Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <20250817014557.GA19173@openwall.com>
Date: Sun, 17 Aug 2025 03:45:57 +0200
From: Solar Designer <solar@...nwall.com>
To: oss-security@...ts.openwall.com
Subject: Re: xterm terminal crash due to malicious character sequences in file name

On Sun, Aug 17, 2025 at 03:09:58AM +0200, Vincent Lefevre wrote:
> Note: I didn't receive Erik's message. The logs of my mail server
> says that 193.110.157.244 was blacklisted by zen.spamhaus.org and
> dnsbl.ahbl.org. Rather annoying...

I'm unsure we want a list admin topic in this same thread, but anyway:

Sorry about this issue.  It was temporary, which is why you presumably
already correctly received a further message from the thread.

In case anyone else may have missed messages, please check the archive:

https://www.openwall.com/lists/oss-security/

We're normally relaying this list's messages from a different IP
address, which as far as I can see wasn't and isn't listed by Spamhaus.
A few days ago, that normal address happened to be temporarily
rate-limited by Outlook servers too hard, so I temporarily switched to
using the above IP address instead, without realizing it may have
already been on a DNSBL before for whatever historical reason.  Or
alternatively maybe the rDNS vs. HELO discrepancy triggered the listing
just now, because of such temporary use?  Who knows.  I requested
delisting now, and anyway this isn't the address we currently use for
this list.

As to AHBL, its website says "There will be no further updates to the
AHBL. While the private DNSbl/RHSbl is still in operation, the main
project is complete and everyone involved has retired."  So usage of
this DNSBL by your mail server is most likely a misconfiguration.

For further occasions, please bring such topics to me or to the list
admin address privately, unless there's a reason to post to the list.

Thanks,

Alexander

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.