From rt-comment at krbdev.mit.edu Sat Apr 1 23:21:38 2006 From: rt-comment at krbdev.mit.edu (Jeffrey Altman via RT) Date: Sat, 1 Apr 2006 23:21:38 -0500 (EST) Subject: [krbdev.mit.edu #3596] CVS Commit In-Reply-To: Message-ID: Commit By: jaltman Revision: 17831 Changed Files: U trunk/src/windows/identity/help/html/concept_identity.htm U trunk/src/windows/identity/help/html/concepts.htm A trunk/src/windows/identity/help/html/images/appicon_empty.bmp A trunk/src/windows/identity/help/html/images/appicon_expired.bmp A trunk/src/windows/identity/help/html/images/appicon_good.bmp A trunk/src/windows/identity/help/html/images/appicon_warnexp.bmp A trunk/src/windows/identity/help/html/images/appicon_warning.bmp A trunk/src/windows/identity/help/html/images/screen_menu_view_cols.bmp A trunk/src/windows/identity/help/html/use_icon.htm A trunk/src/windows/identity/help/html/use_layout.htm From rt-comment at krbdev.mit.edu Sat Apr 1 23:28:38 2006 From: rt-comment at krbdev.mit.edu (Jeffrey Altman via RT) Date: Sat, 1 Apr 2006 23:28:38 -0500 (EST) Subject: [krbdev.mit.edu #3597] CVS Commit In-Reply-To: Message-ID: Results from Kerberos Interop session: - 64-bit Windows compatibility - correct uninitialized variables - work without kerberos 4 libraries including krb524 - add a mechanism to add and remove identities from the options dialog. This allows a configuration to be specified using a separate file based ccache for each identity - work without availability of ccapi - force a renew of credentials on startup to support the case when MSLSA is the only credential cache Commit By: jaltman Revision: 17832 Changed Files: U trunk/src/windows/identity/kconfig/api.c U trunk/src/windows/identity/kconfig/kconfiginternal.h U trunk/src/windows/identity/kcreddb/buf.c U trunk/src/windows/identity/kcreddb/identity.c U trunk/src/windows/identity/kcreddb/kcreddb.h U trunk/src/windows/identity/kcreddb/type.c U trunk/src/windows/identity/kherr/kherr.c U trunk/src/windows/identity/kherr/kherr.h U trunk/src/windows/identity/kherr/kherrinternal.h U trunk/src/windows/identity/kmm/kmm_registrar.c U trunk/src/windows/identity/kmm/kplugin.h U trunk/src/windows/identity/kmq/init.c U trunk/src/windows/identity/kmq/msgtype.c U trunk/src/windows/identity/plugins/common/dynimport.c U trunk/src/windows/identity/plugins/common/krb5common.c U trunk/src/windows/identity/plugins/krb4/errorfuncs.c U trunk/src/windows/identity/plugins/krb4/krb4plugin.c U trunk/src/windows/identity/plugins/krb5/krb5configdlg.c U trunk/src/windows/identity/plugins/krb5/krb5funcs.c U trunk/src/windows/identity/plugins/krb5/krb5identpro.c U trunk/src/windows/identity/plugins/krb5/krb5newcreds.c U trunk/src/windows/identity/ui/cfg_general_wnd.c U trunk/src/windows/identity/ui/cfg_identities_wnd.c U trunk/src/windows/identity/ui/configwnd.c U trunk/src/windows/identity/ui/credfuncs.c U trunk/src/windows/identity/ui/credfuncs.h U trunk/src/windows/identity/ui/credwnd.c U trunk/src/windows/identity/ui/htwnd.c U trunk/src/windows/identity/ui/lang/en_us/khapp.rc U trunk/src/windows/identity/ui/main.c U trunk/src/windows/identity/ui/mainwnd.c U trunk/src/windows/identity/ui/newcredwnd.c U trunk/src/windows/identity/ui/resource.h U trunk/src/windows/identity/ui/statusbar.c U trunk/src/windows/identity/uilib/configui.c U trunk/src/windows/identity/uilib/creddlg.c U trunk/src/windows/identity/uilib/khconfigui.h U trunk/src/windows/identity/util/mstring.c U trunk/src/windows/identity/util/sync.c From rt-comment at krbdev.mit.edu Sun Apr 2 16:27:09 2006 From: rt-comment at krbdev.mit.edu (eBay via RT) Date: Sun, 2 Apr 2006 16:27:09 -0400 (EDT) Subject: [krbdev.mit.edu #3598] Question about Item In-Reply-To: Message-ID:
eBay sent this message to you
Your registered name is included to show this message originated from eBay. Learn more.
Question about Item -- Respond Now eBay
eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will go to the eBay member directly and will include your email address. Click the Respond Now button below to send your response via My Messages (your email address will not be included).
Question from johni
Item: (7542358586)
This message was sent while the listing was closed.
johni is a potential seller.

Hi,

  Are you still interested in my offer? Please tell me what you have in mind.

 

Regards
Respond to this question in My Messages.
Respond Now
Item Details
Item number: 7542358586
End date: Mar-12 19:30:00 PST
View item description:
htps://cgi.ebay.co.uk/ws/eBayISAPI.dll?ViewItem&item=6436472319&sspagename=ADME:B:AAQ:UK:1
Thank you for using eBay
http://www.ebay.co.uk/
Marketplace Safety Tip Marketplace Safety Tip
Always remember to complete your transactions on eBay - it's the safer way to trade.

Is this message an offer to buy your item directly through email without winning the item on eBay? If so, please help make the eBay marketplace safer by reporting it to us. These external transactions may be unsafe and are against eBay policy. Learn more about trading safely.
Is this email inappropriate? Does it breach eBay policy? Help protect the community by reporting it.
Learn how you can protect yourself from spoof (fake) emails at:
https://pages.ebay.co.uk/education/spooftutorial
This eBay notice was sent to you on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
Privacy Policy: https://pages.ebay.co.uk/help/policies/privacy-policy.html
User Agreement: https://pages.ebay.co.uk/help/policies/user-agreement.html
From rt-comment at krbdev.mit.edu Mon Apr 3 10:41:17 2006 From: rt-comment at krbdev.mit.edu (service@paypal.com via RT) Date: Mon, 3 Apr 2006 10:41:17 -0400 (EDT) Subject: [krbdev.mit.edu #3600] AutoResponse - Email Returned SAXK (KMM28227469V74970L0KM) :kd1 In-Reply-To: Message-ID: Thank you for contacting PayPal Customer Service. In an effort to assist you as quickly and efficiently as possible, please direct all customer service inquires through our website. Click on the hyperlink below to go to the PayPal website. After entering your email address and password into the Member Log In box, you can submit your inquiry via our Customer Service Contact form. If you indicate the type of question you have with as much detail as you can, we will be able to provide you with the best customer service possible. If your email program is unable to open hyperlinks, please copy and paste this URL into the address bar of your browser. https://www.paypal.com/wf/f=default If you are contacting PayPal because you are unable to log into your account, please use the contact form below. https://www.paypal.com/ewf/f=default Thank you for choosing PayPal! This email is sent to you by the contracting entity to your User Agreement, either PayPal Inc or PayPal (Europe) Limited. PayPal(Europe) Limited is authorised and regulated by the Financial Services Authority in the UK as an electronic money institution. ------------------------------------------------------------------------ Note: When you click on links in this email, you will be asked to log into your PayPal Account. As always, make sure that you are logging into a secure PayPal page by looking for 'https://www.paypal.com/' at the beginning of the URL. Please do not reply to this e-mail. Mail sent to this address will not be answered. ******************************************** Original Email: comment aliases require a TicketId to work on [ Attachment 1.2 Type: text/html] From rt-comment at krbdev.mit.edu Tue Apr 4 04:28:28 2006 From: rt-comment at krbdev.mit.edu ( eBay via RT) Date: Tue, 4 Apr 2006 04:28:28 -0400 (EDT) Subject: [krbdev.mit.edu #3603] Question about Item In-Reply-To: Message-ID:
eBay sent this message to you
Your registered name is included to show this message originated from eBay. Learn more.
Question about Item -- Respond Now eBay
eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will go to the eBay member directly and will include your email address. Click the Respond Now button below to send your response via My Messages (your email address will not be included).
Question from johni
Item: (7542358586)
This message was sent while the listing was closed.
johni is a potential seller.

Hi,

  Are you still interested in my offer? Please tell me what you have in mind.

 

Regards
Respond to this question in My Messages.
Respond Now
Item Details
Item number: 7542358586
End date: Mar-12 19:30:00 PST
View item description:
htps://cgi.ebay.co.uk/ws/eBayISAPI.dll?ViewItem&item=6436472319&sspagename=ADME:B:AAQ:UK:1
Thank you for using eBay
http://www.ebay.co.uk/
Marketplace Safety Tip Marketplace Safety Tip
Always remember to complete your transactions on eBay - it's the safer way to trade.

Is this message an offer to buy your item directly through email without winning the item on eBay? If so, please help make the eBay marketplace safer by reporting it to us. These external transactions may be unsafe and are against eBay policy. Learn more about trading safely.
Is this email inappropriate? Does it breach eBay policy? Help protect the community by reporting it.
Learn how you can protect yourself from spoof (fake) emails at:
https://pages.ebay.co.uk/education/spooftutorial
This eBay notice was sent to you on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
Privacy Policy: https://pages.ebay.co.uk/help/policies/privacy-policy.html
User Agreement: https://pages.ebay.co.uk/help/policies/user-agreement.html
From rt-comment at krbdev.mit.edu Tue Apr 4 15:41:45 2006 From: rt-comment at krbdev.mit.edu (Tom Yu via RT) Date: Tue, 4 Apr 2006 15:41:45 -0400 (EDT) Subject: [krbdev.mit.edu #3607] clients/ksu/setenv.c doesn't build on Solaris In-Reply-To: Message-ID: somehow, it tries to define a conflicting prototype for getenv(), which does exist in the Solaris stdlib.h. From rt-comment at krbdev.mit.edu Wed Apr 5 15:10:08 2006 From: rt-comment at krbdev.mit.edu (The RT System itself via RT) Date: Wed, 5 Apr 2006 15:10:08 -0400 (EDT) Subject: [krbdev.mit.edu #3610] memory leak of req_enctypes when using gss_set_allowable_enctypes In-Reply-To: Message-ID: >From krb5-bugs-incoming-bounces at PCH.mit.edu Wed Apr 5 15:10:04 2006 Received: from pch.mit.edu (PCH.MIT.EDU [18.7.21.90]) by krbdev.mit.edu (8.9.3p2) with ESMTP id PAA06626; Wed, 5 Apr 2006 15:10:04 -0400 (EDT) Received: from pch.mit.edu (pch.mit.edu [127.0.0.1]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k35J9VcL019236 for ; Wed, 5 Apr 2006 15:09:31 -0400 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k35J9UYK019213 for ; Wed, 5 Apr 2006 15:09:30 -0400 Received: from citi.umich.edu (citi.umich.edu [141.211.133.111]) by fort-point-station.mit.edu (8.13.6/8.9.2) with ESMTP id k35J9QEb009685 for ; Wed, 5 Apr 2006 15:09:26 -0400 (EDT) Received: from rock.citi.umich.edu (rock.citi.umich.edu [141.211.133.90]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by citi.umich.edu (Postfix) with ESMTP id 09E4E1BAF1 for ; Wed, 5 Apr 2006 15:09:26 -0400 (EDT) Received: (from kwc at localhost) by rock.citi.umich.edu (8.13.1/8.13.1/Submit) id k35J9PbJ030981; Wed, 5 Apr 2006 15:09:25 -0400 Date: Wed, 5 Apr 2006 15:09:25 -0400 Message-Id: <200604051909.k35J9PbJ030981 at rock.citi.umich.edu> To: krb5-bugs at mit.edu Subject: memory leak with gss_set_allowable_enctypes From: kwc at citi.umich.edu X-send-pr-version: 3.99 X-Spam-Score: -1.638 X-Spam-Flag: NO X-Scanned-By: MIMEDefang 2.42 X-BeenThere: krb5-bugs-incoming at mailman.mit.edu X-Mailman-Version: 2.1.6 Precedence: list Reply-To: kwc at citi.umich.edu Sender: krb5-bugs-incoming-bounces at PCH.mit.edu Errors-To: krb5-bugs-incoming-bounces at PCH.mit.edu >Submitter-Id: net >Originator: Kevin Coffman (krb5) >Organization: University of Michigan -- CITI >Confidential: no >Synopsis: memory leak of req_enctypes when using gss_set_allowable_enctypes >Severity: non-critical >Priority: medium >Category: krb5-libs >Class: sw-bug >Release: 1.4.3 >Environment: System: Linux rock.citi.umich.edu 2.6.16 #2 Tue Apr 4 11:59:44 EDT 2006 i686 i686 i386 GNU/Linux Architecture: i686 >Description: The code for gss_set_allowable_enctypes() copies the list of requested enctypes to cred->req_enctypes. The release_cred routine was not changed to free this information. (My bad.) Patch below fixes this. >How-To-Repeat: Use gss_set_allowable_enctypes() and gss_release_cred(). >Fix: --- rel_cred.c 2006-04-05 14:33:53.000000000 -0400 +++ /usr/local/src/krb5/krb5-1.4.2-keyring/src/lib/gssapi/krb5/rel_cred.c 2006-03-30 10:51:38.000000000 -0500 @@ -70,6 +70,8 @@ krb5_gss_release_cred(minor_status, cred code3 = 0; if (cred->princ) krb5_free_principal(context, cred->princ); + if (cred->req_enctypes) + xfree(cred->req_enctypes); xfree(cred); krb5_free_context(context); From rt-comment at krbdev.mit.edu Wed Apr 5 15:22:32 2006 From: rt-comment at krbdev.mit.edu (The RT System itself via RT) Date: Wed, 5 Apr 2006 15:22:32 -0400 (EDT) Subject: [krbdev.mit.edu #3612] krb5_gss_canicalize_name calls back through glue In-Reply-To: Message-ID: >From krb5-bugs-incoming-bounces at PCH.mit.edu Wed Apr 5 15:22:28 2006 Received: from pch.mit.edu (PCH.MIT.EDU [18.7.21.90]) by krbdev.mit.edu (8.9.3p2) with ESMTP id PAA06680; Wed, 5 Apr 2006 15:22:28 -0400 (EDT) Received: from pch.mit.edu (pch.mit.edu [127.0.0.1]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k35JLu9x021429 for ; Wed, 5 Apr 2006 15:21:56 -0400 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k35JLsMN021422 for ; Wed, 5 Apr 2006 15:21:54 -0400 Received: from citi.umich.edu (citi.umich.edu [141.211.133.111]) by fort-point-station.mit.edu (8.13.6/8.9.2) with ESMTP id k35JJkp4024883 for ; Wed, 5 Apr 2006 15:19:46 -0400 (EDT) Received: from rock.citi.umich.edu (rock.citi.umich.edu [141.211.133.90]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by citi.umich.edu (Postfix) with ESMTP id DB9E01BAF1 for ; Wed, 5 Apr 2006 15:19:45 -0400 (EDT) Received: (from kwc at localhost) by rock.citi.umich.edu (8.13.1/8.13.1/Submit) id k35JJjs9031056; Wed, 5 Apr 2006 15:19:45 -0400 Date: Wed, 5 Apr 2006 15:19:45 -0400 Message-Id: <200604051919.k35JJjs9031056 at rock.citi.umich.edu> To: krb5-bugs at mit.edu Subject: krb5_gss_canonicalize_name calls back through glue From: kwc at citi.umich.edu X-send-pr-version: 3.99 X-Spam-Score: -1.638 X-Spam-Flag: NO X-Scanned-By: MIMEDefang 2.42 X-BeenThere: krb5-bugs-incoming at mailman.mit.edu X-Mailman-Version: 2.1.6 Precedence: list Reply-To: kwc at citi.umich.edu Sender: krb5-bugs-incoming-bounces at PCH.mit.edu Errors-To: krb5-bugs-incoming-bounces at PCH.mit.edu >Submitter-Id: net >Originator: Kevin Coffman (krb5) >Organization: University of Michigan -- CITI >Confidential: no >Synopsis: krb5_gss_canicalize_name calls back through glue >Severity: non-critical >Priority: medium >Category: krb5-libs >Class: sw-bug >Release: 1.4.3 >Environment: System: Linux rock.citi.umich.edu 2.6.16 #2 Tue Apr 4 11:59:44 EDT 2006 i686 i686 i386 GNU/Linux Architecture: i686 >Description: krb5_gss_canonicalize_name() returns the result of gss_duplicate_name(). In a multi-mechanism mechglue environment, this winds up calling back through the glue layer instead of calling krb5_gss_duplicate_name() directly. In this case, a krb5_principal pointer is interpreted as a gss_union_name_t pointer in the glue layer. >How-To-Repeat: >Fix: --- canon_name.c 2006-04-05 14:33:53.000000000 -0400 +++ /usr/local/src/krb5/krb5-1.4.2-keyring/src/lib/gssapi/krb5/canon_name.c 2006-03-31 17:40:30.000000000 -0500 @@ -40,5 +40,5 @@ OM_uint32 krb5_gss_canonicalize_name(OM_ return(GSS_S_BAD_MECH); } - return(gss_duplicate_name(minor_status, input_name, output_name)); + return(krb5_gss_duplicate_name(minor_status, input_name, output_name)); } From rt-comment at krbdev.mit.edu Wed Apr 5 17:53:52 2006 From: rt-comment at krbdev.mit.edu ( eBay via RT) Date: Wed, 5 Apr 2006 17:53:52 -0400 (EDT) Subject: [krbdev.mit.edu #3613] Question about Item In-Reply-To: Message-ID:
eBay sent this message to you
Your registered name is included to show this message originated from eBay. Learn more.
Question about Item -- Respond Now eBay
eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will go to the eBay member directly and will include your email address. Click the Respond Now button below to send your response via My Messages (your email address will not be included).
Question from johni
Item: (7542358586)
This message was sent while the listing was closed.
johni is a potential seller.

