Posted: 04-04-2003 03:08 PM
all appears to be working fine now
The Next Generation
It appears this security fix just affects screensaver users...I think lrs, TJ, webrad98 and daboodaddy use screensaver...Mark (Tabwebmaster) or Doug, do they need to DL this fix? Is this something they need to be concerned about?<font face="Verdana, Arial" size="2">Originally posted by Gwen:
IMPORTANT! S@H put this up last night! Doug, will you look at this and see if it affects command line? It looks to me as if it is only for the screensaver version, because it refers to 3.08. I am running i386-winnt-cmdline verssion 3.03. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
— April 4, 2003 —
There is a software update with a precautionary security fix. To obtain it, go the the download page. http://setiathome.ssl.berkeley.edu/download.html
— April 4, 2003 —
OUTAGE NOTICES. There will be intermittent service drops for one hour starting tomorrow at 0800 UT while maintenance is performed on our Internet link.
On Monday 4/7 there will be a 2 hour data server outage starting at 1700 UT while Sun performs some maintenance.
[This message has been edited by Gwen (edited 05 April 2003).]</font>
It's a possible security hazard... one I'm sincerely doubting would have any effect on any of us. I wouldn't bother. I'm thinking maybe people who are using office/work computers on their business network would be basically the only ones with any risk factor.<font face="Verdana, Arial" size="2">
> Berkeley have released a new version of the client, 3.08 which fixes a
> buffer overflow error that could potentially be a security threat.
> "Version 3.08 is a precautionary security release. There was a potential
> buffer overrun in the networking code of the client that is fixed with
> version 3.08. Note that to exploit this vulnerability, a potential attacker
> would have to trick the client into contacting a fake server rather
> than the actual SETI@home server. To our knowledge, no SETI@home client
> has ever been attacked in this manner."</font>
I am using my office and home office for this project. Security is always an issue for me. I haven't seen any security bypass attempts other than the random hacker trying to ping my local IP addresses (without any success). I must say that this issue shouldn't concern anyone too much. It would only concern me if someone was to use this on a much larger network in a banking or securities industry. Considering that I am work for a real estate company, I have no data that anyone would want.<font face="Verdana, Arial" size="2">Originally posted by DougBupstateNY:
It's a possible security hazard... one I'm sincerely doubting would have any effect on any of us. I wouldn't bother. I'm thinking maybe people who are using office/work computers on their business network would be basically the only ones with any risk factor.
But, it's a personal decision. It won't help or hinder the processing of data. But I doubt it's necessary for most of us.
What are you using Tracker?? With 30+ machines in a business environment, it might be wise for you?
Oh - yes, this only affects the screensaver version.</font>
Beg to differ - I have setiathome-3.08.i386-winnt-cmdline.exe, and have run it for 1 WU. It is v3.08. It is slower, so I'm going to continue with 3.03.<font face="Verdana, Arial" size="2">Originally posted by megman:
Command-line is/was 3.03 Hasn't changed.</font>