[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[ANNOUNCE] JanusVM Security Update

To: or-talk@xxxxxxxxxxxxx
Subject: [ANNOUNCE] JanusVM Security Update
From: "Kyle Williams" <kyle.kwilliams@xxxxxxxxx>
Date: Tue, 22 May 2007 20:19:03 -0700
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 22 May 2007 23:47:53 -0400
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; b=VegeXl029tUhuXHCVJ1CLYPwMNwL0j+BPO87dLznI6885qRSIjYrPKjYtypGNjiqlEs+aywk7qmOsN8i0MKTkLYlNlxQvE2jrh2nQjFh243k35QgKwAILTjwuKLH4PQ+azAbOYcYddJzCzcibjwnnWaR31ftVhzveBmiQIkmaMs=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type; b=OKn73zTrjeyDKuVSEZ85a3IAuX/HcWoHfKIOSqirMUGANy30N9gFTZHqey8sv/XsN8ErXPGjn3ckxMV/c8tnLe3BUKHP3H++cwVcIlps9jjWtWx4jwJxHRTaBJW2F8q792kp0UkY9CUgp1rZAeX+doLKyIcSKbHoUchVnJniEvg=
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

Hey everyone, we got an updated version of JanusVM out.
Because of the exploits found between April and now, we are recommending everyone update immediately!

* Updated Tor to version 0.1.2.13
* Fixed Samba vulnerability (CVE-2007-2444, CVE-2007-2446, CVE-2007-2447)
* Fixed PPTPD vulnerability (CVE-2007-0244)
* Fixed initial "loopback detected" error when establishing the VPN connection.
* Added a "Internal" network interfaces and Samba share for better personal security.
* A few bug fixes in the menu options.
* Removed the help menu inside the VM.

And remember to verify the checksum of JanusVM.zip. I've got two reports in late April that the checksums didn't match, but everything worked fine. That was enough to make me worry. So, here are the valid checksums of the May-2007 release.

MD5: ce0f22f9093b7197ee3d79932ddf7ce1
SHA1: ef512e093ab9fe3d052bec23ad89bfc2563ad736
SHA256: 9a57c1b9ae594268ef2b5f9bd245762b603ee12bc847ef8698cc2452fc6c36e1

As always, feel free to send any feedback to me directly.
Enjoy!

~ Kyle
http://janusvm.peertech.org

Prev by Author: Re: Incognito Live CD release (was Tor Kit)
Next by Author: Re: Wanted feature / option
Previous by thread: Re: Incognito Live CD release (was Tor Kit)
Next by thread: Tortuga down for some hours
Index(es):
- Author
- Thread