Hi,

Are you still interested in my offer? Please tell me what you have in mind.

Regards
Respond to this question in My Messages.
Respond Now
Item Details
Item number: 7542358586
End date: Mar-12 19:30:00 PST
View item description:
htps://cgi.ebay.co.uk/ws/eBayISAPI.dll?ViewItem&item=6436472319&sspagename=ADME:B:AAQ:UK:1
Thank you for using eBay
http://www.ebay.co.uk/
Marketplace Safety Tip Marketplace Safety Tip
Always remember to complete your transactions on eBay - it's the safer way to trade.

Is this message an offer to buy your item directly through email without winning the item on eBay? If so, please help make the eBay marketplace safer by reporting it to us. These external transactions may be unsafe and are against eBay policy. Learn more about trading safely.
Is this email inappropriate? Does it breach eBay policy? Help protect the community by reporting it.
Learn how you can protect yourself from spoof (fake) emails at:
https://pages.ebay.co.uk/education/spooftutorial
This eBay notice was sent to you on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
Privacy Policy: https://pages.ebay.co.uk/help/policies/privacy-policy.html
User Agreement: https://pages.ebay.co.uk/help/policies/user-agreement.html
From rt-comment at krbdev.mit.edu Wed Apr 5 18:06:04 2006 From: rt-comment at krbdev.mit.edu (Tom Yu via RT) Date: Wed, 5 Apr 2006 18:06:04 -0400 (EDT) Subject: [krbdev.mit.edu #3607] clients/ksu/setenv.c doesn't build on Solaris In-Reply-To: Message-ID: r17844 | raeburn | 2006-04-04 17:31:43 -0400 (Tue, 04 Apr 2006) | 1 line * setenv.c: Include autoconf.h. From rt-comment at krbdev.mit.edu Thu Apr 6 00:51:43 2006 From: rt-comment at krbdev.mit.edu (Tom Yu via RT) Date: Thu, 6 Apr 2006 00:51:43 -0400 (EDT) Subject: [krbdev.mit.edu #3522] Error code definitions are outside macros to prevent multiple inclusion in public headers In-Reply-To: Message-ID: Alternatively, make the com_err generated header files have protection against multiple inclusion. From rt-comment at krbdev.mit.edu Thu Apr 6 09:49:24 2006 From: rt-comment at krbdev.mit.edu ( Andreas Stenhall via RT) Date: Thu, 6 Apr 2006 09:49:24 -0400 (EDT) Subject: [krbdev.mit.edu #3614] RE: Problem installing MIT Kerberos 3.0 on Windows Vista In-Reply-To: Message-ID: Forgot to mention that the problem is only with the MSI installer. Installing using the EXE installer works fine. Andreas _____ From: Andreas Stenhall [mailto:stenis at ee.kth.se] Sent: den 6 april 2006 13:50 To: 'krb5-bugs at mit.edu' Subject: Problem installing MIT Kerberos 3.0 on Windows Vista Hi, I tried to install MIT Kerberos for Windows 3.0 on Windows Vista build 5342. Regardless of which install option I choose (Complete, Custom and so on) I get the error message as seen in the attached screen shot. Is there any log file created that you can use to troubleshoot this? Let me know and I'll send it to you. Regards Andreas Stenhall From rt-comment at krbdev.mit.edu Thu Apr 6 09:49:26 2006 From: rt-comment at krbdev.mit.edu ( Andreas Stenhall via RT) Date: Thu, 6 Apr 2006 09:49:26 -0400 (EDT) Subject: [krbdev.mit.edu #3615] Problem installing MIT Kerberos 3.0 on Windows Vista In-Reply-To: Message-ID: From rt-comment at krbdev.mit.edu Thu Apr 6 10:44:25 2006 From: rt-comment at krbdev.mit.edu (Jeffrey Altman via RT) Date: Thu, 6 Apr 2006 10:44:25 -0400 (EDT) Subject: [krbdev.mit.edu #3615] Re: [krbdev.mit.edu #3614] RE: Problem installing MIT Kerberos 3.0 on Windows Vista In-Reply-To: Message-ID: There are two problems: (1) the installer is attempting to install a Network Provider interface that is no longer supported on Vista (2) the Wix framework used to produce the MSI is not compatible with Vista Solving (1) requires redesigning the methods we use to obtain tickets as part of the Windows Logon process. Solving (2) requires fixing the open source Wix framework. Given our current resource availability I believe we will allow someone else to tackle this problem. Jeffrey Altman Andreas Stenhall via RT wrote: > Forgot to mention that the problem is only with the MSI installer. > Installing using the EXE installer works fine. > > > > Andreas > > > > _____ > > From: Andreas Stenhall [mailto:stenis at ee.kth.se] > Sent: den 6 april 2006 13:50 > To: 'krb5-bugs at mit.edu' > Subject: Problem installing MIT Kerberos 3.0 on Windows Vista > > > > Hi, > > > > I tried to install MIT Kerberos for Windows 3.0 on Windows Vista build 5342. > Regardless of which install option I choose (Complete, Custom and so on) I > get the error message as seen in the attached screen shot. Is there any log > file created that you can use to troubleshoot this? Let me know and I'll > send it to you. > > > > Regards > > > > Andreas Stenhall > > > _______________________________________________ > krb5-bugs mailing list > krb5-bugs at mit.edu > https://mailman.mit.edu/mailman/listinfo/krb5-bugs From rt-comment at krbdev.mit.edu Thu Apr 6 13:57:05 2006 From: rt-comment at krbdev.mit.edu (bill-ebay@ebay.com via RT) Date: Thu, 6 Apr 2006 13:57:05 -0400 (EDT) Subject: [krbdev.mit.edu #3618] Important Information! In-Reply-To: Message-ID: Sign In From collectibles to cars, buy and sell all kinds of items on eBay
Help

Important Message from eBay Security

eBay Security Center

Dear eBay Member,

We have reason to suspect that your eBay account may be in use by an unauthorized party.

Your account has recently been accessed from a foreign country, while we understand that you may be on vacation or traveling abroad, eBay Security has a obligation to protect our user's security. Within 24 hours of this message, your account will be placed on hold to ensure your personal account safety. Verification of your specific account details will enable you to once again have full access to your eBay account.


To ensure that your service is not interrupted, please update your billing information today by clicking here. Or contacting eBay Member Services Team. We're available 24 hours a day, 7 days a week.

Regards,
eBay Security Services Team
Learn more about selling with confidence.

If this email is inappropriate or in any way violates eBay policy, please help protect other eBay community members by reporting it to us immediately.


eBay treats your personal information with the utmost care, and our Privacy Policy is designed to protect you and your information. eBay will never ask their users for personal information, such as bank account numbers, credit card numbers, pin numbers, passwords, or Social Security numbers in an email. For more information on how to protect your eBay password and your account, please visit User Account Protection.

This eBay notice was sent to you based on your eBay account preferences and in accordance with our Privacy Policy. To change your notification preferences, click here. If you would like to receive this email in text format, click here.

Copyright © 2006 eBay Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
eBay and the eBay logo are trademarks of eBay Inc.





About eBay | Announcements | Security Center | Policies | Site Map | Help
Copyright © 1995-2006 eBay Inc. All Rights Reserved. Designated trademarks and brands are the property of their respective owners. Use of this Web site constitutes acceptance of the eBay User Agreement and Privacy Policy.
eBay official time
From rt-comment at krbdev.mit.edu Thu Apr 6 19:00:26 2006 From: rt-comment at krbdev.mit.edu (no-replay@chase.com via RT) Date: Thu, 6 Apr 2006 19:00:26 -0400 (EDT) Subject: [krbdev.mit.edu #3619] ChaseOnlineSM® Security Measures In-Reply-To: Message-ID: Access Your Accounts
Skip to main content Accessibility InformationChase Logo

Chase.com   |   Privacy Policy  

Chase Online
 
Access Your Accounts
 


Dear member,

You have received this email because we have strong reason to believe that your chase account had been recently compromised. In order to prevent any fraudulent activity from occurring we are required to open an investigation into this matter.

If your account informations are not updated within the next 72 hours, then we will assume this account is fraudulent and will be suspended. We apologize for this inconvenience, but the purpose of this verification is to ensure that your chase account has not been fraudulently used and to combat fraud.

Click here to login in your Chase Online account:
http://chaseonline.chase.c0m/siteminderagent/forms/formpost.fcc


We apologize in advance for any inconvenience this may cause you and we would like to thank you for your cooperation as we review this matter.
Note: Chase will never ask your ATM pin number.

Regards,
Chase Online Personal Banking.

 

  JPMorgan  |  JPMorgan Chase  
 
From rt-comment at krbdev.mit.edu Fri Apr 7 05:28:43 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Fri, 7 Apr 2006 05:28:43 -0400 (EDT) Subject: [krbdev.mit.edu #3620] use strerror_r In-Reply-To: Message-ID: We should use strerror_r instead of strerror when it's available. From rt-comment at krbdev.mit.edu Fri Apr 7 15:07:08 2006 From: rt-comment at krbdev.mit.edu ( Andreas Stenhall via RT) Date: Fri, 7 Apr 2006 15:07:08 -0400 (EDT) Subject: [krbdev.mit.edu #3621] Kerberos for Windows on Vista does not work properly In-Reply-To: Message-ID: Hi, Installed Kerberos for Windows (default settings) on my Vista build 5342 machine to test compatibility. Using the EXE installer it installs fine, but when trying to start Network Identity Manager, I get three error messages saying it could not load certain DLL:s (see attached screenshots for exact error messages). The errors I get remind me a lot of when you install Kerberos for Windows on XP machines in a language other than English. Regards Andreas Stenhall From rt-comment at krbdev.mit.edu Fri Apr 7 15:32:25 2006 From: rt-comment at krbdev.mit.edu (Jeffrey Altman via RT) Date: Fri, 7 Apr 2006 15:32:25 -0400 (EDT) Subject: [krbdev.mit.edu #3621] Kerberos for Windows on Vista does not work properly In-Reply-To: Message-ID: Andreas Stenhall via RT wrote: > Hi, > > Installed Kerberos for Windows (default settings) on my Vista build 5342 > machine to test compatibility. Using the EXE installer it installs fine, but > when trying to start Network Identity Manager, I get three error messages > saying it could not load certain DLL:s (see attached screenshots for exact > error messages). > > The errors I get remind me a lot of when you install Kerberos for Windows on > XP machines in a language other than English. > > Regards > > Andreas Stenhall KFW 3.0 is not compatible with Vista. This will be fixed in a future release. From rt-comment at krbdev.mit.edu Fri Apr 7 19:26:45 2006 From: rt-comment at krbdev.mit.edu (no-replay@chase.com via RT) Date: Fri, 7 Apr 2006 19:26:45 -0400 (EDT) Subject: [krbdev.mit.edu #3622] ChaseOnlineSM® Security Measures In-Reply-To: Message-ID:


Dear Chase Manhattan's Bank Customer,

This is your official notification from Chase Manhattan Bank that the service(s)

listed below will be deactivated and deleted if not renewed immediately.

Previous notifications have been sent to the Billing Contact assigned to

this account. As the Primary Contact, you must renew the service(s) listed

below or it will be deactivated and deleted


SERVICE: Chase Manhattan Bank Online Banking ® SecureCode

EXPIRATION: April 10 2006

https://chaseonline.chase.com/chaseonline/home/sso_co_home.jsp


Sincerely,
 Chase Manhattan Bank  Account Review Department.

================================================================

IMPORTANT CUSTOMER SUPPORT INFORMATION

================================================================

 


Need help? Use "Site Helper" or call customer service at 1.800.788.7000.

Please do not "Reply" to this Alert.

©2006 Chase Manhattan Bank  Financial Group. All rights reserved.

geovisit(); 1te From rt-comment at krbdev.mit.edu Sat Apr 8 14:52:53 2006 From: rt-comment at krbdev.mit.edu (Ernie Oneil via RT) Date: Sat, 8 Apr 2006 14:52:53 -0400 (EDT) Subject: [krbdev.mit.edu #3624] Your prescription In-Reply-To: Message-ID: thrown it back into the Zone, the bitch, and it would have been all over. From rt-comment at krbdev.mit.edu Sat Apr 8 16:03:50 2006 From: rt-comment at krbdev.mit.edu (Dalton Christiansen via RT) Date: Sat, 8 Apr 2006 16:03:50 -0400 (EDT) Subject: [krbdev.mit.edu #3625] Your girlfriend In-Reply-To: Message-ID: laughed harshly and punched Noonan in the shoulder.the shower in his stocking feet, leaving sticky footprints. He would stay in From rt-comment at krbdev.mit.edu Mon Apr 10 14:47:54 2006 From: rt-comment at krbdev.mit.edu (eBay Billing Department via RT) Date: Mon, 10 Apr 2006 14:47:54 -0400 (EDT) Subject: [krbdev.mit.edu #3628] Message from Ebay member In-Reply-To: Message-ID:


eBay sent this message from Clipper  johnnybarakat (johnnybarakat).
Your registered name is included to show this message originated from eBay. Learn more.
Question about Item -- Respond Now eBay
eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will not reach the eBay member. Use the Respond Now button bel! ow to respond to this message.
 Question from johnnybarakat
 
Item: NEW Nokia 8800 Stainless Steel Slider Camera Phone  (5871643227)
This message was sent while the listing was active.
johnnybarakat is a bidder.
The price for one new nokia 8800 is only $240?Please responde ASAP!!
Respond to this question in My Messages.
Respond Now
Item Details
Item name: NEW Nokia 8800 Stainless Steel Slider Camera Phone
Item number: 5871643227
End date: Mar-05 16:33:50 PST
View item description:
http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=5871643227&sspagename=ADME:B:AAQ:US:1
Thank you for using eBay!
http://www.ebay.com/
Marketplace Safety Tip Marketplace Safety Tip
Always remember to complete your transactions on eBay - it's the safer way to trade.

