Send dhcp-users mailing list submissions to
[email protected]
Advertising
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.isc.org/mailman/listinfo/dhcp-users
or, via email, send a message with subject or body 'help' to
[email protected]
You can reach the person managing the list at
[email protected]
When replying, please edit your Subject line so it is more specific
than "Re: Contents of dhcp-users digest..."
Today's Topics:
1. Re: CVE-2015-8461, a DHCP security vulnerability, was
announced today. (Brian Conry)
2. Re: CVE-2015-8461, a DHCP security vulnerability, was
announced today. (Apu)
3. Re: CVE-2015-8461, a DHCP security vulnerability, was
announced today. (Michael McNally)
4. Update manpage to better document events hooking in
dhcpd.conf (julien durillon)
----------------------------------------------------------------------
Message: 1
Date: Tue, 12 Jan 2016 17:16:29 -0600
From: Brian Conry <[email protected]>
To: [email protected]
Subject: Re: CVE-2015-8461, a DHCP security vulnerability, was
announced today.
Message-ID: <[email protected]>
Content-Type: text/plain; charset=windows-1252
On 2016-01-12 17:13, Apu wrote:
> Michael,
>
> The advisory includes this text regarding workarounds
>
> None likely, but in some environments following the advice from
> https://kb.isc.org/article/AA-00573/31/Securing-Your-Network-From-DHCP-Risks.html
> can substantially reduce the risk by limiting the exposure of a DHCP
> server to "controlled" networks and clients.
>
> however the link returns an error requesting a username and password.
>
> Is that article available publicly?
It was supposed to be before, and it is now.
Thanks for reporting the problem with the link.
Brian Conry
ISC Support
------------------------------
Message: 2
Date: Tue, 12 Jan 2016 18:18:03 -0500
From: Apu <[email protected]>
To: Users of ISC DHCP <[email protected]>
Subject: Re: CVE-2015-8461, a DHCP security vulnerability, was
announced today.
Message-ID: <[email protected]>
Content-Type: text/plain; charset=windows-1252
Thanks, Brian.
--
Apu
------------------------------
Message: 3
Date: Tue, 12 Jan 2016 18:32:16 -0500
From: Michael McNally <[email protected]>
To: [email protected]
Subject: Re: CVE-2015-8461, a DHCP security vulnerability, was
announced today.
Message-ID: <[email protected]>
Content-Type: text/plain; charset=windows-1252
On 1/12/16 6:03 PM, Michael McNally wrote:
> CVE-2015-8461, a new medium severity DHCP security vulnerability
> was announced today.
Please excuse my error. I cited the wrong advisory in the previous
message.
The links in my message were correct but the new DHCP advisory is
CVE-2015-8605, not CVE-2015-8461 as I wrote above.
------------------------------
Message: 4
Date: Wed, 13 Jan 2016 12:44:45 +0100
From: julien durillon <[email protected]>
To: [email protected]
Subject: Update manpage to better document events hooking in
dhcpd.conf
Message-ID:
<canymndqojzbqdmwzgxm6g7k0mrioccjk_90uar7f0f66f1y...@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Hi there,
I have searched in the man for documentation on how to hook on dhcpd event.
I could not find any straightforward information. I eventually found what I
was looking for on the internet.
So, here's what I would like to see in the dhcpd.conf(5) manpage. Please
note the "hook" keyword I tried to put here and there (but that's just
because I couldn't find anything with that keyword).
I hope this is the right place to post my patch. If not, please direct me
to the right mailing list :)
Regards,
--
Julien Durillon
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<https://lists.isc.org/pipermail/dhcp-users/attachments/20160113/a457fe8f/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Be-more-explicit-about-events-and-the-on-statement.patch
Type: text/x-patch
Size: 1912 bytes
Desc: not available
URL:
<https://lists.isc.org/pipermail/dhcp-users/attachments/20160113/a457fe8f/attachment-0001.bin>
------------------------------
_______________________________________________
dhcp-users mailing list
[email protected]
https://lists.isc.org/mailman/listinfo/dhcp-users
End of dhcp-users Digest, Vol 87, Issue 6
*****************************************
