Bugtraq mailing list archives
There are more loopholes in LPD
From: papowell () DICKORY SDSU EDU (Patrick Powell)
Date: Fri, 28 Mar 1997 14:29:59 -0800
There are a vast number of loopholes in the original LPD code, which is one of the reasons for the developement of LPRng. I have repeatedly warned about this code; rather than try to pick holes in the existing software, I rewrote the entire code with security in mind. Note that LPRng now supports Kerberos and PGP authentication, and can transfer encrypted job files. The stable release of LPRng is now LPRng-3.2.1 - this should work for most sites who are not pushing the envelope on throughput, etc. The software may be obtained from ftp://dickory.sdsu.edu/pub/LPRng (Main site) ftp://ftp.iona.ie/pub/plp/LPRng ftp://ftp.cs.umn.edu/pub/plp/LPRng ftp://gwynne.cs.ualberta.ca/pub/LPRng ftp://ftp.informatik.uni-hamburg.de/pub/os/unix/utils/plp/LPRng ftp://ftp.uni-paderborn.de/pub/unix/printer/plp/LPRng ftp://ftp.beckman.uiuc.edu/pub/plp/LPRng ftp://ftp.zod.wau.nl/pub/mirror/plp/LPRng ftp://ftp.lps.ens.fr/pub/software/plp/LPRng To join the LPRng/PLP mailing list, please send mail to lprng-request () iona ie with the word 'subscribe' in the BODY Patrick Powell
Current thread:
- buffer over in hp-ux 10.20 kernel C0WZ1LL4 () NETSPACE ORG (Mar 21)
- Re: New Sendmail bug Jeffrey Moyer (Mar 24)
- Re: New Sendmail bug Gonzo Granzeau (Mar 24)
- Re: New Sendmail bug Claude Scarpelli (Mar 25)
- Latest IE FIX from MS is a HOAX Aaron Spangler (Mar 25)
- Re: Latest IE FIX from MS is a HOAX Michael H. Warfield (Mar 25)
- ANNOUNCE : NTCrack v1.0 Jonathan Wilkins (Mar 27)
- There are more loopholes in LPD Patrick Powell (Mar 28)
- symlink bug in tin/rtin NetRunner (Mar 29)
- Re: symlink bug in tin/rtin Nelson Murilo (Mar 29)
- ANNOUNCE : NTCrack v2.0 Jonathan Wilkins (Mar 29)
- Re: New Sendmail bug Gonzo Granzeau (Mar 24)
- more sendmail poop *Hobbit* (Mar 25)
- Reported Sendmail 8.8.4 Exploit gshapiro () SENDMAIL ORG (Mar 25)
- minor vulnerability in ELM Dmitry E. Kim (Mar 26)
- FreeBSD-SA-97:02: Buffer overflow in lpd Aleph One (Mar 26)
- Re: New Sendmail bug Jeffrey Moyer (Mar 24)
- Cisco 2509/2511 Albert Siersema (Mar 24)
- Re: Cisco 2509/2511 Dan Brown (Mar 24)
- Re: Cisco 2509/2511 Erdinc KAYA (Mar 24)