home *** CD-ROM | disk | FTP | other *** search
/ Internet Info 1994 March / Internet Info CD-ROM (Walnut Creek) (March 1994).iso / security / doc / clippings / 01-Index.91 < prev    next >
Encoding:
Text File  |  1992-01-09  |  13.6 KB  |  417 lines
  1. File:        910821-01
  2. From:         jkp@cs.HUT.FI (Jyrki Kuoppala)
  3. Subject:     A security problem in SunOS 4.1.1 and earlier with in.comsat 
  4.         and /etc/utmp
  5. Source:     alt.security,alt.sys.sun,comp.unix.admin
  6. Message-ID:     <1991Aug21.152339.11436@nntp.hut.fi>
  7. Keywords:     SunOS 4.1*, BSD 4.3, comsat, /etc/utmp
  8.  
  9. File:        910822-01
  10. From:         wswietse@wsbs06.bs.win.tue.nl (Wietse Venema)
  11. Subject:     Re: A security problem in SunOS 4.1.1 and earlier with 
  12.         in.comsat and /etc/utmp
  13. Source:     alt.security
  14. Message-ID:     <2189@svin02.info.win.tue.nl>
  15. Keywords:     comsat, /etc/utmp
  16.  
  17. File:        910822-02
  18. From:         henk@cs.vu.nl (Henk Smit)
  19. Subject:     Netgroup troubles (was: Re: Unresponsiveness of .....)
  20. Source:     alt.security
  21. Message-ID:     <10728@star.cs.vu.nl>
  22. Keywords:     YP/NIS, domain, /etc/hosts.equiv, netgroup, 1024 char limit,
  23.         SunOS 4.0.3 -> 4.1.1
  24.  
  25. File:        910823-01
  26. From:         fitz@mml0.meche.rpi.edu (Brian Fitzgerald)
  27. Subject:     Re: Unresponsiveness: + in hosts.equiv and /etc dir
  28. Source:     alt.security
  29. Message-ID:     <0c3mqb@rpi.edu>
  30. Keywords:     Sun Patch 100103-06, file permissions
  31.  
  32. File:        910823-02
  33. From:         hogan@csl.sri.com (Emmett Hogan)
  34. Subject:     YASB (Yet Another Sun Bug)
  35. Source:     alt.security,alt.sys.sun
  36. Message-ID:     <HOGAN.91Aug23164201@cujo.csl.sri.com>
  37. Keywords:     SunOS 4.1.1, C2conv, /etc/passwd mode
  38.  
  39. File:        910827-01
  40. From:         brendan@cs.widener.edu (Brendan Kehoe)
  41. Subject:     Re: npasswd ftp address
  42. Source:     alt.security
  43. Message-ID:     <BRENDAN.91Aug27141712@laverne.cs.widener.edu>
  44. Keywords:     npasswd, ftp, archie
  45.  
  46. File:        910827-02
  47. From:         henk@cs.vu.nl (Henk Smit)
  48. Subject:     SUMMARY: dictionaries (anyone got some more ?)
  49. Source:     alt.security,alt.sources.d
  50. Message-ID:     <10750@star.cs.vu.nl>
  51. Keywords:     dictionary, french, german, italian, english
  52.  
  53. File:        910827-03
  54. From:         montjoy@thor.ece.uc.edu (Robert Montjoy)
  55. Subject:     C2 security and passwords
  56. Source:     alt.sys.sun
  57. Message-ID:     <1991Aug27.185853.5493@uceng.UC.EDU>
  58. Keywords:     passwd, c2conv, YP/NIS, SunOS
  59.  
  60. File:        910828-01
  61. From:         prl@iis.ethz.ch (Peter Lamb)
  62. Subject:     Re: C2 security and passwords
  63. Source:     alt.sys.sun
  64. Message-ID:     <prl.683338578@iis>
  65. Keywords:     passwd, c2conv, YP/NIS, SunOS
  66.  
  67. File:        910828-02
  68. From:         gtoal@castle.ed.ac.uk (G Toal)
  69. Subject:     Re: SUMMARY: dictionaries (anyone got some more ?)
  70. Source:     alt.security,alt.sources.d
  71. Message-ID:     <12658@castle.ed.ac.uk>
  72. Keywords:     dictionary, dutch
  73.  
  74. File:        910906-01
  75. From:         wietse@wzv.win.tue.nl (Wietse Venema)
  76. Subject:     Re: What breaks if /etc is not owned by bin?
  77. Source:     alt.sys.sun,alt.security
  78. Message-ID:     <2585@wzv.win.tue.nl>
  79. Keywords:     /etc ownership, bin vs. root, umask in /etc/rc, inetd.conf
  80.  
