[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] New Qube2 Security Patch: Vacation Mail Exploit 3.0.1

Subject: Re: [cobalt-security] New Qube2 Security Patch: Vacation Mail Exploit 3.0.1
From: "Gerald Waugh" <gerald@xxxxxxxxx>
Date: Sun, 22 Oct 2000 23:10:39 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

----- Original Message -----
From: "James Hoaggs" <james_hoaggs@xxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Sunday, October 22, 2000 4:57 PM
Subject: Re: [cobalt-security] New Qube2 Security Patch: Vacation Mail Exploit
3.0.1


> > > BTW, has anyone installed the OpenSSH Server Release 2.1.1p2 and
> > 2.1.1p1
> > > packages from http://pkg.nl.cobalt.com/ ?
> > > There are 2 packages instructed for install for the Qubes and Raqs,
> > Server(p2)
> > > and Client(p1), though SSH Server works if you just install the Server(p2)
> > > package.  What is the reason to install the client package on the
> > Server
> > > described as "Optionally you can extend this software with the available
> > > client pkg"? Does it mean that you can telnet in and then use a SSH
> > client
> > > on the Server to SSH to another machine?
> > > Thanks for the clarification,
> > > --
> > EXACTLY!!!
> Ok, so what I gather you are saying is that we don't have to install
> the client package(p1) on the Server if we already have f-secure's client?

Do you use f-secure on your workstation or the RaQ? I have no experience
with f-secure on the RaQ, but your statement sounds correct.

>  I guess my main question is that client packages go on the client (Win,
> Mac, or other client box) and the Server package goes on the server (Qube
> or Raq);

Yes, the client package should go on your workstation, I currently use OpenSSH
on my
Linux machines and TeraTerm on windows. So I don't have any experience with the
cobalt package on the client.

any specifics on the functionality for the client package (p1)
> on the Server?

I use the client package on the server sparingly, it's not often that I need to
use secure shell
when I am in the RaQ's environment.

> Thanks again in advance,
> --
> James Hoaggs
> james_hoaggs@xxxxxxxxxx - email
> (408) 380-2271 x8024 - voicemail/fax
>
> __________________________________________________
> FREE voicemail, email, and fax...all in one place.
> Sign Up Now! http://www.onebox.com
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>

References:
- Re: [cobalt-security] New Qube2 Security Patch: Vacation Mail Exploit 3.0.1
  - From: James Hoaggs

Prev by Date: Re: [cobalt-security] New Qube2 Security Patch: Vacation Mail Exploit 3.0.1
Next by Date: [cobalt-security] [RaQ3i] bash/badsh difference?
Previous by thread: Re: [cobalt-security] New Qube2 Security Patch: Vacation Mail Exploit 3.0.1
Next by thread: [cobalt-security] [RaQ3i] bash/badsh difference?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index