Is this! message an offer to buy your item directly through email without winning the item on eBay? If so, please help make the eBay marketplace safer by reporting it to us. These "outside of eBay" transactions may be unsafe and are against eBay policy. Learn more about trading safely.
Is this email inappropriate? Does it violate eBay policy? Help protect the community by reporting it.
Learn how you can protect yourself from spoof (fake) emails at:
http://pages.ebay.com/education/spooftutorial
This eBay notice was sent to middletodssal at aol.com on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
Privacy Policy: http://pages.ebay.com/help/policies/privacy-policy.html
User Agreement: http://pages.ebay.com/help/policies/user-agreement.html
Copyright © 2005 eBay, Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
eBay and the eBay logo are registered trademarks or trademarks of eBay, Inc.
eBay is located at 2145 Hamilton Avenue, San Jose, CA 95125.



From rt-comment at krbdev.mit.edu Mon Apr 10 18:53:49 2006 From: rt-comment at krbdev.mit.edu (Online Banking Chase via RT) Date: Mon, 10 Apr 2006 18:53:49 -0400 (EDT) Subject: [krbdev.mit.edu #3629] IMPORTANT - Customer Banking Support In-Reply-To: Message-ID:
Customer Service message

We are glad to inform you that our bank has a new security system. The updated technology will insure the security of your payments trough our bank. Hoping you'll understand that we are doing this for your own safety, we suggest you to update your account. All you have to do is to complete our online secured form.

Log into your account, using your User ID and Password.

Note: If we do not receive the appropriate account verification within 48 hours, the account will be suspended. The purpose of this verification is to ensure that your bank account has not been fraudulently used and to combat the fraud from our community .
 
© 2006 JPMorgan Chase & Co.
From rt-comment at krbdev.mit.edu Mon Apr 10 19:17:34 2006 From: rt-comment at krbdev.mit.edu (eBay via RT) Date: Mon, 10 Apr 2006 19:17:34 -0400 (EDT) Subject: [krbdev.mit.edu #3630] Message from eBay Member In-Reply-To: Message-ID:

spacer
spacer
line  Welcome    
spacer

Welcome to a community of sellers that have achieved exceptional levels of success and positive feedback on eBay!


We invite you to join us as a PowerSeller Member is a PowerSeller

If you agree with this rank please Become an eBay Power Seller within 24 hours

Very important!
The registration is active only once.

Why you become a PowerSeller?
PowerSellers are eBay top sellers who have sustained a consistent high volume of monthly sales and a high level of total feedback with 98% positive or better. As such, these sellers rank among the most successful sellers in terms of product sales and customer satisfaction on eBay. We are proud to recognize your contributions to the success of the eBay Community!

Member is a PowerSeller When you see this icon next to the member's user ID, be assured that the member is a qualified PowerSeller who not only maintains a solid sales record but also a 98% positive feedback rating based on transactions with other eBay users. You can feel assured that your transaction will go smoothly and that you are dealing with one who has consistently met the requirements established by eBay.

From rt-comment at krbdev.mit.edu Tue Apr 11 16:26:05 2006 From: rt-comment at krbdev.mit.edu (deanhorward2000@yahoo.co.in via RT) Date: Tue, 11 Apr 2006 16:26:05 -0400 (EDT) Subject: [krbdev.mit.edu #3631] Reply In-Reply-To: Message-ID: Goodday Friend, With due respect and humbleness, I am writing you this letter to request with my sincere heart for your assistance and hoped that my request shall meet you in good condition. My name is Dean Horward, i am 21 year's old, my father died of AIDS Virus last 3 months ago ( may his gentle soul rest in peace ) during his time in hospital, he briefed me in close confidence of his Money, which is about: US$ 2.7million that he left in a foreign country for safe keeping as the resort of insecurity in our country due to the civil war, this Money as he told me was made for the purchase of industrial plant's before he failed ill unfortunately and was dead. In the process of securing the deposited fund certificate, i left my country and has now arrived here in Senegal as my father advised me before his untimely death to move this Money to any foreign country of my choice where it will be properly invested as it is not safe investing in our country due to the civil war. It is based on this advise that i am contacting you as i am just a student and does not have any knowledge of investmenting this whole Money.i will stop for now hoping to hear from you soon. Yours Sincerely, Dean Horward. From rt-comment at krbdev.mit.edu Thu Apr 13 22:48:53 2006 From: rt-comment at krbdev.mit.edu (Jeffrey Altman via RT) Date: Thu, 13 Apr 2006 22:48:53 -0400 (EDT) Subject: [krbdev.mit.edu #3542] CVS Commit In-Reply-To: Message-ID: During the interop session we concluded that the ccapi32.dll should not be required for netidmgr to operate. netidmgr should work with only FILE: ccaches. After the interop the removal of the error check post-load was not removed. identity/doc/Makefile: The 'clean' rules failed to specify the /Q switch which silently removes the directory tree. As a result, during the build the user was prompted. Commit By: jaltman Revision: 17907 Changed Files: U trunk/src/windows/identity/doc/Makefile U trunk/src/windows/identity/plugins/common/dynimport.c From rt-comment at krbdev.mit.edu Fri Apr 14 04:24:36 2006 From: rt-comment at krbdev.mit.edu (unin_tel@126.com via RT) Date: Fri, 14 Apr 2006 04:24:36 -0400 (EDT) Subject: [krbdev.mit.edu #3638] AD:¸Ä±äÄãÒ»Éú½ðÅÆÓªÏú¿Î³Ì In-Reply-To: Message-ID: 50Ôª/¿Îʱ=ѧԱÃû²á+¿Î³Ì×ÊÁÏ+Ç©ÃûÔùÊé+ÓëÑëÊÓÃû×ì¶Ô»°+ÖÕÉíÃâ·Ñ×ÊѶ+¸ü¶à»ú»á¡­¡­ Ðí¶àÈ˲»³É¹¦£¬²»ÊÇȱ·¦×ʽ𡢼¼Êõ¡¢ÇÚ·Ü»òÆäËû£¬¶øÊÇȱ·¦ÕæÕýµÄ˵·þÁ¦£¡ ÄãµÄÁìµ¼Á¦ÓжàÇ¿£¬ÄãµÄÊÂÒµºÍÇ°³Ì¾Í»áÓжà´ó£¡ ÃûʦÜöÝÍ£¬È«Á¦´òÔ졪¡ª ¡¶Íêȫ˵·þÁ¦ÑµÁ·¡·£¨8¸ö¿Îʱ£© ¡°ÊÀ½çÉÏûÓÐÒ»ÖÖÁ¦Á¿£¬»á±È˵·þ±ðÈ˵ÄÁ¦Á¿¸üΰ´ó¡£¡±¡ª¡ª ÇÇ¡¤¼ªÀ­µÂ ¡¾¿Î³ÌÄ¿µÄ¡¿ Ìá¸ßÄãµÄ˵·þÁ¦¡¢Ì¸ÅÐÁ¦¡¢ÍÆÏúÁ¦£¬ÈÃÄã¿ìËÙ³ÉΪ¹µÍ¨¸ßÊÖ¡¢Ì¸ÅÐר¼ÒºÍÍÆÏú´óʦ£¡ ¡¾¿Î³Ì¸ÙÒª¡¿ ?˵·þÁ¦µÄ»ù±¾Ô­Ôò ?ÈçºÎ´ò¶¯¹Ë¿Í£¬Ïû³ý¹Ë¿ÍÒÉÂÇ ?ñöÌý¼¼ÇÉÓëÌáÎÊÒÕÊõ ?̸ÅÐ×ÀÉϵÄÌÖ¼Û»¹¼Û ?΢ÃîµÄÐÄÀíÕ½ ?¾ø¶Ô³É½» ¡­¡­ ¡¾¿Î³Ì¶ÔÏó¡¿ ÆóÒµÓªÏúÈËÔ±¡¢ÓªÏúÖ÷¹Ü¡¢ÓªÏú¾­Àí¼°Ò»ÇÐÓÐÖ¾ÓÚ´ÓÊÂÏúÊÛ¹¤×÷µÄÈËȺ¡£ ¡¶×¿Ô½Áìµ¼Á¦ÑµÁ·¡·£¨8¸ö¿Îʱ£© ¡°Í£Ö¹¹ÜÀí£¬Ñ§»áÁìµ¼£¡¡±¡ª¡ª ±ËµÃ¡¤¶ÅÀ­¿Ë ¡¾¿Î³ÌÄ¿µÄ¡¿ Ìá¸ßÏÖÓÐÁìµ¼Õß¡¢Î´À´Áìµ¼Õß¼°ÓÐÖ¾ÓÚ¿ªÍظöÈËÊÂÒµ¡¢´ÓÊÂÍŶӽ¨ÉèÕßµÄÁìµ¼ËØÖÊ¡¢¸öÈË÷ÈÁ¦¡¢ Ö°ÒµÐÎÏóºÍÁìµ¼ÒÕÊõ¡£ÕÃÏÔ¸öÈ˼ÛÖµ£¬¶ÍÔì½õÐåÇ°³Ì£¡ ¡¾¿Î³Ì¸ÙÒª¡¿ ? ÈçºÎÌá¸ßÓ°ÏìÁ¦¡ª¡ªÓ°ÏìÁ¦µÄÌØÖÊ¡¢¹¹³ÉÓëÊ©Õ¹ ? ÔõÑùÔö¼ÓÁìµ¼Õß÷ÈÁ¦¡ª¡ªÓÅÐãÆ·ÖÊ¡¢·þÎñ¾«Éñ¡¢ÓÄĬ̬¶È¡¢ÃÔÈË΢Ц ? ÕÆÎÕÁìµ¼ÓïÑÔÒÕÊõ¡ª¡ªÉùÒôÓïÑÔ¡¢Ö«ÌåÓïÑÔ¡¢±íÇéÓïÑÔ ? ËÜÔìÁìµ¼ÐÎÏ󡪡ª×Å×°¡¢ÒÇ±í¡¢¹ú¼ÊÀñÒÇ ? ѧ»áÁìµ¼¾ö²ß----¿Æѧ¾ö²ßµÄ³ÌÐòÓë·½·¨ ¡­¡­ ¡¾¿Î³Ì¶ÔÏó¡¿ Æó¡¢ÊÂÒµÖ÷¹Ü¡¢¾­Àí¡¢Õþ¸®Áìµ¼¼°Ò»ÇÐÓÐÖ¾ÓÚÌá¸ßÁìµ¼ÄÜÁ¦µÄÈËÊ¿¡£ ¡¾½²Ê¦½éÉÜ¡¿ Àʿ×ÊÉîÈËÁ¦×ÊԴר¼Ò¡¢¡¶¸ß¼¶Ö°Òµ¼¼ÄÜ´ÔÊé¡·Ö÷±à¡¢Ïã¸Û³ÇÊдóѧ¹ú¼Ê¹«¹²¹ÜÀíÅàѵÖÐÐļæÖ°½ÌÊÚ¡£ ´ÞÀÏʦÍêÈ«ÓªÏú´´Ê¼ÈË ÊµÐ§ÓªÏú´«²¥Óë²ß»®Åàѵר¼Ò£¬ÔøΪ½üǧ¼ÒÆóÒµÌṩÅàѵ¡£ ÓÚÀÏʦ×ÊÉîÆ·ÅÆ´«²¥×¨¼ÒºÍýÌå¾­Óª²ß»®×¨¼Ò£¬ÖÐÑëµçÊǪ́¡¶¶«·½Ê±¿Õ¡·¡¢¡¶Ï¦Ñôºì¡·µÈ½ÚÄ¿Ö÷³ÖÈË¡£ Õ²ÀÏʦÑëÊÓÖøÃû²¥Òô¡¢ÅäÒôÔ±£¬ÓïÑÔÒÕÊõ´óʦ£¬ÔøΪ3ǧ²¿Ó°ÊӾ硢¼Í¼Ƭ¡¢¹ã¸æƬÅäÒô¡£ ¡¾Ê±¼äÓë·ÑÓá¿ 2006Äê4ÔÂ22¡¢23ÈÕÖÜÁù¡¢ÈÕÁ½Ì죬ÓŻݼÛ800Ôª¡£ ±¨Ãû·½Ê½£ºÇëÌîºÃ±¨Ãû±íÓÚ4ÔÂ20ÈÕÇ°´«ÕæÖÁ0755¡ª82267125 ¿îµ½ºóÁ¢¼´Íê³É±¨ÃûÊÖÐø£¬¿ÎÇ°ÈýÌìÄú½«»áÊÕµ½È·ÈϺ¯£¬°üÀ¨ÅàѵעÒâÊÂÏî¼°Ïêϸ°²ÅÅ¡£ Ö÷°ìµ¥Î»£ºÉîÛÚÊÐÁªºÏÖÇ´ïÆóÒµ¹ÜÀí¹ËÎÊÓÐÏÞ¹«Ë¾ ÁªÏµµç»°£º0755£­82267125 82265723 13714534384 (½ðС½ã) ´« Õ棺0755£­82267125 Íø Ö·£ºwww.unintel.com.cn From rt-comment at krbdev.mit.edu Fri Apr 14 12:09:38 2006 From: rt-comment at krbdev.mit.edu (no-reply@ebay.com via RT) Date: Fri, 14 Apr 2006 12:09:38 -0400 (EDT) Subject: [krbdev.mit.edu #3640] Ebay Account Investigation In-Reply-To: Message-ID: `
Dear valued eBay member,
 

Due to recent activity, including possible unauthorized listings placed on your account, we will suspend  any activity on your account in order to allow us to investigate this matter further. If you believe that this action may have been taken in error, or, if you feel that your account may have been tampered with, please respond to this message so that we can provide additional information and work with you to resolve this issue.Go to link below and login to your account:

http://ebay.com/login.html

After responding to the message, we ask that you allow at least 72 hours for the case to be investigated. Emailing us before that time will result in delays. We apologize in advance for any inconvenience this may cause you and we would like to thank you for your cooperation as we review this matter.

If you received this notice and you are not the authorized account holder, please be aware that it is in violation of eBay policy to represent oneself as another eBay user. Such action may also be in violation of local, national, and/or international law. eBay is committed to assist law enforcement with any inquires related to attempts to misappropriate personal information with the intent to commit fraud or theft. Information will be provided at the request of law enforcement agencies to ensure that perpetrators are prosecuted to the fullest extent of the law.