  81. File:        910909-01
  82. From:         spaf@cs.purdue.EDU (Gene Spafford)
  83. Subject:     Need dictionaries
  84. Source:     alt.security,sci.crypt
  85. Message-ID:     <SPAF.91Sep9095147@uther.cs.purdue.EDU>
  86. Keywords:     password screening, compressed dictionary, paper
  87.  
  88. File:        910909-02
  89. From:         archer@frmug.fr.mugnet.org (Vincent Archer)
  90. Subject:     Re: Need exhaustive list of French first names
  91. Source:     alt.security,resif.unix
  92. Message-ID:     <1991Sep9.204904.20329@frmug.fr.mugnet.org>
  93. Keywords:     french dictionary
  94.  
  95. File:        910718-01
  96. From:         tar@math.ksu.edu (Tim Ramsey)
  97. Subject:     Re: Why does YP let me read passwd.adjunct?
  98. Source:     alt.security
  99. Message-ID:     <k8afqjINN37s@maverick.ksu.ksu.edu>
  100. Keywords:     YP/NIS, SunOS, ypmatch, passwd.adjunct
  101.  
  102. File:        910729-01
  103. From:         [original header not available]
  104. Subject:     GAO Online Documents
  105. Source:     pacs-review
  106. Message-ID:     [not available]
  107. Keywords:     GAO reports, GAO/IMTEC-90-48, government security planning
  108.  
  109. File:        910801-01
  110. From:         tchrist@convex.COM (Tom Christiansen)
  111. Subject:     Re: do's and don'ts with setuid stuff??
  112. Source:     comp.unix.questions,alt.security
  113. Message-ID:     <1991Aug01.175624.21612@convex.com>
  114. Keywords:     setuid scripts
  115.  
  116. File:        910812-01
  117. From:         kean@talon.ucs.orst.edu (Kean Stump)
  118. Subject:     Re: What happened to Crack 3.1?
  119. Source:     alt.sources.d,alt.security
  120. Message-ID:     <1991Aug12.184912.29064@talon.ucs.orst.edu>
  121. Keywords:     password cracking, dictionaries, Dan Klein
  122.  
  123. File:        910812-02
  124. From:         kyle@UUNET.UU.NET
  125. Subject:     dictionaries   (was Re: What happened to Crack 3.1?)
  126. Source:     alt.security,alt.sources.d
  127. Message-ID:     <9108121918.AA11492@wendy-fate.UU.NET>
  128. Keywords:     password cracking, dictionaries, Dan Klein
  129.  
  130. File:        910814-01
  131. From:         geoff@mdms.moore.com (Geoff Loker)
  132. Subject:     Re: Crack, Cops, and The Intregity of My System
  133. Source:     alt.security
  134. Message-ID:     <1991Aug14.020147.7844@mdms.moore.com>
  135. Keywords:     passwd, not in dictionary, perl, shadow password
  136.  
  137. File:        910820-01
  138. From:         NIC@NIC.DDN.MIL (DDN Reference)
  139. Subject:     Security books
  140. Source:     comp.protocols.tcp-ip
  141. Message-ID:     <12711015419.39.NIC@NIC.DDN.MIL>
  142. Keywords:     books, UNIX, Nutshell/O'Reilly, Russell and Gangemi,
  143.         Garfinkel and Spafford
  144.  
  145. File:        910820-02
  146. From:         jkp@cs.HUT.FI (Jyrki Kuoppala)
  147. Subject:     Re: World-writable /etc/utmp (was something else)
  148. Source:     comp.unix.admin
  149. Message-ID:     <1991Aug20.022920.24954@nntp.hut.fi>
  150. Keywords:     comsat, utmp, syslog, wall/rwall, talk
  151.  
  152. File:        910826-01
  153. From:         al@ee.pitt.edu (A. Martello)
  154. Subject:     SUMMARY: ftpd -> syslog vs. chroot
  155. Source:     comp.unix.wizards
  156. Message-ID:     <168440@unix.cis.pitt.edu>
  157. Keywords:     ftpd, syslog, BSD, password protection, guest logins
  158.  
  159. File:        910910-01
  160. From:         mtp@ukc.ac.uk (Matt Paley)
  161. Subject:     v22i103:  bigb -  A security daemon for SCO Unix, Part01/01
  162. Source:     comp.sources.misc
  163. Message-ID:     <1991Sep10.170300.8109@sparky.IMD.Sterling.COM>
  164. Keywords:     SCO, repeated login failures
  165.  
