Do you keep your website in CVS and check it out to your server? If so, unless you have taken special security precautions, you are exposing information.

Disaster struck on Sunday. I was about to kick of a new project in Java, when I realized I didn't have enough space for JDK. No worries, I though, I'll just whack in another drive, mount that as /user and I'll be sweet.

Once I had the new drive in, and had copied /usr over to the new drive, I decided to make use of the old /usr partition as my PostgreSQL partition. Halfway through copying the data back, I got a read error on the new hard drive, and then the machine froze. NOT GOOD, I powered down, checked the cables, and restarted, hoping to recopy the information and all would be well.

Of course, I was wrong . . . I had left the room for a snack while the machine was booting, and when I came back, I was greeted with Invalid partition table.

Listen up folks, there is now a worm for Apache under FreeBSD which exploits the recently publicised security hole (Linux, Solaris and other OS's will presumably follow).

If you are running Apache on your system, you *MUST* update Apache to at least 1.3.26 (likewise for those of you daring enough to run Apache 2 in a production environment).

More information can be found at news.com

Multiple Cisco IOS® Software and CatOS software releases contain several independent but related vulnerabilities involving the unexpected creation and exposure of SNMP community strings. These vulnerabilities can be exploited to permit the unauthorized viewing or modification of affected devices.

Frustrated by having to show lusers how to set their FTP clients to passive mode to get through your natd gateway? The latest version of natd may be what you are looking for.

FreeBSD 3.X and earlier used MD5 as the standard password encryption, whereas by default 4.X and above uses DES. This article shows how to convert from one to the other (and back)