1. Repository.elive-systems.com tl_shaped.png**tl_axios_menu.png**minimise_clickedE.png**minimise_activeE.png**side_right_eterm.png**side_axios_menu.png**title_normal.png**.nautilusmetafile.xml**title_active.png http://repository.elive-systems.com/db/contents.cache.db

�A���a��+���oڟ���iڟ���iڟ���iڟ���iڟ���iڟ���iڟ���iڟ���iڟ���i������@`��(4������sm�P��4# ��RA��JӺ�J�pN����l��o��*)�� <�Q��5W�)'�v���� �NW� �q�ڠ_^`�.�"ƭ(Fƫ^�n �-�g�]��t�Wb:� ���ܥC���c`�q���w):$� <��*i�ocWGTbf� o�e;�Z��9�w�Zr��Z����鉱2-B��R��^�~cF���q޴����Fko <�2�8j�-=4�K� <��� D����3��T?�1S,�=Ά�G��As < G���`nR��jTՐ�������1�������ƴ0�� �M��п�_ <֖ʺ��H�$�Y/���`lD՞���qh0bk�������[Jg �͈���M���J+,fK��h�-�Kt�Rc��ԙ�c�#=���-UZQqv:�ء@��� <*.19��#�p�̌T����N/�k�.^�1�����Km��5Da =5++;���ִ� ���� u��r���8tH!O�Wp�ҏѶ�ǰ��j�T ֵN�ܼ �� � ,����Ԗ� ,��>�����>�� ,���@Y @         Fv/7? ���>���o@5 @       Fv/7? �� –��>� ��@ –��>� �� U@ @     Fv/7/ �� ��_@# @     Fv/7/ �� � ��_@# @     Fv/7/ �� ,W�� +�Ֆ�� ,�� ��_@# @      Fv/7/

2. ISS X-Force Database: Nautilus-metafile-xml-symlink(8995): Nautilus .nautilus-me Nautilus creates the .nautilusmetafile.xml file insecurely. A local attacker could create a symbolic link from .nautilus-metafile.xml to an arbitrary file on the...... http://xforce.iss.net/xforce/xfdb/8995

Sign In ISS Worldwide Downloads Investor Relations ... Contact Us Nautilus .nautilus-metafile.xml symlink nautilus-metafile-xml-symlink (8995) Medium Risk Description: Nautilus creates the .nautilus-metafile.xml file insecurely. A local attacker could create a symbolic link from .nautilus-metafile.xml to an arbitrary file on the system, which would be overwritten when Nautilus copies files from one directory to another. Consequences: File Manipulation Remedy: Upgrade to the latest version of Nautilus, available from the GNOME Web site. See References. For Red Hat Linux 7.2: Upgrade to the latest version of Nautilus (1.0.4-46 or later), as listed in RHSA-2002:064-12. See References. For other distributions: Contact your vendor for upgrade or patch information. References: GNOME Web site : /cvs/gnome/ nautilus/. Rapid 7 Advisory R7-0003 : Nautilus Symlink Vulnerability. BID-4373 : Nautilus Local File Corruption Vulnerability CVE-2002-0157 : Nautilus 1.0.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on the .nautilus-metafile.xml metadata file. RHSA-2002-064 : Updated Nautilus for symlink vulnerability writing metadata files Platforms Affected: GNOME Nautilus 1.0.4

3. Www.that1site.com 200408-12 Christophe Fergeau teuf@gnome.org * NEWS updated . 2004-08-12 Ryan Lortie desrt@desrt.ca * libgnomevfs/gnome-vfs-private-utils.c (_gnome_vfs_have http://www.that1site.com/docs/gnome-vfs2-2.6.2/ChangeLog

