Date: Mon, 29 Oct 2018 08:35:17 +0900 From: 面和毅 <ka-omo@...s.com> To: oss-security@...ts.openwall.com Cc: squid3@...enet.co.nz Subject: Re: Squid Proxy multiple vulnerabilities Hi, It looks like links are working fine now. http://www.squid-cache.org/Advisories/SQUID-2018_4.txt http://www.squid-cache.org/Advisories/SQUID-2018_5.txt OMO 2018年10月29日(月) 2:22 Hanno Böck <hanno@...eck.de>: > > On Mon, 29 Oct 2018 05:13:40 +1300 > Amos Jeffries <squid3@...enet.co.nz> wrote: > > > <http://www.squid-cache.org/Advisories/SQUID-2018_4.txt> > > That gives a 404. > > Also there's another yet unfixed vulnerability: The webpage and the > downloads are not using HTTPS, which makes them vulnerable to > man-in-the-middle attacks ;-) > > -- > Hanno Böck > https://hboeck.de/ > > mail/jabber: hanno@...eck.de > GPG: FE73757FA60E4E21B937579FA5880072BBB51E42 -- Kazuki Omo: ka-omo@...s.com OSS&Security Evangelist Senior Architect Vice President & Deputy Group Manager Research and Development Dept. 2 CISSP #366942 Tel: +819026581386
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.