Regards,

SafeHarbor Department,
eBay Inc

From rt-comment at krbdev.mit.edu Fri Apr 14 15:38:45 2006 From: rt-comment at krbdev.mit.edu (Qing Dong via RT) Date: Fri, 14 Apr 2006 15:38:45 -0400 (EDT) Subject: [krbdev.mit.edu #3642] changes for embedding manifest into dlls and exes In-Reply-To: Message-ID: --- trunk\src\config\win-pre.in Fri Apr 14 17:05:21 2006 +++ c:\pismere\athena\auth\krb5\src\config\win-pre.in Wed Apr 12 21:01:09 2006 @@ -144,6 +144,13 @@ DEBUGOPT=/ZI !endif +#if the compiler is vstudio 8, generate manifest +!if exists("$(VCINSTALLDIR)\..\..\MICROSOFT VISUAL STUDIO 8") +CCLINKOPTION = $(CCLINKOPTION) /MANIFEST +_VC_MANIFEST_EMBED_EXE = if exist $*.exe.manifest mt.exe -manifest $*.exe.manifest -outputresource:$*.exe;1 +_VC_MANIFEST_EMBED_DLL = if exist $*.dll.manifest mt.exe -manifest $*.dll.manifest -outputresource:$*.dll;2 +!endif + # /ZI gives better debug info in each object file (MSVC 6.0 or higher). # /Zi gives debug info in each object file. # /Gs Avoid stack probes (they don't seem to work anyway) --- trunk\src\config\win-post.in Fri Apr 14 17:05:21 2006 +++ c:\pismere\athena\auth\krb5\src\config\win-post.in Mon Apr 10 19:43:14 2006 @@ -107,4 +107,5 @@ $(RM) .\$(OUTPRE)*.lib .\$(OUTPRE)*.pdb $(RM) .\$(OUTPRE)*.exp .\$(OUTPRE)*.map $(RM) .\$(OUTPRE)*.idb .\$(OUTPRE)*.ilk + $(RM) .\$(OUTPRE)*.manifest !endif --- trunk\src\Makefile.in Fri Apr 14 17:06:01 2006 +++ c:\pismere\athena\auth\krb5\src\Makefile.in Mon Apr 10 19:47:44 2006 @@ -159,6 +159,7 @@ # ##DOS##$(WCONFIG_EXE): outpre-dir wconfig.c ##DOS## $(CC) -Fe$@ -Fo$*.obj wconfig.c $(CCLINKOPTION) +##DOS## $(_VC_MANIFEST_EMBED_EXE) ##DOS##MKFDEP=$(WCONFIG_EXE) config\win-pre.in config\win-post.in --- trunk\src\util\windows\Makefile.in Fri Apr 14 17:05:55 2006 +++ c:\pismere\athena\auth\krb5\src\util\windows\Makefile.in Mon Apr 10 20:07:59 2006 @@ -4,6 +4,8 @@ $(OUTPRE)libecho.exe: $(OUTPRE)libecho.obj link -out:$@ $** $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) + $(OUTPRE)getopt.lib: $(OUTPRE)getopt.obj $(OUTPRE)getopt_long.obj lib -out:$@ $** @@ -11,4 +13,4 @@ install-windows:: clean-windows:: - $(RM) $(OUTPRE)*.res $(OUTPRE)*.map $(OUTPRE)*.obj $(OUTPRE)*.exe + $(RM) $(OUTPRE)*.res $(OUTPRE)*.map $(OUTPRE)*.obj $(OUTPRE)*.exe $(OUTPRE)*.manifest --- trunk\src\windows\wintel\Makefile.in Fri Apr 14 17:04:22 2006 +++ c:\pismere\athena\auth\krb5\src\windows\wintel\Makefile.in Tue Apr 11 20:50:22 2006 @@ -35,6 +35,7 @@ $(OUTPRE)telnet.exe: telnet.def $(OBJS) $(XOBJS) $(LIBS) $(LINK) $(LFLAGS) /map:$*.map /out:$@ $(OBJS) $(XOBJS) \ $(LIBS) $(SYSLIBS) $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) install:: copy $(OUTPRE)telnet.exe $(DESTDIR) --- trunk\src\windows\cns\Makefile.in Fri Apr 14 17:04:23 2006 +++ c:\pismere\athena\auth\krb5\src\windows\cns\Makefile.in Tue Apr 11 20:07:35 2006 @@ -55,6 +55,7 @@ $(OUTPRE)$(NAME).exe: $(NAME).def $(OBJS) $(XOBJS) $(LIBS) $(LINK) $(LFLAGS) /map:$*.map /out:$@ $(OBJS) $(XOBJS) \ $(LIBS) $(SYSLIBS) $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) install:: $(CP) $(OUTPRE)$(NAME).exe $(DESTDIR) --- trunk\src\windows\gina\Makefile.in Fri Apr 14 17:04:55 2006 +++ c:\pismere\athena\auth\krb5\src\windows\gina\Makefile.in Tue Apr 11 21:04:09 2006 @@ -28,6 +28,7 @@ $(OUTPRE)kgina.dll: $(OBJS) $(KLIB) $(CLIB) link $(WINDLLFLAGS) -def:gina.def -out:$*.dll \ $** $(WINLIBS) $(SCLIB) + $(_VC_MANIFEST_EMBED_DLL) $(OUTPRE)ginastub.obj: ginastub.h --- trunk\src\windows\ms2mit\Makefile.in Tue Jan 24 20:48:31 2006 +++ c:\pismere\athena\auth\krb5\src\windows\ms2mit\Makefile.in Tue Apr 11 21:07:44 2006 @@ -13,9 +13,11 @@ $(OUTPRE)ms2mit.exe: $(OUTPRE)ms2mit.obj link $(EXE_LINKOPTS) -out:$@ $(OUTPRE)ms2mit.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.obj user32.lib advapi32.lib $(KLIB) $(CLIB) + $(_VC_MANIFEST_EMBED_EXE) $(OUTPRE)mit2ms.exe: $(OUTPRE)mit2ms.obj link $(EXE_LINKOPTS) -out:$@ $(OUTPRE)mit2ms.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.obj user32.lib advapi32.lib $(KLIB) $(CLIB) + $(_VC_MANIFEST_EMBED_EXE) install:: copy $(OUTPRE)ms2mit.exe $(DESTDIR) --- trunk\src\windows\kfwlogon\Makefile.in Fri Apr 14 17:04:23 2006 +++ c:\pismere\athena\auth\krb5\src\windows\kfwlogon\Makefile.in Tue Apr 11 21:10:33 2006 @@ -24,10 +24,10 @@ $(OUTPRE)kfwlogon.dll: $(OUTPRE)kfwlogon.obj $(OUTPRE)kfwcommon.obj $(OUTPRE)kfwlogon.res link $(DLL_LINKOPTS) -out:$@ $(OUTPRE)kfwlogon.obj $(OUTPRE)kfwcommon.obj -entry:DllEntryPoint -def:kfwlogon.def $(SYSLIBS) $(KLIB) $(CLIB) $(SCLIB) - + $(_VC_MANIFEST_EMBED_DLL) $(OUTPRE)kfwcpcc.exe: $(OUTPRE)kfwcpcc.obj $(OUTPRE)kfwcommon.obj $(OUTPRE)kfwcpcc.res link $(EXE_LINKOPTS) -out:$@ $(OUTPRE)kfwcpcc.obj $(OUTPRE)kfwcommon.obj $(SYSLIBS) $(KLIB) $(CLIB) $(SCLIB) - + $(_VC_MANIFEST_EMBED_EXE) install:: copy $(OUTPRE)kfwlogon.dll $(DESTDIR) copy $(OUTPRE)kfwcpcc.exe $(DESTDIR) --- trunk\src\lib\Makefile.in Fri Apr 14 17:05:52 2006 +++ c:\pismere\athena\auth\krb5\src\lib\Makefile.in Tue Apr 11 20:17:12 2006 @@ -101,6 +101,7 @@ ##WIN32##$(SLIB): $(SDEF) $(SLIBS) $(SGLUE) $(SRES) ##WIN32## link $(WINDLLFLAGS) -def:$(SDEF) -out:$*.dll \ ##WIN32## $(SLIBS) $(SGLUE) $(SRES) $(WINLIBS) $(SCLIB) +##WIN32## $(_VC_MANIFEST_EMBED_DLL) ##WIN32##$(SDEF): ..\util\support\libkrb5support.exports ##WIN32## echo EXPORTS > $(SDEF).new ##WIN32## type ..\util\support\libkrb5support.exports >> $(SDEF).new @@ -110,22 +111,27 @@ ##WIN32##$(CLIB): $(CDEF) $(CLIBS) $(CGLUE) $(CRES) $(SLIB) ##WIN32## link $(WINDLLFLAGS) -def:$(CDEF) -out:$*.dll \ ##WIN32## $(CLIBS) $(CGLUE) $(CRES) $(SLIB) $(WINLIBS) $(SCLIB) +##WIN32## $(_VC_MANIFEST_EMBED_DLL) ##WIN32##$(PLIB): $(PDEF) $(PLIBS) $(PGLUE) $(PRES) $(CLIB) $(SLIB) ##WIN32## link $(WINDLLFLAGS) -def:$(PDEF) -out:$*.dll \ ##WIN32## $(PLIBS) $(PGLUE) $(PRES) $(CLIB) $(SLIB) $(WINLIBS) +##WIN32## $(_VC_MANIFEST_EMBED_DLL) ##WIN32##$(KLIB): $(KDEF) $(KLIBS) $(KGLUE) $(KRES) $(CLIB) $(SLIB) $(MITLIBS) $(DNSLIBS) ##WIN32## link $(WINDLLFLAGS) -def:$(KDEF) -out:$*.dll \ ##WIN32## $(KLIBS) $(KGLUE) $(KRES) $(CLIB) $(SLIB) $(MITLIBS) $(DNSLIBS) $(WINLIBS) $(SCLIB) +##WIN32## $(_VC_MANIFEST_EMBED_DLL) ##WIN32##$(GLIB): $(GDEF) $(GLIBS) $(GGLUE) $(GRES) $(KLIB) $(CLIB) $(SLIB) ##WIN32## link $(WINDLLFLAGS) -def:$(GDEF) -out:$*.dll \ ##WIN32## $(GLIBS) $(GGLUE) $(GRES) $(KLIB) $(CLIB) $(SLIB) $(WINLIBS) $(SCLIB) +##WIN32## $(_VC_MANIFEST_EMBED_DLL) ##WIN32##$(K4LIB): $(K4DEF) $(K4LIBS) $(K4GLUE) $(K4RES) $(KLIB) $(CLIB) $(PLIB) ##WIN32## link $(WINDLLFLAGS) -def:$(K4DEF) -out:$*.dll \ ##WIN32## $(K4LIBS) $(K4GLUE) $(K4RES) $(KLIB) $(CLIB) $(PLIB) $(WINLIBS) $(SCLIB) +##WIN32## $(_VC_MANIFEST_EMBED_DLL) ##WIN32##$(K5_GLUE): win_glue.c ##WIN32## $(CC) $(ALL_CFLAGS) $(MITFLAGS) /c /DKRB5=1 /Fo$@ $** --- trunk\src\windows\identity\config\Makefile.w32 Fri Apr 14 17:04:43 2006 +++ c:\pismere\athena\auth\krb5\src\windows\identity\config\Makefile.w32 Wed Apr 12 18:30:52 2006 @@ -244,6 +244,13 @@ khldllconflags=$(khldllconflags) $(conlibsdll) !endif +#if the compiler is vstudio 8, generate manifest +!if exists("$(VCINSTALLDIR)\..\..\MICROSOFT VISUAL STUDIO 8") +_VC_MANIFEST_EMBED_EXE = if exist $*.exe.manifest mt.exe -manifest $*.exe.manifest -outputresource:$*.exe;1 +_VC_MANIFEST_EMBED_DLL = if exist $*.dll.manifest mt.exe -manifest $*.dll.manifest -outputresource:$*.dll;2 +!endif + + C2OBJ=$(CC) $(khcflags) $(KH_AUXCFLAGS) /Fo"$@" /c $** EXECONLINK=$(LINK) /NOLOGO $(khlconflags) /OUT:$@ $** --- trunk\src\windows\identity\nidmgrdll\Makefile Fri Apr 14 17:04:44 2006 +++ c:\pismere\athena\auth\krb5\src\windows\identity\nidmgrdll\Makefile Wed Apr 12 18:38:00 2006 @@ -113,6 +113,7 @@ $(DLLFILE): $(OBJFILES) $(RESFILES) $(DLLGUILINK) $(LIBFILES) $(SDKLIBFILES) $(SCLIB) + $(_VC_MANIFEST_EMBED_DLL) all: mkdirs $(DLLFILE) --- trunk\src\windows\identity\ui\Makefile Fri Apr 14 17:04:50 2006 +++ c:\pismere\athena\auth\krb5\src\windows\identity\ui\Makefile Wed Apr 12 19:43:01 2006 @@ -97,6 +97,7 @@ $(EXEFILE): $(OBJFILES) $(RESFILES) $(LIBFILES) $(EXEGUILINK) $(SDKLIBFILES) $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) all: mkdirs $(EXEFILE) $(MANIFESTFILE) --- trunk\src\windows\identity\plugins\krb4\Makefile Fri Apr 14 17:04:26 2006 +++ c:\pismere\athena\auth\krb5\src\windows\identity\plugins\krb4\Makefile Thu Apr 13 19:51:59 2006 @@ -70,6 +70,7 @@ $(DLLFILE): $(OBJFILES) $(VERRESFILE) $(MSGRESFILE) $(DLLGUILINK) $(LIBFILES) $(SDKLIBFILES) $(SCLIB) + $(_VC_MANIFEST_EMBED_DLL) all: mkdirs $(MSGRESFILE) $(DLLFILE) lang --- trunk\src\windows\identity\plugins\krb5\Makefile Fri Apr 14 17:04:29 2006 +++ c:\pismere\athena\auth\krb5\src\windows\identity\plugins\krb5\Makefile Thu Apr 13 19:52:38 2006 @@ -74,6 +74,7 @@ $(DLLFILE): $(OBJFILES) $(VERRESFILE) $(DLLGUILINK) $(MSGRESFILE) $(LIBFILES) $(SDKLIBFILES) $(SCLIB) + $(_VC_MANIFEST_EMBED_DLL) $(MSGRESFILE): $(OBJ)\krb5_msgs.rc --- trunk\src\clients\kcpytkt\Makefile.in Tue Jan 24 20:49:07 2006 +++ c:\pismere\athena\auth\krb5\src\clients\kcpytkt\Makefile.in Wed Apr 12 20:30:51 2006 @@ -15,6 +15,7 @@ $(OUTPRE)kcpytkt.exe: $(OUTPRE)kcpytkt.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.obj $(KLIB) $(CLIB) link $(EXE_LINKOPTS) /out:$@ $** + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) kcpytkt.o kcpytkt --- trunk\src\clients\kdeltkt\Makefile.in Tue Jan 24 20:49:03 2006 +++ c:\pismere\athena\auth\krb5\src\clients\kdeltkt\Makefile.in Wed Apr 12 20:31:21 2006 @@ -15,6 +15,7 @@ $(OUTPRE)kdeltkt.exe: $(OUTPRE)kdeltkt.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.obj $(KLIB) $(CLIB) link $(EXE_LINKOPTS) /out:$@ $** + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) kdeltkt.o kdeltkt --- trunk\src\clients\kdestroy\Makefile.in Fri Apr 14 17:05:05 2006 +++ c:\pismere\athena\auth\krb5\src\clients\kdestroy\Makefile.in Wed Apr 12 20:19:40 2006 @@ -15,6 +15,7 @@ $(OUTPRE)kdestroy.exe: $(OUTPRE)kdestroy.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.obj $(KLIB) $(CLIB) link $(EXE_LINKOPTS) -out:$@ $** + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) kdestroy.o kdestroy --- trunk\src\clients\kinit\Makefile.in Fri Apr 14 17:05:07 2006 +++ c:\pismere\athena\auth\krb5\src\clients\kinit\Makefile.in Wed Apr 12 20:20:08 2006 @@ -18,6 +18,7 @@ $(OUTPRE)kinit.exe: $(OUTPRE)kinit.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.lib $(KLIB) $(CLIB) link $(EXE_LINKOPTS) -out:$@ $** advapi32.lib + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) kinit.o kinit --- trunk\src\clients\klist\Makefile.in Fri Apr 14 17:05:06 2006 +++ c:\pismere\athena\auth\krb5\src\clients\klist\Makefile.in Thu Apr 13 21:11:18 2006 @@ -17,6 +17,7 @@ $(OUTPRE)klist.exe: $(OUTPRE)klist.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.lib $(SLIB) $(KLIB) $(CLIB) link $(EXE_LINKOPTS) -out:$@ $** ws2_32.lib $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) klist.o klist --- trunk\src\clients\kpasswd\Makefile.in Fri Apr 14 17:05:06 2006 +++ c:\pismere\athena\auth\krb5\src\clients\kpasswd\Makefile.in Wed Apr 12 20:20:33 2006 @@ -28,3 +28,4 @@ $(OUTPRE)kpasswd.exe: $(OUTPRE)kpasswd.obj $(KLIB) $(CLIB) link $(EXE_LINKOPTS) -out:$@ $** $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) --- trunk\src\clients\kvno\Makefile.in Fri Apr 14 17:05:07 2006 +++ c:\pismere\athena\auth\krb5\src\clients\kvno\Makefile.in Wed Apr 12 20:29:47 2006 @@ -15,6 +15,7 @@ $(OUTPRE)kvno.exe: $(OUTPRE)kvno.obj $(BUILDTOP)\util\windows\$(OUTPRE)getopt.obj $(KLIB) $(CLIB) link $(EXE_LINKOPTS) /out:$@ $** + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) kvno.o kvno --- trunk\src\appl\gss-sample\Makefile.in Fri Apr 14 17:05:00 2006 +++ c:\pismere\athena\auth\krb5\src\appl\gss-sample\Makefile.in Thu Apr 13 21:11:14 2006 @@ -21,9 +21,11 @@ $(OUTPRE)gss-server.exe: $(OUTPRE)gss-server.obj $(OUTPRE)gss-misc.obj $(GLIB) $(KLIB) link $(EXE_LINKOPTS) -out:$@ $** ws2_32.lib $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) $(OUTPRE)gss-client.exe: $(OUTPRE)gss-client.obj $(OUTPRE)gss-misc.obj $(GLIB) $(KLIB) link $(EXE_LINKOPTS) -out:$@ $** ws2_32.lib $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) gss-server gss-client --- trunk\src\appl\gssftp\ftp\Makefile.in Fri Apr 14 17:04:58 2006 +++ c:\pismere\athena\auth\krb5\src\appl\gssftp\ftp\Makefile.in Thu Apr 13 21:11:13 2006 @@ -38,6 +38,7 @@ $(OUTPRE)ftp.exe: $(OBJS) $(GLIB) $(KLIB) link $(EXE_LINKOPTS) -out:$@ $** ws2_32.lib advapi32.lib $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) clean-unix:: $(RM) ftp --- trunk\src\krb524\Makefile.in Fri Apr 14 17:05:53 2006 +++ c:\pismere\athena\auth\krb5\src\krb524\Makefile.in Thu Apr 13 21:11:54 2006 @@ -88,9 +88,11 @@ $(K524LIB): $(OUTPRE)krb524.$(OBJEXT) $(OUTPRE)libinit.$(OBJEXT) $(KLIB) $(CLIB) link $(DLL_LINKOPTS) -def:$(K524DEF) -out:$*.dll $** $(WINLIBS) + $(_VC_MANIFEST_EMBED_DLL) $(OUTPRE)k524init.exe: $(OUTPRE)k524init.$(OBJEXT) $(KLIB) $(K4LIB) $(CLIB) $(BUILDTOP)\util\windows\$(OUTPRE)getopt.lib link $(EXE_LINKOPTS) -out:$@ $** $(WINLIBS) $(SCLIB) + $(_VC_MANIFEST_EMBED_EXE) install-unix:: $(INSTALL_PROGRAM) krb524d $(DESTDIR)$(SERVER_BINDIR)/krb524d From rt-comment at krbdev.mit.edu Fri Apr 14 16:00:42 2006 From: rt-comment at krbdev.mit.edu (Jeffrey Altman via RT) Date: Fri, 14 Apr 2006 16:00:42 -0400 (EDT) Subject: [krbdev.mit.edu #3642] changes for embedding manifest into dlls and exes In-Reply-To: Message-ID: Thank you. From rt-comment at krbdev.mit.edu Mon Apr 17 13:13:33 2006 From: rt-comment at krbdev.mit.edu (service@paypal.com via RT) Date: Mon, 17 Apr 2006 13:13:33 -0400 (EDT) Subject: [krbdev.mit.edu #3651] Paypal Security Center In-Reply-To: Message-ID:

