Home > mailing lists

Re: Dissecting PostgreSQL CVE-2013-1899 (blackwinghq.com) - Mailing list pgsql-advocacy

From	Douglas J Hunley
Subject	Re: Dissecting PostgreSQL CVE-2013-1899 (blackwinghq.com)
Date	April 11, 2013 20:19:59
Msg-id	CALxYTP6s-OMQuW+S6q11NvWZNmtv1OZqY2iUopWYo_28y4ygJg@mail.gmail.com Whole thread Raw
In response to	Re: Dissecting PostgreSQL CVE-2013-1899 (blackwinghq.com) (Selena Deckelmann <selena@chesnok.com>)
Responses	Re: Dissecting PostgreSQL CVE-2013-1899 (blackwinghq.com)
List	pgsql-advocacy

On Thu, Apr 11, 2013 at 1:15 PM, Selena Deckelmann <selena@chesnok.com> wrote:

Also, a related best practice is keeping track of all the files that are in home directories of privileged users

I would hope people have tripwire/aide/et al configured to watch for these sorts of things already

--
Douglas J Hunley (doug.hunley@gmail.com)
Twitter: @hunleyd Web: douglasjhunley.com
G+: http://goo.gl/sajR3

From: Selena Deckelmann
Date: 11 April 2013, 20:15:45
Subject: Re: Dissecting PostgreSQL CVE-2013-1899 (blackwinghq.com)

From: Thom Brown
Date: 11 April 2013, 20:25:30
Subject: Re: Dissecting PostgreSQL CVE-2013-1899 (blackwinghq.com)