Custom Query (2152 matches)
Results (187 - 189 of 2152)
Ticket | Resolution | Summary | Owner | Reporter |
---|---|---|---|---|
#871 | invalid | Check whether localhost-only exim installtions need upgrading too | nils.toedtmann | |
Description |
The infamous exim bug only needs one mail with prepared headers to travel through a exim system infect it. All local processes could do that, and some services (e.g. cron, webapps) send messages and might be convinced by malicious remote users to produce evil headers. We should either rule out that this could happen on our systems, or upgrade all exims regardless of whether they are localhost-only or not. BTW did we already run a rootkit checker like Rootkit hunter on eu1? If not we should maybe do it now - there was already an exploit out in the wild. ByteMark? has (a) already observed infections and (b) notified us because they remotely fingerprinted our mailer to be exim<4.70 (our EHLO banner contains the exim version), just as anyone could. |
|||
#874 | fixed | Extract solr search backend into an extension | pudo | |
Description |
Move the solr SearchBackend? to a seperate code base, remove any mentions of the CKAN model. |
|||
#880 | fixed | ONS loader tripping up on deleted packages | dread | |
Description |
Deleted packages with the same title and extra fields as an active package trip up the loader. It finds them in the search, but due to ckanclient not using the apikey when you 'get' the package to examine it further, it causes an exception. |