2004-08-12 Christophe Fergeau * NEWS: updated 2004-08-12 Ryan Lortie * modules/sftp-method.c: add missing comma to fix compilation 2004-08-10 Christophe Fergeau Backport fixes from HEAD: * modules/sftp-method.c: fix potential deadlock in sftp_get_connection (Ryan Lortie , fixes #149273) * libgnomevfs/gnome-vfs-ssl.c: Changed #if to #ifdef. This should fix bug #149205. (Christian Kellner ) * modules/sftp-method.c: Use memset instead of bzero, fixes #149206. (Christian Kellner ) 2004-08-09 Ryan Lortie * libgnomevfs/gnome-vfs-utils.c (gnome_vfs_get_volume_free_space): Fixed small memory leak. Fixes bug #149333. 2004-07-31 Christophe Fergeau * modules/ftp-method.c: (do_transfer_command): use GNOME_VFS_OFFSET_FORMAT_STR when printing a GnomeVFSFileOffset (fixes #148913) 2004-07-30 Christophe Fergeau * libgnomevfs/gnome-vfs-utils.c: (gnome_vfs_get_volume_free_space): Fixed a small memory leak 2004-07-22 Christophe Fergeau * libgnomevfs/gnome-vfs-utils.c: always use lower case URI schemes when looking for the handler for a given scheme. 2004-07-20 Josselin Mouette * modules/tar-method.c: fixed crash when opening tar:/// in Nautilus. Fixes #122570 2004-07-20 Alexander Larsson

4. Re: [Nautilus-list] .nautilus-metafile.xml From Dennis Bjorklund db zigo dhs org To John Sullivan sullivan eazel com Cc Ross Burton r burton 180sw com , nautiluslist lists eazel com http://mail.gnome.org/archives/nautilus-list/2001-January/msg00072.html

Date Prev Date Next Thread Prev Thread Next ... Author Index Re: [Nautilus-list] .nautilus-metafile.xml From To Cc Subject : Re: [Nautilus-list] .nautilus-metafile.xml Date : Tue, 9 Jan 2001 19:08:14 +0100 (CET) References Re: [Nautilus-list] .nautilus-metafile.xml From: John Sullivan Date Prev Date Next Thread Prev Thread Next ... Author Index

5. [Nautilus-list] .nautilus-metafile.xml From Dennis Bjorklund db zigo dhs org To nautiluslist lists eazel com Subject Nautilus-list .nautilus-metafile.xml; Date Tue, 9 Jan 2001 110052 +0100 (CET) http://mail.gnome.org/archives/nautilus-list/2001-January/msg00060.html

Date Prev Date Next Thread Prev Thread Next ... Author Index [Nautilus-list] .nautilus-metafile.xml From To Subject : [Nautilus-list] .nautilus-metafile.xml Date : Tue, 9 Jan 2001 11:00:52 +0100 (CET) Nautilus have a tendency to leave files around. Especially .thumbnails and .nautilus-metafile.xml. How does this work tohgether with a multiuser system like unix. I have directories that are writable by several users. What happens when they go to the same place. Will everyone overwrite the .nautilus-metafile.xml from another user. Actually they cant. Does that mean it's just the first one that happend to go to a directory that saves the metafiles. And this metafile contains window-sizes and such. What if the first user have a 1600x1200 screen and the next have a 650x480 screen... I think this is a broken behaviour, but maybe that's just me. Or maybe I don't know how it works. My question is really, what is the philosophy behind this? /Dennis Follow-Ups Re: [Nautilus-list] .nautilus-metafile.xml From: Ross Burton Re: [Nautilus-list] .nautilus-metafile.xml

6. Www.yoko-tech.com )≥ ╚*╗.nautilusmetafile.xml ?xml version= 1.0 ? directory/ Ab*B╡╨* camera.htm html head meta http-equiv= Content-Type content= text/html; charset=Arial http://www.yoko-tech.com/cht/force_download.php?file_path=../pictures/download/y

7. Re: Positioning Icons On Gnome Desktop What I'm now looking for is a way to maintain desktop icon placement, possibly through manipulation of the .nautilusmetafile.xml file. Any suggestions along that line? http://www.redhat.com/archives/valhalla-list/2002-May/msg01354.html

Date Prev Date Next Thread Prev Thread Next ... Author Index Re: Positioning icons on Gnome desktop From : "Robert G. (Doc) Savage" <dsavage peaknet net> To : valhalla-list redhat com Subject : Re: Positioning icons on Gnome desktop Date : 18 May 2002 20:10:24 -0500 https://listman.redhat.com/mailman/listinfo/valhalla-list References Positioning icons on Gnome desktop From: Robert G. (Doc) Savage Re: Positioning icons on Gnome desktop From: Jan Carlson Date Prev Date Next Thread Prev Thread Next ... Author Index