  166. File:        910911-01
  167. From:         dank@blacks.jpl.nasa.gov (Dan Kegel)
  168. Subject:     Re: "Open Systems Security" document available
  169. Source:     alt.security,sci.crypt,comp.protocols.tcp-ip
  170. Message-ID:     <dank.684631689@blacks>
  171. Keywords:     ftp sites
  172.  
  173. File:        910911-02
  174. From:         per@erix.ericsson.se (Per Hedeland)
  175. Subject:     Re: Should /etc/utmp protection be changed?
  176. Source:     alt.security
  177. Message-ID:     <1991Sep11.115213.1453@eua.ericsson.se>
  178. Keywords:     utmp, xterm, xload, X11R5, dynamic libraries, SunOS
  179.  
  180. File:        910912-01
  181. From:         josevela@mtecv2.mty.itesm.mx (Jose A. Vela Avila)
  182. Subject:     Re: Password generator wanted
  183. Source:     alt.security
  184. Message-ID:     <4135@mtecv2.mty.itesm.mx>
  185. Keywords:     rndname, getpasswd
  186.  
  187. File:        910915-01
  188. From:         tar@math.ksu.edu (Tim Ramsey)
  189. Subject:     X11R5 xload security hole (was Re: Should /etc/utmp 
  190.         protection..)
  191. Source:     alt.security
  192. Message-ID:     <kd5icbINNk40@moe.ksu.ksu.edu>
  193. Keywords:     X11R5, xload, dynamic linking, trace
  194.  
  195. File:        910922-01
  196. From:         aem@aber.ac.uk (Alec David Muffett)
  197. Subject:     Crack - The password cracker v3.3c
  198. Source:     alt.security
  199. Message-ID:     <1991Sep22.051602.13910@sparky.imd.sterling.com>
  200. Keywords:     password cracking
  201.  
  202. File:        910919-01
  203. From:         jmason2@gpu.utcs.utoronto.ca (Jamie Mason)
  204. Subject:     Re: SUID shell scripts
  205. Source:     comp.unix.wizards
  206. Message-ID:     <1991Sep19.125455.20375@gpu.utcs.utoronto.ca>
  207. Keywords:     setuid, script
  208.  
  209. File:        911004-01
  210. From:         shipley@godzilla.tcs.com (Peter Shipley)
  211. Subject:     lofs security bug
  212. Source:     alt.security
  213. Message-ID:     <1991Oct4.214436.18563@tcsi.com>
  214. Keywords:     lofs, loopback filesystem, read-only, SunOS 4.1*
  215.  
  216. File:        911007-01
  217. From:         wswietse@wsbs06.bs.win.tue.nl (Wietse Venema)
  218. Subject:     Re: Securing system on network.
  219. Source:     comp.protocols.tcp-ip,comp.unix.admin
  220. Message-ID:     <2380@svin02.info.win.tue.nl>
  221. Keywords:     network, access control, monitoring, UDP, RPC, log_tcp
  222.  
  223. File:        911007-02
  224. From:         tencati@nssdca.gsfc.nasa.gov
  225. Subject:     CIAC bulletin C-1: New TFTPD server available for 
  226.         IBM RS6000 systems
  227. Source:     alt.security/CIAC
  228. Message-ID:     <7OCT199117542234@nssdca.gsfc.nasa.gov>
  229. Keywords:     tftpd, IBM RS6000, AIX, APAR ix22628
  230.  
  231. File:        911014-01
  232. From:         fitz@mml0.meche.rpi.edu (Brian Fitzgerald)
  233. Subject:     SUMMARY(pt 1/2): DO NOT depend on YP to hide passwd.adjunct
  234. Source:     alt.security
  235. Message-ID:     <7=ap=sb@rpi.edu>
  236. Keywords:     SunOS, YP/NIS, passwd.adjunct, shadow password
  237.  
  238. File:        911014-02
  239. From:         fitz@mml0.meche.rpi.edu (Brian Fitzgerald)
  240. Subject:     SUMMARY(pt 2/2): DO NOT depend on (OLD)YP to hide 
  241.         passwd.adjunct
  242. Source:     alt.security
  243. Message-ID:     <0=ap_xb@rpi.edu>
  244. Keywords:     SunOS, NIS+, YP/NIS paswd.adjunct
  245.  
