[Esd-l] Re: ALERT: Another ZIP trick is out...
John D. Hardin
jhardin at impsec.org
Wed Mar 17 21:02:10 PST 2004
On Wed, 17 Mar 2004, John D. Hardin wrote:
> You need to have a version of unzip that supports the -P
> (password) argument. 5.50 and later work, 5.40 and below do not.
unzip 5.50 has some security fixes, so I recommend using that.
See http://www.info-zip.org/pub/infozip/UnZip.html for binaries and
source code. See http://rpmfind.net/ for RPMs. Etc. You should know
where to get software updates for your platform... :)
--
John Hardin KA7OHZ ICQ#15735746 http://www.impsec.org/~jhardin/
jhardin at impsec.org FALaholic #11174 pgpk -a jhardin at impsec.org
key: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
"Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
does quite what I want. I wish Christopher Robin was here."
-- Peter da Silva in a.s.r
-----------------------------------------------------------------------
17 days until the Slovakian Presidential Election
More information about the esd-l
mailing list