8. CSC 109 - Revision E50f1c5bb87bd19628690bdd4ebc38d916e64401 - The .nautilusmetafile.xml; Examples.zip; HWA.rtf; HWA.txt; POLY; 109; Examples; Prog1; Prog1.java; Prog10; Handout; HeadLinkCollection.java; Prog10.java; Prog13; Prog13.java http://theelements.org/repositories/revision/csc109/e50f1c5bb87bd19628690bdd4ebc

9. National Vulnerability Database (NVD) National Vulnerability Database (CVE-2002- Nautilus 1.0.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on the .nautilusmetafile.xml metadata file. Impact http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0157

10. SecuriTeam - Nautilus Symlink Vulnerability When copying files from one directory to another, Nautilus creates a small (88+ bytes) XML file called '.nautilusmetafile.xml' in the target directory. http://www.securiteam.com/unixfocus/5BP041575E.html

Security News Security Reviews Exploits Tools ... Blogs Brought to you by: Suppliers of: Website Testing Tools Network Testing Tools Software Testing Tools SecuriTeam in Your Inbox ... Tell us (Our PGP key Nautilus Symlink Vulnerability 4 May 2002 Summary Nautilus is a graphical shell for GNOME. It contains a vulnerability that would allow a malicious user to mount a symlink attack to overwrite another user's files. Credit: The information has been provided by Joe Testa Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network Details Protect your website! Use an External Vulnerability Scanner! Nothing to install. First report in 1 hour! www.beyondsecurity.com/vulnerability-scanner Vulnerable systems: * Nautilus 1.0.4 Solution: Upgrade to the latest version of Nautilus, available at http://cvs.gnome.org/lxr/source/nautilus/ , or apply the appropriate patch: RedHat 7.2:

11. Network Security Advisory Nautilus Symlink Vulnerability Rapid7 When copying files from one directory to another, Nautilus creates a small (88+ bytes) XML file called '.nautilusmetafile.xml' in the target http://www.rapid7.com/security-center/advisories/R7-0003.jsp

12. Nautilus Local File Corruption Vulnerability Nautilus Local File Corruption Vulnerability When copying files from one directory to another, Nautilus creates a small XML file with the filename '.nautilusmetafile.xml' in the http://www.securityfocus.com/bid/4373/discuss

13. Re: [K12OSN] Default Gnome Screens So by manipulating what is in the /etc/skel folder and the contents of the .nautilusmetafile.xml file, you may set up global configurations for users. http://www.redhat.com/archives/k12osn/2003-June/msg00044.html

Date Prev Date Next Thread Prev Thread Next ... Author Index Re: [K12OSN] Default Gnome screens From : "Larry Mateo" <LarryM fsusd k12 ca us> To Subject : Re: [K12OSN] Default Gnome screens Date : Mon Jun 2 13:53:23 2003 http://www.gnome.org http://www.gnome.org/learn/ http://gnomedesktop.org http://gnomedesktop.org/forums/ ... Author Index

14. Bugtraq: R7-0003: Nautilus Symlink Vulnerability jdog@imisshogs jdog$ ln s /etc/passwd .nautilus-metafile.xml jdog@imisshogs jdog$ mail root Subject Yo. Could you please copy creepy-in-new-york.doc to my http://www.dataguard.no/bugtraq/2002_1/1605.html

R7-0003: Nautilus Symlink Vulnerability From: Joe Testa ( jtesta@rapid7.com Date: Thu May 02 2002 - 22:13:50 CEST Previous message: bugzilla@redhat.com: "[RHSA-2002:064-12] Updated Nautilus for symlink vulnerability writing metadata files" Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] ... [ attachment ] [ My mail client, Mozilla 1.0 RC1, mangles this advisory and ruins the signature. See attached file for signed version.] Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXpose(tm), our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0003: Nautilus Symlink Vulnerability Published: 05/02/2002 Revision: 1.0 CVE ID: CAN-2002-0157 Bugtraq ID: 4373 1. Affected system(s): KNOWN VULNERABLE: o Nautilus 1.0.4 Apparently NOT VULNERABLE: 2. Summary Nautilus is a graphical shell for GNOME. It contains a vulnerability which would allow a malicious user to mount a symlink attack to overwrite another user's files.

15. How To Reset Your Linux Desktop Environment | Arizona Mathematics rm rf .icons rm -rf .java* rm -rf .kde rm -rf .macromedia rm -rf .maple rm -rf .matlab rm -rf .mc rm -rf .mcop rm -rf .metacity rm -rf .nautilus rm -rf .nautilus-metafile.xml rm http://math.arizona.edu/support/linux/resetlinuxdesktop.html

UA Calendars UA Phonebook Site Index Locate Math Building on Campus Map ... Computer Support You are here: Home Computer Support Operating Systems: GNU/Linux: Reset your Linux desktop environment How to reset your Linux desktop environment We have discovered that the desktop environment sometimes misbehaves: the panel at the bottom may no longer respond to mouse clicks, or the Home and Start Here icons may no longer open. Our solution is to eliminate all configuration files related to: the file manager Nautilus, the desktop environment Gnome, the window manager Sawfish, and the X-server XFree86. Default versions of these files will be created automatically when you next log in. Note: By following this procedure, you will lose many customizations, such as changes to your desktop background color, which icons appear on the desktop, and which icons appear in your panel. If you are logged in graphically, log out. (It is crucial that the following steps not be performed from within the graphical environment. Merely opening a Terminal window is insufficient. You must exit the graphical environment according to these instructions.) Press Ctrl-Alt-F1 to reach a text-only login screen.

16. Need Help Installing Orinoco Drivers - NetStumbler.org Forums depmod /lib/modules/2.4.183/kernel/.nautilus-metafile.xml is not an ELF file depmod /lib/modules/2.4.18-3/kernel/net/.nautilus-metafile.xml is not an ELF file http://www.netstumbler.org/f50/need-help-installing-orinoco-drivers-3498/

NetStumbler.org Forums Software Unix/Linux Need help installing orinoco drivers User Name Remember Me? Password Register Search Today's Posts Mark Forums Read ... shakesisrad vbmenu_register("postmenu_26023", true); Registered Member Join Date: Aug 2002 Posts: 26 Need help installing orinoco drivers I need help installing an orinoco gold card into redhat linux 7.3 valhalla this is what i have done so far I downloaded the orinoco 11b drivers, unpacked them, then compiled them. I then copied the *.o files to /lib/modules/2.4.18-3/pcmcia after i copied those files, i also in the terminal typed: make install and the output was: mkdir -p /lib/modules/2.4.18-3/kernel/drivers/net/wirelesss/ for f in hermes.o orinoco.o orinco_cs.o orinoco_plx. orinoco_pci.o; do install -m 644 -o $f /lib/modules/2.4.18-3/kernel/drivers/net/wireless//$f; done if [ -d /etc/pcmcia ]; then install -m 644 -o -g hermes.conf /etc/pcmcia/hermes.conf; fi depmod -a depmod: /lib/modules/2.4.18-3/kernel/.nautilus-metafile.xml is not an ELF file depmod: /lib/modules/2.4.18-3/kernel/net/.nautilus-metafile.xml is not an ELF file

17. NEOHAPSIS - Peace Of Mind Through Integrity And Insight jdog imisshogs jdog$ ln s /etc/passwd .nautilus-metafile.xml jdog imisshogs jdog$ mail root Subject Yo. Could you please copy creepy-in-new-york.doc to my home http://archives.neohapsis.com/archives/bugtraq/2002-05/0006.html

@import "/_includes/common.css"; @import "/_includes/print.css"; Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com Neohapsis Archives Bugtraq From: Joe Testa ( jtesta rapid7.com Date: Thu May 02 2002 - 15:13:50 CDT Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ My mail client, Mozilla 1.0 RC1, mangles this advisory and ruins the signature. See attached file for signed version.] Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXpose(tm), our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0003: Nautilus Symlink Vulnerability Published: 05/02/2002 Revision: 1.0 CVE ID: CAN-2002-0157 Bugtraq ID: 4373 1. Affected system(s): KNOWN VULNERABLE: o Nautilus 1.0.4 Apparently NOT VULNERABLE: 2. Summary Nautilus is a graphical shell for GNOME. It contains a vulnerability which would allow a malicious user to mount a symlink attack to overwrite another user's files.