  246. File:        911014-01
  247. From:         fitz@mml0.meche.rpi.edu (Brian Fitzgerald)
  248. Subject:     SUMMARY(pt 1/2): DO NOT depend on YP to hide passwd.adjunct
  249. Source:     alt.security
  250. Message-ID:     <7=ap=sb@rpi.edu>
  251. Keywords:     SunOS, YP/NIS, passwd.adjunct, shadow password
  252.  
  253. File:        911014-02
  254. From:         fitz@mml0.meche.rpi.edu (Brian Fitzgerald)
  255. Subject:     SUMMARY(pt 2/2): DO NOT depend on (OLD)YP to hide 
  256.         passwd.adjunct
  257. Source:     alt.security
  258. Message-ID:     <0=ap_xb@rpi.edu>
  259. Keywords:     SunOS, NIS+, YP/NIS paswd.adjunct
  260.  
  261. File:        911004-02
  262. From:         kuhn@swe.ncsl.nist.gov (Rick Kuhn)
  263. Subject:     Report on Assurance of High Integrity Software
  264. Source:     comp.software-eng,alt.security,comp.specification
  265. Message-ID:     <951@dove.nist.gov>
  266. Keywords:     NIST, report
  267.  
  268. File:        911010-01
  269. From:         ckd@eff.org (Christopher Davis)
  270. Subject:     Re: .rhosts -- disallowing
  271. Source:     alt.security
  272. Message-ID:     <CKD.91Oct10140718@eff.org>
  273. Keywords:     .rhosts, resolver, gethostbyaddr log_tcp
  274.  
  275. File:        911016-01
  276. From:         Seth Robertson <seth@ctr.columbia.edu>
  277. Subject:     TCP/IP Connection Monitoring
  278. Source:     cert-tools
  279. Message-ID:     <9110161431.AA18499@tictac.cert.sei.cmu.edu>
  280. Keywords:     network monitoring, common
  281.  
  282. File:        911017-01
  283. From:         ecd@cert.sei.cmu.edu (Edward DeHart)
  284. Subject:     AIX TFTP Daemon re-release
  285. Source:     alt.security
  286. Message-ID:     <858@cert.sei.cmu.edu>
  287. Keywords:     AIX, tftpd
  288.  
  289. File:        911023-01
  290. From:         "John R Ruckstuhl Jr" <ruck@alpha.ee.ufl.edu>
  291. Subject:     automounter security
  292. Source:     sun-managers
  293. Message-ID:     <9110231948.AA04537@alpha.ee.ufl.edu>
  294. Keywords:     automounter, SunOS, nosuid
  295.  
  296. File:        911029-01
  297. From:         ecd@cert.sei.cmu.edu (Edward DeHart)
  298. Subject:     Re: Cracked accounts
  299. Source:     comp.unix.admin
  300. Message-ID:     <860@cert.sei.cmu.edu>
  301. Keywords:     intruder, breakin, locking out
  302.  
  303. File:        911029-02
  304. From:         chip@eniac.seas.upenn.edu (Charles H. Buchholtz)
  305. Subject:     Re: Cracked accounts
  306. Source:     comp.unix.admin
  307. Message-ID:     <54618@netnews.upenn.edu>
  308. Keywords:     intruder, breakin, locking out, COPS
  309.  
  310. File:        911103-01
  311. From:         aem@aberystwyth.ac.uk (Alec Muffett)
  312. Subject:     v25i005:  crack - The Password Cracker, version 4.0a, Part01/05
  313. Source:     comp.sources.misc,alt.security
  314. Message-ID:     <csm-v25i005=crack.171116@sparky.IMD.Sterling.COM>
  315. Keywords:     password cracker, dictionary
  316.  
  317. File:        911103-01
  318. From:         aem@aberystwyth.ac.uk (Alec Muffett)
  319. Subject:     v25i005:  crack - The Password Cracker, version 4.0a, Part01/05
  320. Source:     comp.sources.misc,alt.security
  321. Message-ID:     <csm-v25i005=crack.171116@sparky.IMD.Sterling.COM>
  322. Keywords:     password cracker, dictionary
  323.  
  324. File:        911105-01
  325. From:         prl@iis.ethz.ch (Peter Lamb)
  326. Subject:     Re: NIS and password security
  327. Source:     alt.security,comp.unix.admin
  328. Message-ID:     <prl.689340261@iis>
  329. Keywords:     NIS, YP, passwords, sunrpc, portmapper, NFS, npasswd
  330.  
  331. File:        911115-01
  332. From:         brnstnd@kramden.acf.nyu.edu (Dan Bernstein)
  333. Subject:     New network security mailing list: rfc931-users
  334. Source:     comp.protocols.tcp-ip,alt.security
  335. Message-ID:     <24615.Nov1523.22.5691@kramden.acf.nyu.edu>
  336. Keywords:     rfc931, mailing list, network security, authentication server
  337.  
