Accepted tiger 2.2.4-22 (i386 source)
-----BEGIN PGP SIGNED MESSAGE-----
Format: 1.7
Date: Wed, 27 Mar 2002 14:31:14 +0100
Source: tiger
Binary: tiger
Architecture: source i386
Version: 2.2.4-22
Distribution: unstable
Urgency: medium
Maintainer: Javier Fernandez-Sanguino Pen~a <jfs@computer.org>
Changed-By: Javier Fernandez-Sanguino Pen~a <jfs@computer.org>
Description:
tiger - Report system security vulnerabilities
Closes: 123891 126635 134085 138855 139221 139667 139669
Changes:
tiger (2.2.4-22) unstable; urgency=medium
.
* This is the "Yes, I was on vacation fixing bugs release (I)"
* Applied patch Marcel that fixes some long-standing issues, did not change
BASEDIR to basedir since it should work that way but *did* change typo
which made diff's against previous run not to work (Closes: #139221)
* Fixed Linux/2/gen_export_sets tpo (Closes: #139667)
* Modified Linux/2/config so that findcmd() looks first for binaries generated
by Tiger, including realpath (Closes: #139669)
* Modified deb_checkmd5sum to "understand" locale.nopurge configuration.
Currently experimental, but seems to work fine. Admins that fixed this
through templates will, however, have to remake them (Closes: #123891)
* Since realpath's Linux does not work as tiger's realpath -d, removed it
from the Recommends: (use tiger's instead)
* Added -u option in gen_listeningprocs (UDP sockets are not shown if using
netstat, this was an unreported bug)
* Added warning to the tigerrc regarding user's Tiger_ListeningProc (will
not work if using NETSTAT and not LSOF)
* Added the Tiger_Check_EVERYLISTENING option which will report if a
service is listening on *all* interfaces, default is Y, if set to 'N'
only processes run by users different from Tiger_ListeningProcs will be
reported. Changed gen_listeningprocs for this to work (Closes: #138855)
* Changed the name of gen_listeningprocs to check_listeningprocs (more
proper and consistent)
* Provided some more documentation in the tiger.8 manpage detailing which
modules are available
* Check_listeningprocs has been modified to allow it to not warn on
processes when using the Tiger_Listening_ValidProc variable in
/etc/tigerrc this allows admins to remove processes which can dynamically
change TCP/IP port (Closes: #134085)
* Changed Tiger_Listening_Proc to Tiger_Listening_ValidUser (more precise).
WARNING: Postinst will not change this from the config file!
* The changes introduced in check_listeningprocs as well as the
check-against-template behavior configuration will (hopefully) reduce greatly
false positives if properly configured (Closes: #126635)
* Set Tiger_Check_CRACK to 'N' by default and removed cron job since this
feature does not work. Added 'john' Recommends: since the Debian package
does provide that feature by itself.
Files:
0b7710e5e23bdc37b01df5a18894e054 668 admin optional tiger_2.2.4-22.dsc
49dc9dfde4c886c934acabe65f323425 74123 admin optional tiger_2.2.4-22.diff.gz
69210041fc0e6abf444d70fce5a7676f 182828 admin optional tiger_2.2.4-22_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
iQCVAwUBPKg0CPtEPvakNq0lAQFJNAP9EqAddIuFwi5iSJFmHbnBhmrBNhiUAtth
SAYJ63zx5SjnTCqi3uJSgbws8iVMaDgwEbhL6WzwWSqOP8G2BS9N8Ghb3GD6Jm9e
rzirtB3ChsiczS7tISm52oZObzdVJGuL7VP9KiBiA12NdobfaMIGOZHsaz1irTxk
4bPdZl1YcqI=
=SQ6/
-----END PGP SIGNATURE-----
Accepted:
tiger_2.2.4-22.diff.gz
to pool/main/t/tiger/tiger_2.2.4-22.diff.gz
tiger_2.2.4-22.dsc
to pool/main/t/tiger/tiger_2.2.4-22.dsc
tiger_2.2.4-22_i386.deb
to pool/main/t/tiger/tiger_2.2.4-22_i386.deb
--
To UNSUBSCRIBE, email to debian-devel-changes-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: