Projects / Alt+Connect / Releases / Major security fixes

RSS All releases tagged Major security fixes

Release Notes: This is principally the same security fix as for the stable version, but a number of useful options are now passed as default to pppd, where they're supported, and you can control the speaker and blind-dialing from connectd's config file without hacking the modem chat script.

  •  15 Dec 2001 10:24

Release Notes: A fix has been added which stops connectd from trusting all machines. Without this fix, it's possible to login to connectd as any user. Connection control lists, bill logging, quotas, etc. are all circumvented, but the wider machine shouldn't be compromised. This exploit needs an identd server which doesn't ship as standard with Windows, so you are most at risk if your network has Linux machines under the control of other users; it also needs tcpd support compiled in, so to be vulnerable "[TCPD]" must be in the string returned by "connect ver".

Screenshot

Project Spotlight

PHP Email address validation component

PHP class to verify if a e-mail address is valid.

Screenshot

Project Spotlight

PCBook

A reservation system for PCs.