Bugs enabled in ubottu in #ubuntu
Elián Hanisch
lambdae2 at gmail.com
Wed Feb 16 11:30:14 UTC 2011
On Miércoles 16 Febrero 2011 07:17:31 David Jones escribió:
> On 13/02/2011 12:36, Melissa Draper wrote:
> > Greetings,
> >
> > The IRCC has decided to enable bug information via ubottu in #ubuntu.
> >
> > While we are monitoring the impact of this change and will review the
> > decision at the next meeting, we ask that any issues noted be brought
> > to our attention.
> >
> > Thanks,
> > The IRC Council.
>
> Hi All,
>
> Just as a heads up, earlier today (16/2/11), Ubottu responded to a query
> which included an RFC reference. My only reason for querying initially
> was that the response had been truncated due to IRC limitations, however
> as you've mentioned that any issues should be brought to your attention
> I've passed this on to the list.
>
> A copy of the log from
> http://irclogs.ubuntu.com/2011/02/16/%23ubuntu.txt is below for further
> information.
>
> [09:04]<Firefishe> What does this mean: server does not support RFC
> 5746, see CVE-2009-3555
>
> [09:04]<ubottu> The TLS protocol, and the SSL protocol 3.0 and possibly
> earlier, as used in Microsoft Internet Information Services (IIS) 7.0,
> mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before
> 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS)
> 3.12.4 and earlier, multiple Cisco products, and other products, does not
> properly associate renegotiation handshakes with an existing connection,
> which allows man-in-the-middle attackers t
>
> Regards
>
> Dave Jones
This is done by the CVE snarfer (not the one that prints bugs), and looks like
it can't be disabled without touching the code, since there's no config for
it.
--
~ m4v
https://launchpad.net/~symphony
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-irc/attachments/20110216/9e97d170/attachment.html>
More information about the Ubuntu-irc
mailing list