[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
- Subject: RE: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
- From: "Sean Ward" <planxty@xxxxxxxx>
- Date: Thu, 15 Aug 2002 14:48:39 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Can someone verify this and post specific instructions on how to disable
the scan detection?
Thanks,
Sean
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Gerald Waugh
Sent: Thursday, August 15, 2002 2:00 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Security Hardening Update 2.0.1 MAJOR
FLAW!!!!!! ACTION REQUIRED!
On Thu, 15 Aug 2002, Zeffie wrote:
> Hi Folks,
>
> The recent RaQ4-en-Security-2.0.1-SHP.pkg allows a remote attacker
to
> cause system crashes. To avoid this I suggest you disable the Scan
> Detection in Parameters by selecting "do nothing". Else you might not
be
> happy...
>
> I have written a small script that can reproduce the problem
consistently.
>
> I don't seem to be able to find any way to contact Sun cobalt about
this.
>
> what to do? maybe a whitepaper advert??
Yes, a "whitepaper advert" is definitely in order,
explain how this problem occurs.
--
Gerald
http://frontstreetnetworks.com | Website Hosts & SOHO Networks
229 Front Street, Ste.#C, New Haven, CT. 06513 United States
voice +1 203-785-0699 | fax +1 203-785-1787
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security