oss-security - Re: Squid Proxy multiple vulnerabilities

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]

Message-ID: <CAEKGoSFCgf+FYfsegq2Z3TDQMT3TgG94Ma_ARL99co8Gx0O0yA@mail.gmail.com>
Date: Mon, 29 Oct 2018 08:35:17 +0900
From: 面和毅 <ka-omo@...s.com>
To: oss-security@...ts.openwall.com
Cc: squid3@...enet.co.nz
Subject: Re: Squid Proxy multiple vulnerabilities

Hi,

It looks like links are working fine now.

http://www.squid-cache.org/Advisories/SQUID-2018_4.txt
http://www.squid-cache.org/Advisories/SQUID-2018_5.txt

OMO
2018年10月29日(月) 2:22 Hanno Böck <hanno@...eck.de>:
>
> On Mon, 29 Oct 2018 05:13:40 +1300
> Amos Jeffries <squid3@...enet.co.nz> wrote:
>
> > <http://www.squid-cache.org/Advisories/SQUID-2018_4.txt>
>
> That gives a 404.
>
> Also there's another yet unfixed vulnerability: The webpage and the
> downloads are not using HTTPS, which makes them vulnerable to
> man-in-the-middle attacks ;-)
>
> --
> Hanno Böck
> https://hboeck.de/
>
> mail/jabber: hanno@...eck.de
> GPG: FE73757FA60E4E21B937579FA5880072BBB51E42



-- 
Kazuki Omo: ka-omo@...s.com

OSS&Security Evangelist
Senior Architect
Vice President & Deputy Group Manager
Research and Development Dept. 2
CISSP #366942
Tel: +819026581386

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.