Hey, a new vulnerability in Diffie-Hellman, informally referred to as ‘logjam’, has been published on weakdh.org. Debian Wheezy is running Apache v2.2.22 which does not support setting up the recommended individual DH key with a miminum size of 2048 using the “SSLOpenSSLConfCmd DHParameters [pemfile]” setting. That’s why I’ve manually recompiled…
Debian lenny CVE-2015-0235 (glibc) patch
Hi, you may have noticed CVE-2015-0235 as Glibc (GHOST) security issue these days. Debian Wheezy (and Squeeze LTS) as well as other Linux distributions have provided security upgrades already; but maybe in case you have to patch an old Debian Lenny distribution you might find it useful, that I’ve fixed…
Debian apache2_mpm_peruser php5 patches
Hey, due to varius security advisories I’ve recompiled upgraded Debian Wheezy i386 and amd64 php5_5.4.35-0+deb7u2 packages for apache2_mpm_peruser: apache2-mpm-peruser debian wheezy packages for i386 and amd64 architecture -Flo Average Rating 1.5 out of 5 stars. 4 votes.My Rating:
Debian lenny shellshock (bash) patches
Hi, keeping the bash safe seems to have become like running the gauntlet. I’ve updated once more my upgraded Debian Lenny bash packages to keep care of the following CVEs + shellshocker: bash (3.2-17) unstable; urgency=high * fixing CVE-2014-6271, CVE-2014-6277, CVE-2014-6278, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187 and exploit 3 on http://shellshocker.net/ *…
Debian lenny CVE-2014-7169 (bash) patch
Hi, an additional remotely exploitable vulnerability has been discovered by Hanno Boeck in bash and it is also unpleasant. The vulnerability has the CVE identifier CVE-2014-7169 and has been given the name Shellshock #2 by some folks out here. Debian Wheezy (and Squeeze LTS) as well as other Linux distributions have…
Ubiquiti skynet
Hey, sorry this post is probably already outdated for the majority of you guys out there; but maybe for some good (performance or stability) reason you might prefer to run some Ubiquiti equipment with the rock stable old v3.6.1, v5.2.1 or v5.3 firmware. Based on the UBNT SDK published during…
Debian lenny CVE-2014-6271 (bash) patch
Hi, a remotely exploitable vulnerability has been discovered by Stephane Chazelas in bash and it is unpleasant. The vulnerability has the CVE identifier CVE-2014-6271 and has been given the name Shellshock by some folks out here. Debian Wheezy (and Squeeze LTS) as well as other Linux distributions have provided security…
Windows XP Updates
Wanna keep your Windows XP system up-to-date with updates and security patches dedicated for the binary compatible Windows Embedded POSReady 2009 until maybe up to April 2019? Just add this key to your Windows XP (Home or Professional) registry: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINESYSTEMWPAPosReady] “Installed”=dword:00000001 Warning: Windows XP is…
SSH via TOR
In case your outbound SSH encrypted connections are blocked or intercepted for whatever reason, you may use the following command to connect via a local or remote TOR relay (Socks) proxy: ssh -o ProxyCommand=’nc -x my-proxy-server:my-proxy-port %h %p’ target-ssh-server.example.com Example: SSH connect to IP address 1.2.3.4 via local TOR proxy:…
