Bugtraq mailing list archives

Re: Security Hole in Axent ESM

From: conorich () US IBM COM (Douglas G Conorich)
Date: Thu, 27 Aug 1998 16:25:41 -0400


Just for grins, I talked to AXENT today and asked about the file check using
CRC's to see what they would tell me.  They told me that ever since ESM release
4.5 (May 1998), the product has offered a choice of either CRC or MD5
(cryptographic signature).  Intruder Alert's file watch capability also allows
a choice of CRC or MD5.

Douglas G. Conorich                                       IBM
Senior Internet Security Analyst                   P.O. Box 595
Internet Emergency Response Service   Clearfield, UT 84015 U.S.A.

Current thread:

Re: Security Hole in Axent ESM Larry Bassett (Aug 27)
- <Possible follow-ups>
- Re: Security Hole in Axent ESM Dr. Mudge (Aug 27)
- Re: Security Hole in Axent ESM Steve McBride (Aug 27)
- Re: Security Hole in Axent ESM Douglas G Conorich (Aug 27)
  - Re: Security Hole in Axent ESM Mark (Aug 28)
    - Re: Security Hole in Axent ESM Bert Driehuis (Aug 29)
- Re: Security Hole in Axent ESM Douglas G Conorich (Aug 27)
- Re: Security Hole in Axent ESM Steve Jackson (Aug 28)
  - Re: Security Hole in Axent ESM Paul Ashton (Aug 28)
- Re: Security Hole in Axent ESM Andy Church (Aug 29)
- Re: Security Hole in Axent ESM reddog (Aug 30)
- Re: Security Hole in Axent ESM Andy Church (Aug 31)
  - Re: Security Hole in Axent ESM Caskey L. Dickson (Aug 31)
  - ToolTalk Advisory Security Research Labs (Aug 31)