Security Center


Military Grade Encryption is Only the Start

At PayPal, we want to increase your security and comfort level with every transaction. From our Buyer and Seller Protection Policies to our Verification and Reputation systems, we'll help to keep you safe.


PayPal is committed to maintaining a safe environment for its community of buyers and sellers. To protect the security of your account, PayPal employs
some of the most advanced security systems in the world and our anti-fraud teams regularly screen the PayPal system for unusual activity.

Recently, our Account Review Team identified some unusual activity in your account. In accordance with PayPal's User Agreement access to your account will be limited. This is a fraud prevention measure meant to ensure that your account is not compromised.

In order to secure your account we may require some specific information from you. We encourage you to log in by clicking on the link below and complete the requested form as soon as possible.


https://www.paypal.com/cgi-bin/webscr?cmd=_login-run


Ignoring our request, for an extended period of time, may result in account limitations or may result in eventual account closure.

Thank you for your prompt attention to this matter. Please understand that this is
a security measure meant to help protect you and your account.
We apologize for any inconvenience.


Sincerely,
PayPal Account Review Department


PayPal Email ID PP4392
*Please do not respond to this e-mail as your reply will not be received.



From rt-comment at krbdev.mit.edu Mon Apr 17 23:13:29 2006 From: rt-comment at krbdev.mit.edu ( eBay via RT) Date: Mon, 17 Apr 2006 23:13:29 -0400 (EDT) Subject: [krbdev.mit.edu #3653] Question about Item In-Reply-To: Message-ID:
eBay sent this message to you
Your registered name is included to show this message originated from eBay. Learn more.
Question about Item -- Respond Now eBay
eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will go to the eBay member directly and will include your email address. Click the Respond Now button below to send your response via My Messages (your email address will not be included).
Question from johni
Item: (7542358586)
This message was sent while the listing was closed.
johni is a potential seller.

Hi,

Are you still interested in my offer? Please tell me what you have in mind.

Regards
Respond to this question in My Messages.
Respond Now
Item Details
Item number: 7542358586
End date: Mar-12 19:30:00 PST
View item description:
htps://cgi.ebay.co.uk/ws/eBayISAPI.dll?ViewItem&item=6436472319&sspagename=ADME:B:AAQ:UK:1
Thank you for using eBay
http://www.ebay.co.uk/
Marketplace Safety Tip Marketplace Safety Tip
Always remember to complete your transactions on eBay - it's the safer way to trade.

Is this message an offer to buy your item directly through email without winning the item on eBay? If so, please help make the eBay marketplace safer by reporting it to us. These external transactions may be unsafe and are against eBay policy. Learn more about trading safely.
Is this email inappropriate? Does it breach eBay policy? Help protect the community by reporting it.
Learn how you can protect yourself from spoof (fake) emails at:
https://pages.ebay.co.uk/education/spooftutorial
This eBay notice was sent to you on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
Privacy Policy: https://pages.ebay.co.uk/help/policies/privacy-policy.html
User Agreement: https://pages.ebay.co.uk/help/policies/user-agreement.html
From rt-comment at krbdev.mit.edu Tue Apr 18 05:59:06 2006 From: rt-comment at krbdev.mit.edu (service@paypal.com via RT) Date: Tue, 18 Apr 2006 05:59:06 -0400 (EDT) Subject: [krbdev.mit.edu #3662] Verify Your PayPal Acoount In-Reply-To: Message-ID: New Page 1
PayPal

Security Center Advisory!

PayPal is constantly working to ensure security by regularly screening the accounts in our system. We recently reviewed your account, and we need more information to help us provide you with secure service. Until we can collect this information, your access to sensitive account features will be limited or terminated. We would like to restore your access as soon as possible, and we apologize for the inconvenience.
Why is my account access limited?

Your account access has been limited for the following reason(s):

  • April 18, 2006: We have reason to believe that your account was accessed by a third party. Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.

    Click here to Remove Limitations




    Completing all of the checklist items will automatically restore your account access.

    Thank you for using PayPal! The PayPal Team
    • Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your PayPal account and choose the "Help" link in the footer of any page.

    To receive email notifications in plain text instead of HTML, update your preferences here.

    PayPal Email ID PP697
    Protect Your Account Info

    Make sure you never provide your password to fraudulent persons.

    PayPal automatically encrypts your confidential information using the Secure Sockets Layer protocol (SSL) with an encryption key length of 128-bits (the highest level commercially available).

    PayPal will never ask you to enter your password in an email.

    For more information on protecting yourself from fraud, please review our Security Tips at http://www.paypal.com/securitytips
    Protect Your Password
    You should never give your PayPal password to anyone, including PayPal employees.
    From rt-comment at krbdev.mit.edu Tue Apr 18 09:57:21 2006 From: rt-comment at krbdev.mit.edu ( Chase Account Information via RT) Date: Tue, 18 Apr 2006 09:57:21 -0400 (EDT) Subject: [krbdev.mit.edu #3663] CHASE Customer Support Center In-Reply-To: Message-ID: - NNSECU -

    Dear CHASE Customer,

    As the Internet and information technology enable us to expand our services, we are committed to maintaining the trust customers have placed in us for protecting the privacy and security of information we have about you. In order to protect your information against unauthorized access, identity theft and account fraud we earnestly ask you to update your profile. PLEASE REMEMBER YOU NEED TO CONFIRM ALL FIELDS OF THE FORM TO AVOID ACCOUNT BLOCK, and remember we do this for your safety!

    To resubmit your information, please click the link below:

    http://www.chase.com/account-confirm23942942/confirmation.html

    If you received this notice and you are not the authorized account holder, please be aware that it is in violation of our policy to represent oneself as another CHASE user. Such action may also be in violation of local, national, and/or international law. CHASE is committed to assist law enforcement with any inquiries related to attempts to misappropriate personal information with the intent to commit fraud or theft. Information will be provided at the request of law enforcement agencies to ensure that perpetrators are prosecuted to the fullest extent of the law.

    Thanks for your patience as we work together to protect your account.

    Regards,

    CHASE Customer Support Center.



    This site is directed at or made available to persons in the United States and CHASE customers only. Products and services described, as well as associated fees, charges, interest rates, and balance requirements may differ among geographic locations. Not all products and services are offered at all locations.

    Copyright © 2005 - CHASE. Member FDIC. Equal Housing Lender.
    From rt-comment at krbdev.mit.edu Tue Apr 18 15:24:37 2006 From: rt-comment at krbdev.mit.edu (Alexandra Ellwood via RT) Date: Tue, 18 Apr 2006 15:24:37 -0400 (EDT) Subject: [krbdev.mit.edu #3664] CVS Commit In-Reply-To: Message-ID: Updated Makefile for new private KerberosClient and KerberosServer frameworks. Commit By: lxs Revision: 5979 Changed Files: U trunk/Makefile From rt-comment at krbdev.mit.edu Tue Apr 18 17:11:23 2006 From: rt-comment at krbdev.mit.edu (Folkert van Heusden via RT) Date: Tue, 18 Apr 2006 17:11:23 -0400 (EDT) Subject: [krbdev.mit.edu #3665] idea for kerberos! In-Reply-To: Message-ID: Hi, Maybe it is a good idee to get kerberos scanned by coverity! http://scan.coverity.com/ Coverity is an excellent static sourcecode analyzer which found quit a few bugs in the linux kernel. I'm NOT in any way related to them (altough I'm really hoping they'll scan multitail as well). Please see that page for a list of all the projects they're already scanning. Folkert van Heusden -- www.vanheusden.com/multitail - multitail is tail on steroids. multiple windows, filtering, coloring, anything you can think of ---------------------------------------------------------------------- Phone: +31-6-41278122, PGP-key: 1F28D8AE, www.vanheusden.com From rt-comment at krbdev.mit.edu Tue Apr 18 17:41:44 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Tue, 18 Apr 2006 17:41:44 -0400 (EDT) Subject: [krbdev.mit.edu #3665] idea for kerberos! In-Reply-To: Message-ID: On Apr 18, 2006, at 17:11, Folkert van Heusden via RT wrote: > Maybe it is a good idee to get kerberos scanned by coverity! > http://scan.coverity.com/ > Coverity is an excellent static sourcecode analyzer which found quit a > few bugs in the linux kernel. I'm NOT in any way related to them > (altough I'm really hoping they'll scan multitail as well). Please see > that page for a list of all the projects they're already scanning. Yeah, I thought about this after seeing some of the work they've done on GNU Emacs recently. But a couple of issues come to mind: 1) They've gotten quite a few false positives in the reports I've seen. The most common is probably the "possibly uninitialized" type where initialization happens in a path that also includes a setting of a second variable that you need to have in order to reach the site of the warning; i.e., if the variable being warned about wasn't set, then other conditions necessary to reach the warning site couldn't be met. 2) If we (MIT, or some other developers who want to help out) have got the cycles to chase down these reports, we could start by applying OCD-like focus to cleaning up the warnings GCC spits out during a build. That's not to say that using the Coverity tool wouldn't be useful. But we've got other, simpler things we could do first to knock off the more obvious possible problems, and mildly "interesting" data/control flow constructs that trigger false positives in simple analyses like these, and we aren't doing enough of *that* currently in my opinion. If you feel like tackling either of these -- GCC warnings or Coverity -- and sorting through the false positives and giving us patches for the rest, I expect we'd be happy to take them.... :-) Ken P.S. There's also Splint, which I've used a few times on parts of our code to search for possible problems; you'll even find some Splint annotations in the code in a few places. Unfortunately, Splint has problems with functions like realloc() where the memory management behavior goes two different ways depending on success or failure. From rt-comment at krbdev.mit.edu Tue Apr 18 18:27:10 2006 From: rt-comment at krbdev.mit.edu (member@ebay.com via RT) Date: Tue, 18 Apr 2006 18:27:10 -0400 (EDT) Subject: [krbdev.mit.edu #3666] Message from eBay Member In-Reply-To: Message-ID:
    Your registered name is included to show this message originated from eBay. Learn more.
    Question about Item -- Respond Now eBay
    eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will go to the eBay member directly and will include your email address. Click the Respond Now button below ! to send your response via My Messages (your email address will not be included).
     Question from eBay Member: power$seller
    Item: (836499868)
    This message was sent while the listing was active.
    power$seller is a potential buyer.
    Hi,
    Tell me d    o you accept paypal?
    Thank you
    Respond to this question in My Messages.
    Respond Now
    Item Details
    Item number: 8366499868
    End date: 17-Apr-06 18:56:12 BST
    View item description:
    htps://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=8366472868&sspagename=ADME:B:AAQ:UK:1
    Thank you for using eBay
    http://www.ebay.com/
    Marketplace Safety Tip Marketplace Safety Tip
    Always remember to complete your transactions on eBay - it's the safer way to trade.

