--Message-Boundary-8813
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Content-description: Mail message body
On 21 Jul 2003 at 6:40, Karl DeBisschop wrote:
> On Mon, 2003-07-21 at 00:59, Ethan Galstad wrote:
> > Anyone have any comments on this? NRPE doesn't use much other than
> > standard socket functions (listen(), accept(), send(), etc.), so I'm
> > not sure what I could do other than tell people to run NRPE under
> > inetd/xinetd...
>
> I don't know if people can help without having a copy of the advisory.
>
> It might be useful to pass on the xinetd idea as a short-term workaround
> while you/we look further into it. But if you present that as a final
> solution, it's might to be taken as refusal to take bugs seriously.
>
Hehe - I knew I shouldn't have been trying to send coherent email out
at midnight. I've attached the originally ommitted advisory. From
what I've seen looking around the net, protecting against SYN attacks
usually involves mods to one's router or enabling SYN cookies in the
kernel. I could be wrong though. Anyone have any thoughts or
comments on this?
Ethan Galstad,
Nagios Developer
---
Email: [email protected]
Website: http://www.nagios.org
--Message-Boundary-8813
Content-type: text/plain; charset=US-ASCII
Content-disposition: inline
Content-description: Attachment information.
The following section of this message contains a file attachment
prepared for transmission using the Internet MIME message format.
If you are using Pegasus Mail, or any other MIME-compliant system,
you should be able to save it or view it from within your mailer.
If you cannot, please ask your system administrator for assistance.
---- File information -----------
File: Qualys Security Advisory QSA-2003-07-17.txt
Date: 21 Jul 2003, 17:51
Size: 2057 bytes.
Type: Text
--Message-Boundary-8813
Content-type: Application/Octet-stream; name="Qualys Security Advisory QSA-2003-07-17.txt"; type=Text
Content-disposition: attachment; filename="Qualys Security Advisory QSA-2003-07-17.txt"
Content-transfer-encoding: BASE64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...[email truncated]...
This post was automatically imported from historical nagios-devel mailing list archives
Original poster: [email protected]