Marc Barrot: gnu-linux

Sendmail Security Alert

Mon, 03 Mar 2003 18:13:00 GMT

Received another security notice from RedHat this afternoon:

During a code audit of Sendmail by ISS, a critical vulnerability was uncovered that affects unpatched versions of Sendmail prior to version 8.12.8. A remote attacker can send a carefully crafted email message which, when processed by sendmail, causes arbitrary code to be executed as root.

[read more]

Vulnerability In Redhat's glibc

Fri, 04 Oct 2002 17:38:04 GMT

From the latest RHN alert: ... A read buffer overflow vulnerability exists in the glibc resolver code in versions of glibc up to and including 2.2.5. The vulnerability is triggered by DNS packets larger than 1024 bytes and can cause applications to crash. [read more]

Securing Linux: Why It's Worthwhile and Achievable

Fri, 04 Oct 2002 16:17:22 GMT

Michael Bauer, author of Building Secure Servers with Linux, explains some of the reasons why it's both possible and worthwhile to secure Linux for use as an Internet server platform. [an O'Reilly Network Article]

RedHat 8.0 Is Out

Mon, 30 Sep 2002 22:23:01 GMT

Eugenia Loli-Queru reviews the latest distribution in OS News. [via SlashDot]

A Visit To Amanda

Wed, 25 Sep 2002 19:35:24 GMT

Æleen Frisch: Top Five Open Source Packages for System Administrators - Number 5 [in O'Reilly Network's Newsletter].

Site Logging And Monitoring

Fri, 06 Sep 2002 17:22:34 GMT

Thanks to Jon Udell for reminding me what "slam" stands for :-) [read more]

August Linux Magazine Issue

Tue, 30 Jul 2002 19:54:24 GMT

I found the August issue of Linux Magazine in my mailbox this morning, and read it over lunch. Interesting interview of Scott McNealy (dubbed as the Capitalist in the Penguin Suit) by Bob McMillan. I usually don't care for this kind of article, but this time, I did learn a few things from Scott McNealy's views towards Java, Open Source, Linux, and (of course) Microsoft. Besides, he has a sense of humor. [read more]

Monitoring Security

Tue, 11 Jun 2002 16:02:38 GMT

Here our some ground rules when using SNMP and client server tools to monitor systems and network devices [read more]

Wrap Up on Yesterdays's Tutorial

Tue, 11 Jun 2002 15:48:38 GMT

My laptop's disk let me down yesterday. It's now full of bad blocks. This prevented me from posting for most of yesterday's afternoon. I've managed to keep current bad blocks in check, and restored a working system partition, but this may not hold for long. Once they have gained a large enough beachhead, it gets difficult to repel a bad blocks invasion. [read more]

SNMP Basic Tools

Tue, 11 Jun 2002 02:13:35 GMT

John covered a number of basic SNMP tools this morning. The most impressive seems to be Net-SNMP [read more]

Host Resources MIB

Mon, 10 Jun 2002 16:26:22 GMT

RFC 1514 defines a Management Information Base for host systems.

Live From Usenix Tutorial Sessions

Mon, 10 Jun 2002 18:56:09 GMT

The wireless connection just came up in our meeting room. I'm currently attending John Sellens' System And Network Monitoring tutorial [read more]

Usenix Conference Starts Monday

Fri, 07 Jun 2002 15:42:06 GMT

The Usenix Annual Technical Conference starts next week in Monterey. This is probably the World's geekiest venue. I'll be there, wearing my sysadmin cap the whole week. [read more]

PHP Security Revisited

Thu, 18 Apr 2002 15:14:10 GMT

Catching up on Martin Heller's PHP Revisited column on Byte.com, I've just realised I am responsible for a site with public Internet exposure and PHP 4.1.1 for Windows [read more]

Mozilla is coming...

Fri, 15 Mar 2002 19:08:41 GMT

Everybody and his cousin's weblog is talking about it. [read more]

Race condition in GNU FileUtils

Tue, 12 Mar 2002 18:04:30 GMT

Race condition in various utilities from fileutils GNU package may cause root user to delete the whole filesystem. [read more]

Updated RedHat 7.2 rpms

Tue, 12 Mar 2002 00:25:06 GMT

A number of important updates to RedHat Linux 7.2 were released between last Friday and today: binutils vs. [read more]

Fri, 08 Mar 2002 14:42:45 GMT

Linux commands at your command

O'Reilly Network: Linux Command Directory [Linux Today]

I'm already using Google more than [read more]

Thu, 07 Mar 2002 21:05:11 GMT

Network sniffers are always bad news

SwitchSniff. [read more]