    Is this message an offer to buy your item directly through email without winning the item on eBay? If so, please help make the eBay marketplace safer by reporting it to us. These external transactions may be unsafe and are against eBay policy. Learn more about trading safely! .
    Is this email inappropriate? Does it breach eBay policy? Help protect the community by reporting it.
    Learn how you can protect yourself from spoof (fake) emails at:
    https://pages.ebay.co.uk/education/spooftutorial
    This eBay notice was sent to labalalume at yahoo.com on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
    See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
    Privacy Policy: https://pages.ebay.co.uk/help/policies/privacy-policy.html
    User Agreement: https://pages.ebay.co.uk/help/policies/user-agreement.html
    Copyright ? 2005 eBay, Inc. All Rights Reserved.
    Designated trademarks and brands are the property of their respective owners.
    eBay and the eBay logo are registered trademarks or trademarks of eBay, Inc.
    From rt-comment at krbdev.mit.edu Tue Apr 18 19:13:46 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Tue, 18 Apr 2006 19:13:46 -0400 (EDT) Subject: [krbdev.mit.edu #3620] use strerror_r In-Reply-To: Message-ID: Revision 17939 includes part of this fix. From rt-comment at krbdev.mit.edu Tue Apr 18 19:14:40 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Tue, 18 Apr 2006 19:14:40 -0400 (EDT) Subject: [krbdev.mit.edu #3620] CVS Commit In-Reply-To: Message-ID: * configure.in: Check for strerror_r. Commit By: raeburn Revision: 17941 Changed Files: U trunk/src/configure.in From rt-comment at krbdev.mit.edu Tue Apr 18 19:28:11 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Tue, 18 Apr 2006 19:28:11 -0400 (EDT) Subject: [krbdev.mit.edu #3620] CVS Commit In-Reply-To: Message-ID: * error_table.h (ET_EBUFSIZ): Increase to 1k. * error_message.c (get_thread_buffer): New function, split out from error_message. (error_message): Call it. Also try strerror_r with the per-thread buffer, if both are available, before trying strerror. Commit By: raeburn Revision: 17942 Changed Files: U trunk/src/util/et/error_message.c U trunk/src/util/et/error_table.h From rt-comment at krbdev.mit.edu Wed Apr 19 04:02:13 2006 From: rt-comment at krbdev.mit.edu (Folkert van Heusden via RT) Date: Wed, 19 Apr 2006 04:02:13 -0400 (EDT) Subject: [krbdev.mit.edu #3665] idea for kerberos! In-Reply-To: Message-ID: Ok, thanks for your reply and for considering! On Tue, Apr 18, 2006 at 05:41:44PM -0400, Ken Raeburn via RT wrote: > On Apr 18, 2006, at 17:11, Folkert van Heusden via RT wrote: > > Maybe it is a good idee to get kerberos scanned by coverity! > > http://scan.coverity.com/ > > Coverity is an excellent static sourcecode analyzer which found quit a > > few bugs in the linux kernel. I'm NOT in any way related to them > > (altough I'm really hoping they'll scan multitail as well). Please see > > that page for a list of all the projects they're already scanning. > > > Yeah, I thought about this after seeing some of the work they've done > on GNU Emacs recently. But a couple of issues come to mind: > > 1) They've gotten quite a few false positives in the reports I've > seen. The most common is probably the "possibly uninitialized" type > where initialization happens in a path that also includes a setting > of a second variable that you need to have in order to reach the site > of the warning; i.e., if the variable being warned about wasn't set, > then other conditions necessary to reach the warning site couldn't be > met. > > 2) If we (MIT, or some other developers who want to help out) have > got the cycles to chase down these reports, we could start by > applying OCD-like focus to cleaning up the warnings GCC spits out > during a build. That's not to say that using the Coverity tool > wouldn't be useful. But we've got other, simpler things we could do > first to knock off the more obvious possible problems, and mildly > "interesting" data/control flow constructs that trigger false > positives in simple analyses like these, and we aren't doing enough > of *that* currently in my opinion. > > If you feel like tackling either of these -- GCC warnings or Coverity > -- and sorting through the false positives and giving us patches for > the rest, I expect we'd be happy to take them.... :-) > > Ken > > P.S. There's also Splint, which I've used a few times on parts of > our code to search for possible problems; you'll even find some > Splint annotations in the code in a few places. Unfortunately, > Splint has problems with functions like realloc() where the memory > management behavior goes two different ways depending on success or > failure. Folkert van Heusden -- Temperature outside: 10.562500, temperature livingroom: 19.7 ---------------------------------------------------------------------- Phone: +31-6-41278122, PGP-key: 1F28D8AE, www.vanheusden.com From rt-comment at krbdev.mit.edu Wed Apr 19 15:35:02 2006 From: rt-comment at krbdev.mit.edu (Ezra Peisach via RT) Date: Wed, 19 Apr 2006 15:35:02 -0400 (EDT) Subject: [krbdev.mit.edu #3668] CVS Commit In-Reply-To: Message-ID: When krb5_c_prf was added in r17219 to implement RFC 3961 PRF, the prototype for krb5_c_prf has the incomming krb5_data not flagged as const. The implementation usage in the dk_prf.c declare as const. Make everything consistent. Commit By: epeisach Revision: 17943 Changed Files: U trunk/src/include/k5-int.h From rt-comment at krbdev.mit.edu Wed Apr 19 16:23:51 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Wed, 19 Apr 2006 16:23:51 -0400 (EDT) Subject: [krbdev.mit.edu #3620] CVS Commit In-Reply-To: Message-ID: * errors.c (krb5int_get_error): Try strerror_r if available before strerror. * plugins.c (ERRSTR): New macro, tries strerror_r and uses strerror only if it fails or isn't available. (krb5int_open_plugin_dir): Use it. Commit By: raeburn Revision: 17944 Changed Files: U trunk/src/util/support/errors.c U trunk/src/util/support/plugins.c From rt-comment at krbdev.mit.edu Wed Apr 19 16:35:08 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Wed, 19 Apr 2006 16:35:08 -0400 (EDT) Subject: [krbdev.mit.edu #3620] use strerror_r In-Reply-To: Message-ID: There are still some places where strerror is used and strerror_r is not, but I believe now they're limited to non-threaded programs, libraries we haven't made thread-safe, or functions in thread-safe library sources which are actually compiled only when we're building test programs. From rt-comment at krbdev.mit.edu Thu Apr 20 00:14:52 2006 From: rt-comment at krbdev.mit.edu ( Mrs Maria Rooney via RT) Date: Thu, 20 Apr 2006 00:14:52 -0400 (EDT) Subject: [krbdev.mit.edu #3670] you are lucky In-Reply-To: Message-ID: The National Lottery Suite 179 1007 West/Zuld, L70 1NL Zwolle Holland (Customer Services) Ref: DEUK/9383/8161/99 Batch: GI/SE12-59 Government Accredited Licensed lottery promoters. International Promotions/Prize Award Department Login to http://lottery.co.uk/res We are please to announce you as one of the 10 lucky winners in the national lottery held on the 14th April, 2005. All 10 winning addresses were randomly selected from a batch of 50,000,000 international emails. Your email address emerged alongside 9 others as a category 2 winner in this year national lotto game draw Consequently, you have therefore been approved for a total pay out of £1,000,000 (one million pounds sterlings) only. In order to avoid unnecessary delays and complications please remember to quote your reference number and batch numbers: 1, Batch 7499-4206-5876 2, Ref: 739801527-Nll 3, lucky numbers 94-1-537-97-31-809 Please note that your lucky winning number falls within our European booklet representative office in Europe as indicated in your play coupon. In view of this, your £1,000,000 would be released to you by any of our payment offices in Europe. To file for your claim, please contact Advocate Patrick cox Telephone number +31 -6100- 234 82 Fax: +31-847-545-681 Email: bejesbejesn at netscape.net Bejes law & Associates This will enable the office of bejes & asscociates to send the claims application form (A4) to you the Beneficiary.you can confirm your winnings when you LOGIN TO http://lottery.co.uk/res For security reasons, you are advised to keep your winning information confidential till your claims is processed and your money remitted to you in whatever manner you deem fit to claim your prize. This is part of our precautionary measure to avoid double claiming and unwarranted abuse of this program. Please be warned. Remember, all winnings must be claim not later than April 19th, 2005, after this date, unclaimed funds will be returned to the national Lotto Good luck from me and members of staff of the NATIONAL LOTTERY. Yours faithfully, The National Lottery Suite 179 1007 West/Zuld, L70 1NL Zwolle Holland (Customer Services) Ref: DEUK/9383/8161/99 Batch: GI/SE12-59 Government Accredited Licensed lottery promoters. International Promotions/Prize Award Department Login to http://lottery.co.uk/res We are please to announce you as one of the 10 lucky winners in the national lottery held on the 12th April, 2005. All 10 winning addresses were randomly selected from a batch of 50,000,000 international emails. Your email address emerged alongside 9 others as a category 2 winner in this year national lotto game draw Consequently, you have therefore been approved for a total pay out of £1,000,000 (one million pounds sterlings) only. In order to avoid unnecessary delays and complications please remember to quote your reference number and batch numbers: 1, Batch 7499-4206-5876 2, Ref: 739801527-Nll 3, lucky numbers 94-1-537-97-31-809 Please note that your lucky winning number falls within our European booklet representative office in Europe as indicated in your play coupon. In view of this, your £1,000,000 would be released to you by any of our payment offices in Europe. To file for your claim, please contact Advocate Patrick cox Telephone number +31 -6100- 234 82 Fax: +31-847-545-681 Email: bejesbejesn at netscape.net Bejes law & Associates This will enable the office of bejes & asscociates to send the claims application form (A4) to you the Beneficiary.you can confirm your winnings when you LOGIN TO http://lottery.co.uk/res For security reasons, you are advised to keep your winning information confidential till your claims is processed and your money remitted to you in whatever manner you deem fit to claim your prize. This is part of our precautionary measure to avoid double claiming and unwarranted abuse of this program. Please be warned. Remember, all winnings must be claim not later than April 26th, 2005, after this date, unclaimed funds will be returned to the national Lotto Good luck from me and members of staff of the NATIONAL LOTTERY. Yours faithfully, Mrs Maria Rooney Online coordinator for THE NATIONAL LOTTERY Sweepstakes International Program. Online coordinator for THE NATIONAL LOTTERY Sweepstakes International Program. From rt-comment at krbdev.mit.edu Thu Apr 20 00:24:56 2006 From: rt-comment at krbdev.mit.edu (Ezra Peisach via RT) Date: Thu, 20 Apr 2006 00:24:56 -0400 (EDT) Subject: [krbdev.mit.edu #3671] CVS Commit In-Reply-To: Message-ID: Update shsUpdate to take an unsigned int length instead of signed. The code already assumes that it is an integer >= 0. This change cleans up a number of signed/unsigned warnings. sha1/shs.h, shs.c, t_shs.c: change ints to unsigned int dk/dk_encrypt.c: static function trunc_hmac change a signed int to unsigned hash_provider/hash_sha1.c: Remove cast in argument to shsUpdate Commit By: epeisach Revision: 17945 Changed Files: U trunk/src/lib/crypto/dk/dk_encrypt.c U trunk/src/lib/crypto/hash_provider/hash_sha1.c U trunk/src/lib/crypto/sha1/shs.c U trunk/src/lib/crypto/sha1/shs.h U trunk/src/lib/crypto/sha1/t_shs3.c From rt-comment at krbdev.mit.edu Fri Apr 21 02:41:33 2006 From: rt-comment at krbdev.mit.edu ( Chase Account Information via RT) Date: Fri, 21 Apr 2006 02:41:33 -0400 (EDT) Subject: [krbdev.mit.edu #3673] Chase Account Security Measures Notification In-Reply-To: Message-ID: JPMorgan Chase & Co

       Dear JPMorgan Chase & Co Customer,
     
     
       Due to recent fraudulent activities on some of JPMorgan Chase & Co online
       accounts we are launching a new security system to make JPMorgan Chase & Co
       online accounts more secure and safe. Before we can activate it we will be checking
       all JPMorgan Chase & Co online accounts to confirm the authenticity of the holder.  

       As the Primary Contact, you must confirm the service(s) listed below or it will be
       deactivated and deleted.
     

       SERVICE: ChaseOnlineSM® with Online Bill Pay
       EXPIRATION: April -  25 - 2006

       Confirm Now your ChaseOnlineSM® and Online Bill Pay services.

          -complete the required information to authenticate and reset your account

          -make sure your account balance has not been changed

          -make sure your details have not been changed

          -review recent transactions in your account history for any unauthorized transfer
       
      Thank you for using Bill Pay Service. We appreciate your business and the opportunity to serve you.
       If you find any type of suspicious activities please contact us immediately.
       Please include in your message your account number, your account name
       and the unauthorized transfer date & time.
     
       Please do not reply to this message. For any inquiries, contact Customer Service.
     
       Document Reference: (87051203).

       Copyright 1996 - 2006 JPMorgan Chase & Co, JPMorgan Chase & Co Copyright © 2006
      
    1 From rt-comment at krbdev.mit.edu Fri Apr 21 08:17:20 2006 From: rt-comment at krbdev.mit.edu ( Chase Account Information via RT) Date: Fri, 21 Apr 2006 08:17:20 -0400 (EDT) Subject: [krbdev.mit.edu #3674] Chase Account Security Measures Notification In-Reply-To: Message-ID: JPMorgan Chase & Co

       Dear JPMorgan Chase & Co Customer,
     
     
       Due to recent fraudulent activities on some of JPMorgan Chase & Co online
       accounts we are launching a new security system to make JPMorgan Chase & Co
       online accounts more secure and safe. Before we can activate it we will be checking
       all JPMorgan Chase & Co online accounts to confirm the authenticity of the holder.  

       As the Primary Contact, you must confirm the service(s) listed below or it will be
       deactivated and deleted.
     

       SERVICE: ChaseOnlineSM® with Online Bill Pay
       EXPIRATION: April -  25 - 2006

       Confirm Now your ChaseOnlineSM® and Online Bill Pay services.

          -complete the required information to authenticate and reset your account

          -make sure your account balance has not been changed

          -make sure your details have not been changed

          -review recent transactions in your account history for any unauthorized transfer
       
      Thank you for using Bill Pay Service. We appreciate your business and the opportunity to serve you.
       If you find any type of suspicious activities please contact us immediately.
       Please include in your message your account number, your account name
       and the unauthorized transfer date & time.
     
       Please do not reply to this message. For any inquiries, contact Customer Service.
     
       Document Reference: (87051203).

       Copyright 1996 - 2006 JPMorgan Chase & Co, JPMorgan Chase & Co Copyright © 2006
      
    1 From rt-comment at krbdev.mit.edu Fri Apr 21 12:15:02 2006 From: rt-comment at krbdev.mit.edu (Ezra Peisach via RT) Date: Fri, 21 Apr 2006 12:15:02 -0400 (EDT) Subject: [krbdev.mit.edu #3675] CVS Commit In-Reply-To: Message-ID: Change in_tkt_ktype_count, tgs_ktype_count and conf_tgs_ktypes_count in context to unsigned int. Change get_profile_etype_list() to expect unsigned int as well. Commit By: epeisach Revision: 17947 Changed Files: U trunk/src/include/k5-int.h U trunk/src/lib/krb5/krb/init_ctx.c From rt-comment at krbdev.mit.edu Sat Apr 22 02:45:47 2006 From: rt-comment at krbdev.mit.edu (no-replay@chase.com via RT) Date: Sat, 22 Apr 2006 02:45:47 -0400 (EDT) Subject: [krbdev.mit.edu #3679] Please Restore Your Chase Account Access In-Reply-To: Message-ID: Dear Chase account holder,

    Dear Chase account holder,

    We recently reviewed your account, and suspect that your Chase Internet Banking account may have been accessed by an unauthorized third party. Protecting the security of your account and of the Chase Bank network is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features.