  338. File:        911115-02
  339. From:         scoggin@udel.edu (John K Scoggin)
  340. Subject:     Internet Firewalls
  341. Source:     alt.security
  342. Message-ID:     <70552@nigel.ee.udel.edu>
  343. Keywords:     firewall
  344.  
  345. File:        911118-01
  346. From:         "zmudzinski, thomas" <ZMUDZINSKIT@imo-uvax.dca.mil>
  347. Subject:     In-Re: Legal Status of digital signatures [Risks 12.61]
  348. Source:     email message from Zmudzinski, also RISKS digest xx.xx
  349. Message-ID:     <9111181449.AA19182@cert.sei.cmu.edu>
  350. Keywords:     EDI, electronic contract
  351.  
  352. File:        911126-01
  353. From:         plipp@iaik.tu-graz.ac.at (Peter Lipp)
  354. Subject:     Re: Fake sources?
  355. Source:     alt.security
  356. Message-ID:     <1991Nov26.080713.1571@news.tu-graz.ac.at>
  357. Keywords:     faking source addresses, Bellovin, TCP/IP
  358.  
  359. File:        911129-01
  360. From:         Heiner.Schorn@waldschrat.umu.se
  361. Subject:     Re: Fake sources?
  362. Source:     alt.security
  363. Message-ID:     <HEINER.SCHORN.91Nov29103202@phaedros.waldschrat.umu.se>
  364. Keywords:     faking source addresses, Bellovin, TCP/IP, Kent, critique
  365.  
  366. File:        911204-01
  367. From:         prl@iis.ethz.ch (Peter Lamb)
  368. Subject:     Re: NIS and password security
  369. Source:     alt.security,comp.unix.admin
  370. Message-ID:     <prl.691873839@iis>
  371. Keywords:     Sun, YP/NIS, ypserv, passwd.adjunct, IP forwarding, 
  372.         packet filtering, hiding domain name, passwd+, npasswd, 
  373.         Sun Shield, C2, Crack, dictionary, bugid 1036869
  374.  
  375. File:        911205-01
  376. From:         sgf@cfm.brown.edu (Sam Fulcomer)
  377. Subject:     Re: NIS and password security
  378. Source:     alt.security,comp.unix.admin
  379. Message-ID:     <95123@brunix.UUCP>
  380. Keywords:     YP/NIS, ypserv, portmapper
  381.  
  382. File:        911209-01
  383. From:         kuhn@swe.ncsl.nist.gov (Rick Kuhn)
  384. Subject:     Re: looking for info (and vendors) of "SmartCards"
  385. Source:     alt.security
  386. Message-ID:     <1061@dove.nist.gov>
  387. Keywords:     SmartCards, NIST publication
  388.  
  389. File:        911211-01
  390. From:         "(Alain Brossard EPFL-SIC/SII)" <brossard@sasun1.epfl.ch>
  391. Subject:     Information: NIS and password security
  392. Source:     sun-managers
  393. Message-ID:     <9112111028.AA00423@sasun1.epfl.ch>
  394. Keywords:     YP/NIS, ypserv, patch, Purdue
  395.  
  396. File:        911217-01
  397. From:         "(Alain Brossard EPFL-SIC/SII)" <brossard@sasun1.epfl.ch>
  398. Subject:     Information:(2) NIS and password security
  399. Source:     sun-managers
  400. Message-ID:     <9112171412.AA23124@sasun1.epfl.ch>
  401. Keywords:     YP/NIS, ypserv, ypxfrd, patch, Purdue, 911211-01
  402.  
  403. File:        911219-02
  404. From:         brossard@sic.epfl.ch (Alain Brossard EPFL-SIC/SII)
  405. Subject:     ypserv, unsecure
  406. Source:     alt.sys.sun,alt.security
  407. Message-ID:     <2196@sicsun.epfl.ch>
  408. Keywords:     YP/NIS, ypserv, ypxfrd, patch, Purdue, 911211-01, 911217-01
  409.  
  410. File:        911230-01
  411. From:         "John Markoff" <markoff@nyt.com>
  412. Subject:     Recent Novell Software Contains a Hidden Virus
  413. Source:     Risks Digest 12.72
  414. Message-ID:     <CMM.0.90.1.694136342.risks@chiron.csl.sri.com>
  415. Keywords:     Novell, virus, Stoned 111, Konami, Spacewrecked
  416.  
  417.