[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: rkhunter



Am Fr, den 15.10.2004 schrieb François Patte um 13:43:

> * Application version scan
>    - GnuPG 1.2.3                                              [ Vulnerable ]
>    - Apache 2.0.47                                            [ Vulnerable ]
>    - OpenSSL 0.9.7a                                           [ Vulnerable ]
>    - PHP 4.3.3                                                [ Vulnerable ]
>    - OpenSSH 3.6.1p2                                          [ Vulnerable ]
> 
> I'm running fc1 and tried to update these soft but yum answer is that everything
> in installed in the latest version...
> 
> Are fedoralegacy mirrors not up to date or rkhunter is wrong?

The mirrors are up to date. Besides the nonsense which rkhunter reports
- a tool which only checks version numbers is crap - there are updates:

http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/gnupg-1.2.3-2.i386.rpm
http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/httpd-2.0.51-1.4.legacy.i386.rpm
http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/openssl-0.9.7a-33.10.i386.rpm
http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/php-4.3.8-1.1.i386.rpm

You didn't even made it in the time when Redhat provided security
updates to keep your FC1 up2date. Think about it.

> François Patte

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13
Fedora GNU/Linux Core 2 (Tettnang) kernel 2.6.8-1.521smp 
Serendipity 18:02:29 up 1 day, 13:13, load average: 0.59, 0.45, 0.37 

Attachment: signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]