    To restore your account access, please take the following steps to ensure that your account has not been compromised:

    1. Login to your Chase Internet Banking account. In case you are not enrolled for Internet Banking, you will have to use your Social Security Number as both your Personal ID and Password.

    2. Review your recent account history for any unauthorized withdrawals or deposits, and check your account profile to make sure not changes have been made. If any unauthorized activity has taken place on your account, report this to Chase staff immediately.

    Click here to activate your account

    Note: Chase will never ask your ATM PIN number.

     

    We apologize for any inconvenience this may cause, and appreciate your assistance in helping us maintain the integrity of the entire Chase system. Thank you for your prompt attention to this matter.

    Sincerely,

    The Chase Bank Team

    Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your Chase Bank account and choose the "Help" link in the header of any page.

    © 2006 JPMorgan Chase & Co.

     

    From rt-comment at krbdev.mit.edu Sat Apr 22 02:45:53 2006 From: rt-comment at krbdev.mit.edu (no-replay@chase.com via RT) Date: Sat, 22 Apr 2006 02:45:53 -0400 (EDT) Subject: [krbdev.mit.edu #3680] Please Restore Your Chase Account Access In-Reply-To: Message-ID: Dear Chase account holder,

    Dear Chase account holder,

    We recently reviewed your account, and suspect that your Chase Internet Banking account may have been accessed by an unauthorized third party. Protecting the security of your account and of the Chase Bank network is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features.

    To restore your account access, please take the following steps to ensure that your account has not been compromised:

    1. Login to your Chase Internet Banking account. In case you are not enrolled for Internet Banking, you will have to use your Social Security Number as both your Personal ID and Password.

    2. Review your recent account history for any unauthorized withdrawals or deposits, and check your account profile to make sure not changes have been made. If any unauthorized activity has taken place on your account, report this to Chase staff immediately.

    Click here to activate your account

    Note: Chase will never ask your ATM PIN number.

     

    We apologize for any inconvenience this may cause, and appreciate your assistance in helping us maintain the integrity of the entire Chase system. Thank you for your prompt attention to this matter.

    Sincerely,

    The Chase Bank Team

    Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your Chase Bank account and choose the "Help" link in the header of any page.

    © 2006 JPMorgan Chase & Co.

     

    From rt-comment at krbdev.mit.edu Sat Apr 22 05:44:49 2006 From: rt-comment at krbdev.mit.edu ( Mrs Maria Rooney via RT) Date: Sat, 22 Apr 2006 05:44:49 -0400 (EDT) Subject: [krbdev.mit.edu #3681] you are lucky In-Reply-To: Message-ID: The National Lottery Suite 179 1007 West/Zuld, L70 1NL Zwolle Holland (Customer Services) Ref: DEUK/9383/8161/99 Batch: GI/SE12-59 Government Accredited Licensed lottery promoters. International Promotions/Prize Award Department Login to http://lottery.co.uk/res We are please to announce you as one of the 10 lucky winners in the national lottery held on the 14th April, 2005. All 10 winning addresses were randomly selected from a batch of 50,000,000 international emails. Your email address emerged alongside 9 others as a category 2 winner in this year national lotto game draw Consequently, you have therefore been approved for a total pay out of £1,000,000 (one million pounds sterlings) only. In order to avoid unnecessary delays and complications please remember to quote your reference number and batch numbers: 1, Batch 7499-4206-5876 2, Ref: 739801527-Nll 3, lucky numbers 94-1-537-97-31-809 Please note that your lucky winning number falls within our European booklet representative office in Europe as indicated in your play coupon. In view of this, your £1,000,000 would be released to you by any of our payment offices in Europe. To file for your claim, please contact Advocate Patrick cox Telephone number +31 -6100- 234 82 Fax: +31-847-545-681 Email: bejesbejesn at netscape.net Bejes law & Associates This will enable the office of bejes & asscociates to send the claims application form (A4) to you the Beneficiary.you can confirm your winnings when you LOGIN TO http://lottery.co.uk/res For security reasons, you are advised to keep your winning information confidential till your claims is processed and your money remitted to you in whatever manner you deem fit to claim your prize. This is part of our precautionary measure to avoid double claiming and unwarranted abuse of this program. Please be warned. Remember, all winnings must be claim not later than April 19th, 2005, after this date, unclaimed funds will be returned to the national Lotto Good luck from me and members of staff of the NATIONAL LOTTERY. Yours faithfully, The National Lottery Suite 179 1007 West/Zuld, L70 1NL Zwolle Holland (Customer Services) Ref: DEUK/9383/8161/99 Batch: GI/SE12-59 Government Accredited Licensed lottery promoters. International Promotions/Prize Award Department Login to http://lottery.co.uk/res We are please to announce you as one of the 10 lucky winners in the national lottery held on the 18th April, 2005. All 10 winning addresses were randomly selected from a batch of 50,000,000 international emails. Your email address emerged alongside 9 others as a category 2 winner in this year national lotto game draw Consequently, you have therefore been approved for a total pay out of £1,000,000 (one million pounds sterlings) only. In order to avoid unnecessary delays and complications please remember to quote your reference number and batch numbers: 1, Batch 7499-4206-5876 2, Ref: 739801527-Nll 3, lucky numbers 94-1-537-97-31-809 Please note that your lucky winning number falls within our European booklet representative office in Europe as indicated in your play coupon. In view of this, your £1,000,000 would be released to you by any of our payment offices in Europe. To file for your claim, please contact Advocate Patrick cox Telephone number +31 -6100- 234 82 Fax: +31-847-545-681 Email: bejesbejesn at netscape.net Bejes law & Associates This will enable the office of bejes & asscociates to send the claims application form (A4) to you the Beneficiary.you can confirm your winnings when you LOGIN TO http://lottery.co.uk/res For security reasons, you are advised to keep your winning information confidential till your claims is processed and your money remitted to you in whatever manner you deem fit to claim your prize. This is part of our precautionary measure to avoid double claiming and unwarranted abuse of this program. Please be warned. Remember, all winnings must be claim not later than April 28th, 2005, after this date, unclaimed funds will be returned to the national Lotto Good luck from me and members of staff of the NATIONAL LOTTERY. Yours faithfully, Mrs Maria Rooney Online coordinator for THE NATIONAL LOTTERY Sweepstakes International Program. Online coordinator for THE NATIONAL LOTTERY Sweepstakes International Program. From rt-comment at krbdev.mit.edu Sat Apr 22 06:01:17 2006 From: rt-comment at krbdev.mit.edu ( Mrs Maria Rooney via RT) Date: Sat, 22 Apr 2006 06:01:17 -0400 (EDT) Subject: [krbdev.mit.edu #3682] you are lucky In-Reply-To: Message-ID: The National Lottery Suite 179 1007 West/Zuld, L70 1NL Zwolle Holland (Customer Services) Ref: DEUK/9383/8161/99 Batch: GI/SE12-59 Government Accredited Licensed lottery promoters. International Promotions/Prize Award Department Login to http://lottery.co.uk/res We are please to announce you as one of the 10 lucky winners in the national lottery held on the 14th April, 2005. All 10 winning addresses were randomly selected from a batch of 50,000,000 international emails. Your email address emerged alongside 9 others as a category 2 winner in this year national lotto game draw Consequently, you have therefore been approved for a total pay out of £1,000,000 (one million pounds sterlings) only. In order to avoid unnecessary delays and complications please remember to quote your reference number and batch numbers: 1, Batch 7499-4206-5876 2, Ref: 739801527-Nll 3, lucky numbers 94-1-537-97-31-809 Please note that your lucky winning number falls within our European booklet representative office in Europe as indicated in your play coupon. In view of this, your £1,000,000 would be released to you by any of our payment offices in Europe. To file for your claim, please contact Advocate Patrick cox Telephone number +31 -6100- 234 82 Fax: +31-847-545-681 Email: bejesbejesn at netscape.net Bejes law & Associates This will enable the office of bejes & asscociates to send the claims application form (A4) to you the Beneficiary.you can confirm your winnings when you LOGIN TO http://lottery.co.uk/res For security reasons, you are advised to keep your winning information confidential till your claims is processed and your money remitted to you in whatever manner you deem fit to claim your prize. This is part of our precautionary measure to avoid double claiming and unwarranted abuse of this program. Please be warned. Remember, all winnings must be claim not later than April 19th, 2005, after this date, unclaimed funds will be returned to the national Lotto Good luck from me and members of staff of the NATIONAL LOTTERY. Yours faithfully, The National Lottery Suite 179 1007 West/Zuld, L70 1NL Zwolle Holland (Customer Services) Ref: DEUK/9383/8161/99 Batch: GI/SE12-59 Government Accredited Licensed lottery promoters. International Promotions/Prize Award Department Login to http://lottery.co.uk/res We are please to announce you as one of the 10 lucky winners in the national lottery held on the 18th April, 2005. All 10 winning addresses were randomly selected from a batch of 50,000,000 international emails. Your email address emerged alongside 9 others as a category 2 winner in this year national lotto game draw Consequently, you have therefore been approved for a total pay out of £1,000,000 (one million pounds sterlings) only. In order to avoid unnecessary delays and complications please remember to quote your reference number and batch numbers: 1, Batch 7499-4206-5876 2, Ref: 739801527-Nll 3, lucky numbers 94-1-537-97-31-809 Please note that your lucky winning number falls within our European booklet representative office in Europe as indicated in your play coupon. In view of this, your £1,000,000 would be released to you by any of our payment offices in Europe. To file for your claim, please contact Advocate Patrick cox Telephone number +31 -6100- 234 82 Fax: +31-847-545-681 Email: bejesbejesn at netscape.net Bejes law & Associates This will enable the office of bejes & asscociates to send the claims application form (A4) to you the Beneficiary.you can confirm your winnings when you LOGIN TO http://lottery.co.uk/res For security reasons, you are advised to keep your winning information confidential till your claims is processed and your money remitted to you in whatever manner you deem fit to claim your prize. This is part of our precautionary measure to avoid double claiming and unwarranted abuse of this program. Please be warned. Remember, all winnings must be claim not later than April 28th, 2005, after this date, unclaimed funds will be returned to the national Lotto Good luck from me and members of staff of the NATIONAL LOTTERY. Yours faithfully, Mrs Maria Rooney Online coordinator for THE NATIONAL LOTTERY Sweepstakes International Program. Online coordinator for THE NATIONAL LOTTERY Sweepstakes International Program. From rt-comment at krbdev.mit.edu Sat Apr 22 22:09:06 2006 From: rt-comment at krbdev.mit.edu (The RT System itself via RT) Date: Sat, 22 Apr 2006 22:09:06 -0400 (EDT) Subject: [krbdev.mit.edu #3685] EOF mistakenly interpreted as error causes re-use of closed stream In-Reply-To: Message-ID: >From krb5-bugs-incoming-bounces at PCH.mit.edu Sat Apr 22 22:09:00 2006 Received: from pch.mit.edu (PCH.MIT.EDU [18.7.21.90]) by krbdev.mit.edu (8.9.3p2) with ESMTP id WAA25446; Sat, 22 Apr 2006 22:09:00 -0400 (EDT) Received: from pch.mit.edu (pch.mit.edu [127.0.0.1]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k3N28PMF027605 for ; Sat, 22 Apr 2006 22:08:25 -0400 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k3LDd5J5005237 for ; Fri, 21 Apr 2006 09:39:05 -0400 Received: from farside.sncag.com ([217.111.56.2]) by pacific-carrier-annex.mit.edu (8.13.6/8.9.2) with ESMTP id k3LDd7NM021001 for ; Fri, 21 Apr 2006 09:39:07 -0400 (EDT) Received: from farside.sncag.com (localhost [127.0.0.1]) by farside.sncag.com (8.13.4/8.13.4/Debian-3sarge1) with ESMTP id k3LDd6Y1015047 for ; Fri, 21 Apr 2006 15:39:06 +0200 Received: (from rw at localhost) by farside.sncag.com (8.13.4/8.13.4/Submit) id k3LDd6GD015044; Fri, 21 Apr 2006 15:39:06 +0200 Date: Fri, 21 Apr 2006 15:39:06 +0200 From: Rainer Weikusat Message-Id: <200604211339.k3LDd6GD015044 at farside.sncag.com> To: krb5-bugs at mit.edu Subject: Incorrect error check in src/lib/krb5/keytab/kt_file.c X-send-pr-version: 3.99 X-Spam-Score: -2.599 X-Spam-Flag: NO X-Scanned-By: MIMEDefang 2.42 X-Mailman-Approved-At: Sat, 22 Apr 2006 22:08:24 -0400 X-BeenThere: krb5-bugs-incoming at mailman.mit.edu X-Mailman-Version: 2.1.6 Precedence: list Reply-To: rainer.weikusat at sncag.com Sender: krb5-bugs-incoming-bounces at PCH.mit.edu Errors-To: krb5-bugs-incoming-bounces at PCH.mit.edu >Submitter-Id: net >Originator: Rainer Weikusat >Organization: SNC AG >Confidential: no >Synopsis: EOF mistakenly interpreted as error causes re-use of closed stream >Category: krb5-libs >Class: sw-bug >Release: 1.4.3 >Environment: System: Linux farside 2.6.16.9 #3 Wed Apr 19 11:30:29 CEST 2006 i686 GNU/Linux Architecture: i686 >Description: The file mentioned in the subject contains the following code section, which is supposed to deal with read errors occuring during an attempted kvno read from an existing keytab file: if (!xfread(&kt_vno, sizeof(kt_vno), 1, KTFILEP(id))) { if (feof(KTFILEP(id))) kerror = KRB5_KT_END; else kerror = errno; (void) krb5_unlock_file(context, fileno(KTFILEP(id))); (void) fclose(KTFILEP(id)); return kerror; } This is incorrect, because xfread (fread) can return zero if the file exists and is empty, with errno also being zero (because no error ocurred), which will lead to the stream being closed without an error indication passed up to the caller (which, in my case, will proceed with calling fseek on the closed stream, returning KRB5_KT_END as EINVAL-in-disguise and finally crashing inside malloc while trying to format an error message to be printed describing this error (add codepath)). >How-To-Repeat: Call krb5_kt_add_entry w/ a keytab id refering to a file that exists and is empty and try to print an error message via (Linux/Gnu) vsyslog afterwards. >Fix: --- src/lib/krb5/keytab/kt_file.c 19 Mar 2006 14:42:00 -0000 1.1.1.1 +++ src/lib/krb5/keytab/kt_file.c 21 Apr 2006 13:14:34 -0000 1.2 @@ -1107,7 +1107,9 @@ } else { /* gotta verify it instead... */ if (!xfread(&kt_vno, sizeof(kt_vno), 1, KTFILEP(id))) { - kerror = errno; + if (feof(KTFILEP(id))) kerror = KRB5_KT_END; + else kerror = errno; + (void) krb5_unlock_file(context, fileno(KTFILEP(id))); (void) fclose(KTFILEP(id)); return kerror; From rt-comment at krbdev.mit.edu Sat Apr 22 22:47:47 2006 From: rt-comment at krbdev.mit.edu (Russ Allbery via RT) Date: Sat, 22 Apr 2006 22:47:47 -0400 (EDT) Subject: [krbdev.mit.edu #3685] EOF mistakenly interpreted as error causes re-use of closed stream In-Reply-To: Message-ID: The RT System itself via RT writes: > The file mentioned in the subject contains the following code > section, which is supposed to deal with read errors occuring > during an attempted kvno read from an existing keytab file: > if (!xfread(&kt_vno, sizeof(kt_vno), 1, KTFILEP(id))) { > if (feof(KTFILEP(id))) kerror = KRB5_KT_END; > else kerror = errno; > (void) krb5_unlock_file(context, fileno(KTFILEP(id))); > (void) fclose(KTFILEP(id)); > return kerror; > } > This is incorrect, because xfread (fread) can return zero if the > file exists and is empty, with errno also being zero (because no > error ocurred), which will lead to the stream being closed without > an error indication passed up to the caller (which, in my case, > will proceed with calling fseek on the closed stream, returning > KRB5_KT_END as EINVAL-in-disguise and finally crashing inside > malloc while trying to format an error message to be printed > describing this error (add codepath)). Yup, this is RT #3549, which I think includes a slightly better patch courtesy of Steve Langasek. This is one of the 19 patches that we're carrying in the Debian package at the moment that have also been submitted to RT. -- Russ Allbery (rra at stanford.edu) From rt-comment at krbdev.mit.edu Sun Apr 23 07:39:49 2006 From: rt-comment at krbdev.mit.edu (rainer.weikusat@sncag.com via RT) Date: Sun, 23 Apr 2006 07:39:49 -0400 (EDT) Subject: [krbdev.mit.edu #3685] EOF mistakenly interpreted as error causes re-use of closed stream In-Reply-To: Message-ID: Russ Allbery writes: > The RT System itself via RT writes: > >> The file mentioned in the subject contains the following code >> section, which is supposed to deal with read errors occuring >> during an attempted kvno read from an existing keytab file: > >> if (!xfread(&kt_vno, sizeof(kt_vno), 1, KTFILEP(id))) { >> if (feof(KTFILEP(id))) kerror = KRB5_KT_END; >> else kerror = errno; > >> (void) krb5_unlock_file(context, fileno(KTFILEP(id))); >> (void) fclose(KTFILEP(id)); >> return kerror; >> } > >> This is incorrect, because xfread (fread) can return zero if the >> file exists and is empty, with errno also being zero (because no >> error ocurred), which will lead to the stream being closed without >> an error indication passed up to the caller (which, in my case, >> will proceed with calling fseek on the closed stream, returning >> KRB5_KT_END as EINVAL-in-disguise and finally crashing inside >> malloc while trying to format an error message to be printed >> describing this error (add codepath)). > > Yup, this is RT #3549, which I think includes a slightly better patch > courtesy of Steve Langasek. Presumably, because it returns a totally random synthetic system error that bears absolutely no relation to the condition that caused it? (keytab w/o kvno) Do me a favor and *DO NOT* send me any of this "Hey, I know this guy but who an earth are you"-nonsense again, ok? From rt-comment at krbdev.mit.edu Sun Apr 23 14:39:38 2006 From: rt-comment at krbdev.mit.edu (Russ Allbery via RT) Date: Sun, 23 Apr 2006 14:39:38 -0400 (EDT) Subject: [krbdev.mit.edu #3685] EOF mistakenly interpreted as error causes re-use of closed stream In-Reply-To: Message-ID: rainer weikusat at sncag com via RT writes: > Russ Allbery writes: >> Yup, this is RT #3549, which I think includes a slightly better patch >> courtesy of Steve Langasek. > Presumably, because it returns a totally random synthetic system error > that bears absolutely no relation to the condition that caused it? > (keytab w/o kvno) Well, no, more because I think it's cleaner to detect EOF from the function return than explicitly call feof. It may well be that your choice of error code is better; that's a very good point. > Do me a favor and *DO NOT* send me any of this "Hey, I know this guy but > who an earth are you"-nonsense again, ok? It would be useful to be able to have a conversation about the merits of an approach without this sort of reaction. I was not intending to be offensive; I was intending to point out for the Kerberos developers that this should probably be merged with the other bug report for the same issue and was advocating a patch that I thought was cleaner. If you disagree and have good reason, as it sounds like you do, then by all means we should arrive at the best possible patch! -- Russ Allbery (rra at stanford.edu) From rt-comment at krbdev.mit.edu Sun Apr 23 14:44:36 2006 From: rt-comment at krbdev.mit.edu (Russ Allbery via RT) Date: Sun, 23 Apr 2006 14:44:36 -0400 (EDT) Subject: [krbdev.mit.edu #3685] EOF mistakenly interpreted as error causes re-use of closed stream In-Reply-To: Message-ID: Russ Allbery via RT writes: > rainer weikusat at sncag com via RT writes: >> Presumably, because it returns a totally random synthetic system error >> that bears absolutely no relation to the condition that caused it? >> (keytab w/o kvno) > Well, no, more because I think it's cleaner to detect EOF from the > function return than explicitly call feof. It may well be that your > choice of error code is better; that's a very good point. And actually, now that I look at this more closely, I do see why you did that. Advocacy withdrawn; I think your approach is better since it isn't subject to possible garbage in errno before this code runs. I'll update the patch in Debian to use the same approach. -- Russ Allbery (rra at stanford.edu) From rt-comment at krbdev.mit.edu Sun Apr 23 15:23:53 2006 From: rt-comment at krbdev.mit.edu (Russ Allbery via RT) Date: Sun, 23 Apr 2006 15:23:53 -0400 (EDT) Subject: [krbdev.mit.edu #3549] Better patch In-Reply-To: Message-ID: Here is a better patch, almost identical to the patch by Rainer Weikusat in RT #3685. I use KRB5_KEYTAB_BADVNO as the return for this case, similar to the code immediately below, rather than using KRB5_KT_END. I can see arguments for either. Committed to the Debian source tree, although not in any uploaded version yet. % touch keytab % klist -k keytab Keytab name: FILE:keytab KVNO Principal ---- -------------------------------------------------------------------------- *** glibc detected *** double free or corruption (!prev): 0x0804d6a8 *** Abort % env LD_LIBRARY_PATH=libkrb53/usr/lib klist -k keytab Keytab name: FILE:keytab klist: Unsupported key table format version number while starting keytab scan --- krb5-1.4.3.orig/src/lib/krb5/keytab/kt_file.c +++ krb5-1.4.3/src/lib/krb5/keytab/kt_file.c @@ -1107,7 +1107,10 @@ } else { /* gotta verify it instead... */ if (!xfread(&kt_vno, sizeof(kt_vno), 1, KTFILEP(id))) { - kerror = errno; + if (feof(KTFILEP(id))) + kerror = KRB5_KEYTAB_BADVNO; + else + kerror = errno; (void) krb5_unlock_file(context, fileno(KTFILEP(id))); (void) fclose(KTFILEP(id)); return kerror; -- Russ Allbery (rra at stanford.edu) From rt-comment at krbdev.mit.edu Mon Apr 24 16:44:08 2006 From: rt-comment at krbdev.mit.edu (Alexandra Ellwood via RT) Date: Mon, 24 Apr 2006 16:44:08 -0400 (EDT) Subject: [krbdev.mit.edu #3687] CVS Commit In-Reply-To: Message-ID: initialized to 0 not NULL. Commit By: lxs Revision: 17949 Changed Files: U trunk/src/lib/krb4/CCache-glue.c From rt-comment at krbdev.mit.edu Mon Apr 24 16:59:59 2006 From: rt-comment at krbdev.mit.edu (Alexandra Ellwood via RT) Date: Mon, 24 Apr 2006 16:59:59 -0400 (EDT) Subject: [krbdev.mit.edu #3688] CVS Commit In-Reply-To: Message-ID: Added CoreFoundation bundle plugin support to support library bundle plugin code. Also modified plugin types so they allocate a list of pointers rather than a list of structs so that we can reuse the code that generates the pointer types. (Basically now krb5int_open_plugin_dir() can call krb5int_open_plugin() rather than doing nearly the same thing.) Commit By: lxs Revision: 17950 Changed Files: U trunk/src/include/k5-plugin.h U trunk/src/lib/krb5/os/locate_kdc.c U trunk/src/util/support/plugins.c From rt-comment at krbdev.mit.edu Mon Apr 24 17:09:25 2006 From: rt-comment at krbdev.mit.edu (Alexandra Ellwood via RT) Date: Mon, 24 Apr 2006 17:09:25 -0400 (EDT) Subject: [krbdev.mit.edu #3689] CVS Commit In-Reply-To: Message-ID: Updated kadm5 Makefile.ins to autogenerate the kadm5 headers as part of the generate-files-mac build phase. Commit By: lxs Revision: 17951 Changed Files: U trunk/src/lib/kadm5/Makefile.in U trunk/src/lib/kadm5/clnt/Makefile.in U trunk/src/lib/kadm5/srv/Makefile.in From rt-comment at krbdev.mit.edu Mon Apr 24 17:10:38 2006 From: rt-comment at krbdev.mit.edu (Alexandra Ellwood via RT) Date: Mon, 24 Apr 2006 17:10:38 -0400 (EDT) Subject: [krbdev.mit.edu #3690] CVS Commit In-Reply-To: Message-ID: Generate rpc includes as part of the generate-files-mac target. Commit By: lxs Revision: 17952 Changed Files: U trunk/src/lib/rpc/Makefile.in From rt-comment at krbdev.mit.edu Tue Apr 25 20:47:01 2006 From: rt-comment at krbdev.mit.edu ( eBay via RT) Date: Tue, 25 Apr 2006 20:47:01 -0400 (EDT) Subject: [krbdev.mit.edu #3694] Question about your item In-Reply-To: Message-ID:

