Am Fr, den 15.10.2004 schrieb François Patte um 13:43: > * Application version scan > - GnuPG 1.2.3 [ Vulnerable ] > - Apache 2.0.47 [ Vulnerable ] > - OpenSSL 0.9.7a [ Vulnerable ] > - PHP 4.3.3 [ Vulnerable ] > - OpenSSH 3.6.1p2 [ Vulnerable ] > > I'm running fc1 and tried to update these soft but yum answer is that everything > in installed in the latest version... > > Are fedoralegacy mirrors not up to date or rkhunter is wrong? The mirrors are up to date. Besides the nonsense which rkhunter reports - a tool which only checks version numbers is crap - there are updates: http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/gnupg-1.2.3-2.i386.rpm http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/httpd-2.0.51-1.4.legacy.i386.rpm http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/openssl-0.9.7a-33.10.i386.rpm http://mirrors.ircam.fr/pub/fedoralegacy/legacy/fedora/1/updates/i386/php-4.3.8-1.1.i386.rpm You didn't even made it in the time when Redhat provided security updates to keep your FC1 up2date. Think about it. > François Patte Alexander -- Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13 Fedora GNU/Linux Core 2 (Tettnang) kernel 2.6.8-1.521smp Serendipity 18:02:29 up 1 day, 13:13, load average: 0.59, 0.45, 0.37
Attachment:
signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil
