Translated by Juraj Kubelka <Juraj.Kubelka at email.cz>.

CVS version numbers

czech/security/2005/dsa-634.wml: INITIAL -> 1.1

1 files changed, 48 insertions, 0 deletions

diff --git a/czech/security/2005/dsa-634.wml b/czech/security/2005/dsa-634.wml
new file mode 100644
index 00000000000..1f7901a9452
--- /dev/null
+++ b/czech/security/2005/dsa-634.wml
@@ -0,0 +1,48 @@
+#use wml::debian::translation-check translation="1.2" maintainer="Juraj Kubelka"
+<define-tag description>slabá kontrola jména počítače a jména uživatele</define-tag>
+<define-tag moreinfo>
+<p>Patrice Fournier discovered a vulnerability in the authorisation
+subsystem of hylafax, a flexible client/server fax system.  A local or
+remote user guessing the contents of the hosts.hfaxd database could
+gain unauthorised access to the fax system.</p>
+
+<p>Some installations of hylafax may actually utilise the weak hostname
+and username validation for authorized uses.  For example, hosts.hfaxd
+entries that may be common are</p>
+
+<pre>
+  192.168.0
+  username:uid:pass:adminpass
+  user@host
+</pre>
+
+<p>After updating, these entries will need to be modified in order to
+continue to function.  Respectively, the correct entries should be</p>
+
+<pre>
+  192.168.0.[0-9]+
+  username@:uid:pass:adminpass
+  user@host
+</pre>
+
+<p>Unless such matching of "username" with "otherusername" and "host" with
+"hostname" is desired, the proper form of these entries should include
+the delimiter and markers like this</p>
+
+<pre>
+  @192.168.0.[0-9]+$
+  ^username@:uid:pass:adminpass
+  ^user@host$
+</pre>
+
+<p>Pro stable distribuci (woody) byl tento problém opraven
+ve verzi 4.1.1-3.1.</p>
+
+<p>Pro unstable distribuci (sid) byl tento problém opraven
+ve verzi 4.2.1-1.</p>
+
+<p>Doporučujeme vám aktualizovat vaše hylafax balíčky.</p>
+</define-tag>
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2005/dsa-634.data"