diff options
author | Juraj Kubelka <cesta> | 2005-01-11 20:43:51 +0000 |
---|---|---|
committer | Juraj Kubelka <cesta> | 2005-01-11 20:43:51 +0000 |
commit | b1f0b450d74bfc65abe3c8b241421bbfe607c26a (patch) | |
tree | 9a0f3063ecf4bafe3ece5b1e731e0a900b074996 /czech/security | |
parent | bc7e6d000cb5cae5ad511410cf2e860f79f88d81 (diff) |
Translated by Juraj Kubelka <Juraj.Kubelka at email.cz>.
CVS version numbers
czech/security/2005/dsa-634.wml: INITIAL -> 1.1
Diffstat (limited to 'czech/security')
-rw-r--r-- | czech/security/2005/dsa-634.wml | 48 |
1 files changed, 48 insertions, 0 deletions
diff --git a/czech/security/2005/dsa-634.wml b/czech/security/2005/dsa-634.wml new file mode 100644 index 00000000000..1f7901a9452 --- /dev/null +++ b/czech/security/2005/dsa-634.wml @@ -0,0 +1,48 @@ +#use wml::debian::translation-check translation="1.2" maintainer="Juraj Kubelka" +<define-tag description>slabá kontrola jména počítače a jména uživatele</define-tag> +<define-tag moreinfo> +<p>Patrice Fournier discovered a vulnerability in the authorisation +subsystem of hylafax, a flexible client/server fax system. A local or +remote user guessing the contents of the hosts.hfaxd database could +gain unauthorised access to the fax system.</p> + +<p>Some installations of hylafax may actually utilise the weak hostname +and username validation for authorized uses. For example, hosts.hfaxd +entries that may be common are</p> + +<pre> + 192.168.0 + username:uid:pass:adminpass + user@host +</pre> + +<p>After updating, these entries will need to be modified in order to +continue to function. Respectively, the correct entries should be</p> + +<pre> + 192.168.0.[0-9]+ + username@:uid:pass:adminpass + user@host +</pre> + +<p>Unless such matching of "username" with "otherusername" and "host" with +"hostname" is desired, the proper form of these entries should include +the delimiter and markers like this</p> + +<pre> + @192.168.0.[0-9]+$ + ^username@:uid:pass:adminpass + ^user@host$ +</pre> + +<p>Pro stable distribuci (woody) byl tento problém opraven +ve verzi 4.1.1-3.1.</p> + +<p>Pro unstable distribuci (sid) byl tento problém opraven +ve verzi 4.2.1-1.</p> + +<p>Doporučujeme vám aktualizovat vaše hylafax balíčky.</p> +</define-tag> + +# do not modify the following line +#include "$(ENGLISHDIR)/security/2005/dsa-634.data" |