB Fingerprint: 9E9E B116 DB2C D734 C090 E72F 43A0 95C4 385B 44CB lottery(n): A tax on people who are bad at math.
- Next message: Jake Luck: "64bit Sol7 on Ultra1 < 200mhz bug"
- Previous message: visi0n: "Re: Big problem on linux 2.0"
- In reply to: Brad Powell: "Re: Solaris sadmind Buffer Overflow Vulnerability"
- Reply: Anthony D. Urso: "Re: Solaris sadmind Buffer Overflow Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Mon Dec 13 1999 - 16:21:04 CST