Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS) - Microsoft

Microsoft Security Advisory (967940): Update for Windows Autorun - 2/22/2011

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Windows & DOS: Issues & Discussions Security Advisories (RSS) - Microsoft Microsoft Security Advisory (967940): Update for Windows Autorun - 2/22/2011
# 1  
Old 02-22-2011
Microsoft Security Advisory (967940): Update for Windows Autorun - 2/22/2011
Revision Note: V2.1 (February 22, 2011): Summary revised to notify users of a change in the deployment logic for updates described in this advisory. This change is intended to minimize the user interaction required to install the updates on systems configured for automatic updating. Advisory Summary:Microsoft is announcing the availability of updates to the Autorun feature that help to restrict AutoPlay functionality to only CD and DVD media on supported editions of Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008. Restricting AutoPlay functionality to only CD and DVD media can help protect customers from attack vectors that involve the execution of arbitrary code by Autorun when inserting a USB flash drive, network shares, or other non-CD and non-DVD media containing a file system with an Autorun.inf file.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

lppasswd

lppasswd(1)							    Apple Inc.							       lppasswd(1)

NAME

       lppasswd - add, change, or delete digest passwords.

SYNOPSIS

       lppasswd [ username ]
       lppasswd -a [ -g groupname ] username
       lppasswd -x username

DESCRIPTION

       lppasswd  adds, changes, or deletes passwords in the CUPS digest password file, passwd.md5. When run by a normal user, lppasswd will prompt
       for the old and new passwords.  When run by the super-user, lppasswd can add new accounts (-a username), change	existing  accounts  (user-
       name), or delete accounts (-x username) in the digest password file. Digest usernames do not have to match local UNIX usernames.

OPTIONS

       lppasswd supports the following options:

       -g groupname
	    Specifies a group other than the default system group.

SECURITY ISSUES

       By  default,  the lppasswd program is not installed to allow ordinary users to change their passwords. To enable this, the lppasswd command
       must be made setuid to root with the command:
       chmod u+s lppasswd

       While every attempt has been made to make lppasswd secure against exploits that could grant super-user privileges  to  unprivileged  users,
       paranoid system administrators may wish to use Basic authentication with accounts managed by PAM instead.

SEE ALSO

       lp(1), lpr(1),
       http://localhost:631/help

COPYRIGHT

       Copyright 2007-2011 by Apple Inc.

22 February 2008						       CUPS							       lppasswd(1)