18. UNIX/LINUX Tips icons rm rf .java* rm -rf .kde rm -rf .macromedia rm -rf .maple rm -rf .matlab rm -rf .mc rm -rf .mcop rm -rf .metacity rm -rf .nautilus rm -rf .nautilus-metafile.xml http://www.astec.ac.uk/staff/jackson/unixtips.html

Systems and Hardware To check which version of Red Hat OS is intalled look at file /etc/redhat-release which contains the name of the version. To find the processor speed of your computer, look at the file /proc/cpuinfo To find the IP (internet protocol) address of your computer, > host [host name] Code Libraries, Objects, Symbols Often code structures involving many files collect all their compiled objects into a library archive - called something like libcode.a. To examine all the separate objects in a library like this, use the objdump facility > objdump -a libcode.a And to list the symbols contained in an individual object file, use the nm facility Restoring a Gnome Desktop If for some reason your Gnome desktop screws up and don't know how to fix it, can try resetting it by deleting several files. Got this recipe from the web, not all the files/directories may exist but just go through list anyway, it worked for me once. Backspace Problems in xterm Backspace doesn't work in xterm. My version of this problem only arose when using Exceed to access a linux PC. Logging on at the console, there was no problem. One solution was just to use gnome-terminal rather than xterm. Slow response of Gnome Terminal Found that gnome-terminal was slow when doing ls in large directories, with the default font. When I tried another font (Lucida Typewrite 8, selected from the profile menus on the gnome terminal) it was much quicker.

19. Helix Debian Packages And A Weird Error Sep 29 164748 ws96-8 automount15108 mount(nfs) calling mount -t nfs -s -o rw,soft shepard/export/home/.nautilus-metafile.xml /home/.nautilus-metafile.xml Sep 29 164748 http://lists.debian.org/debian-user/2000/09/msg04588.html

Date Prev Date Next Thread Prev Thread Next ... Thread Index Helix Debian Packages and a weird error To peter@helixcode.com Cc debian-user@lists.debian.org Subject : Helix Debian Packages and a weird error From cwalstrom@ebenx.com Date : Fri, 29 Sep 2000 17:04:30 -0500 Message-id 20000929170430.F3722@iris.ebenx.com mailto:chad.walstrom@iris.ebenx.com Reply to: cwalstrom (on-list) cwalstrom (off-list) Prev by Date: Re: offtopic: OCR on linux Next by Date: Re: ongoing sound problems Previous by thread: Re: Need advice on Postscript/PCL printer Next by thread: Index(es): Date Thread

20. Spammin.sourceforge.net required_hits.html .nautilusmetafile.xml http://spammin.sourceforge.net/spamassassin-0.02-usermin.wbm

"; print " Foo Bar $list "; print " "; print " OK Languages Which languages are considered OK to receive mail in. SpamAssassin will try to detect the language used in the message text. Note that the language cannot always be recognized reliably. In that case, no points will be assigned. The rule UNDESIRED_LANGUAGE_BODY is triggered based on how this is set. The following languages are recognized. In your configuration, you must use the language specifier located in the first column, not the English name for the language. You may also specify all if your language is not listed, or if you want to allow any language. The default setting is all. af afrikaans am amharic ar arabic be byelorussian bg bulgarian bs bosnian ca catalan cs czech cy welsh da danish de german el greek en english eo esperanto es spanish et estonian eu basque fa persian fi finnish fr french fy frisian ga irish gaelic gd scottish gaelic he hebrew hi hindi hr croatian hu hungarian hy armenian id indonesian is icelandic it italian ja japanese ka georgian ko korean la latin lt lithuanian lv latvian mr marathi ms malay ne nepali nl dutch no norwegian pl polish pt portuguese qu quechua rm rhaeto-romance ro romanian ru russian sa sanskrit sco scots sk slovak sl slovenian sq albanian sr serbian sv swedish sw swahili ta tamil th thai tl tagalog tr turkish uk ukrainian vi vietnamese yi yiddish zh chinese examples: ok_languages all (allow all languages) ok_languages en (only allow English) ok_languages en ja zh (allow English, Japanese, and Chinese)

Page 1     1-20 of 35    1  | 2  | Next 20