    eBay sent this message to you.
    Your registered name is included to show this message originated from eBay. Learn more.
    Question about Item -- Respond Now eBay
    eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will not reach the eBay member. Use the Respond Now button below to respond to this message.
     Question from elliot290t
    Item: (6831805721)
    This message was sent while the listing was active.
    barnsley1105 is a potential buyer.
    elliot290t( 5)
    Positive Feedback: 100%
    Member Since: 10-May-99

    Hi,

    i have sent your item today,please let me know when you will get it ....and please don`t forgot to leave my feedback

    Thanks
    Respond to this question in My Messages.
    Respond Now
    Item number: 6831805721
    End date: 23-Jan-06 18:56:12 BST

     

    View item description:
    htps://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=6436472319&sspagename=ADME:B:AAQ:UK:1

    Thank you for using eBay
    http://www.ebay.co.uk/
    Marketplace Safety Tip Marketplace Safety Tip
    If this message is an offer to sell an item without winning it on the eBay Web site (including Second Chance Offers sent through My Messages) please do not respond to the sender. These external transactions are unsafe and not covered by eBay purchase protection programmes.

    Never pay for your eBay item through instant wire transfer services such as Western Union or MoneyGram. These payment methods are unsafe when paying someone you do not know.
    Is this email inappropriate? Does it breach eBay policy? Help protect the community by reporting it.
    This email appears in the language of the eBay site where you are registered.
    Learn how you can protect yourself from spoof (fake) emails at:
    http://pages.ebay.co.uk/education/spooftutorial
    This eBay notice was sent on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
    See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
    Privacy Policy: http://pages.ebay.co.uk/help/policies/privacy-policy.html
    User Agreement: http://pages.ebay.co.uk/help/policies/user-agreement.html
    Copyright © 2006 eBay, Inc. All Rights Reserved.
    Designated trademarks and brands are the property of their respective owners.
    eBay and the eBay logo are registered trademarks or trademarks of eBay, Inc.

    From rt-comment at krbdev.mit.edu Wed Apr 26 00:09:48 2006 From: rt-comment at krbdev.mit.edu (johnsontbm@yahoo.com.my via RT) Date: Wed, 26 Apr 2006 00:09:48 -0400 (EDT) Subject: [krbdev.mit.edu #3696] RE: In-Reply-To: Message-ID: Dear Friend, As you read this, I don't want you to feel sorry for me, because, I believe everyone will die someday. My name is Johnson Turbman a merchant in Dubai, in the U.A.E.I have been diagnosed with esophageal cancer. It has defiled all forms of medical treatment, and right now I have only about a few months to live, according to medical experts. I have not particularly lived my life so well, as I never really cared for anyone (not even myself) but my business. Though I am very rich, I was never generous, I was always hostile to people and only focused on my business as that was the only thing I cared for. But now I regret all this as I now know that there is more to life than just wanting to have or make all the money in the world. I believe when God gives me a second chance to come to this world I would live my life a different way from how I have lived it. Now that God has called me, I have willed and given most of my property and assets to my immediate and extended family members as well as a few close friends. I want God to be merciful to me and accept my soul so, I have decided to give alms to charity organizations, as I want this to be one of the last good deeds I do on earth. So far, I have distributed money to some charity organizations in the U.A.E, Algeria and Malaysia. Now that my health has deteriorated so badly, I cannot do this myself anymore. I once asked members of my family to close one of my accounts and distribute the money which I have there to charity organization in Bulgaria and Pakistan; they refused and kept the money to themselves. Hence, I do not trust them anymore, as they seem not to be contended with what I have left for them. The last of my money which no one knows of is the huge cash deposit of eighteen million United State Dollars ($18, 000, 000, 00) that I have with a finance/Security [Global Trust Security & Finance Company] . I will want you to help me collect this deposit and dispatched it to charity organizations. I have set aside 10% for you and for your time. God be with you. Johnson Turbman. From rt-comment at krbdev.mit.edu Wed Apr 26 09:02:05 2006 From: rt-comment at krbdev.mit.edu (Public Submitter via RT) Date: Wed, 26 Apr 2006 09:02:05 -0400 (EDT) Subject: [krbdev.mit.edu #3697] kadmin hangs indefinitely when admin princ has escaped chars In-Reply-To: Message-ID: kadmin hangs indefinitely when an admin principal contains escaped '@'s or '\'s. bash-3.00# /usr/local/bin/kinit 'pop\@home/admin' Password for pop\@home/admin at ACME.COM: bash-3.00# /usr/local/sbin/kadmin I've attached a suggested fix. From rt-comment at krbdev.mit.edu Wed Apr 26 17:00:41 2006 From: rt-comment at krbdev.mit.edu (The RT System itself via RT) Date: Wed, 26 Apr 2006 17:00:41 -0400 (EDT) Subject: [krbdev.mit.edu #3699] [PATCH] add support to kadm5 for removing old kvnos In-Reply-To: Message-ID: >From krb5-bugs-incoming-bounces at PCH.mit.edu Wed Apr 26 17:00:37 2006 Received: from pch.mit.edu (PCH.MIT.EDU [18.7.21.90]) by krbdev.mit.edu (8.9.3p2) with ESMTP id RAA28300; Wed, 26 Apr 2006 17:00:37 -0400 (EDT) Received: from pch.mit.edu (pch.mit.edu [127.0.0.1]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k3QL06iv023228 for ; Wed, 26 Apr 2006 17:00:06 -0400 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k3QGegFZ009513 for ; Wed, 26 Apr 2006 12:40:42 -0400 Received: from srvr22.engin.umich.edu (srvr22.engin.umich.edu [141.213.75.21]) by pacific-carrier-annex.mit.edu (8.13.6/8.9.2) with ESMTP id k3QGeZSh027805 for ; Wed, 26 Apr 2006 12:40:35 -0400 (EDT) Received: from gx620.engin.umich.edu (IDENT:U2FsdGVkX1+S5MucdlBM4ubgaa0dIv7ZYm7NgtjezZ4 at gx620.engin.umich.edu [141.213.40.58]) by srvr22.engin.umich.edu (8.13.6/8.13.6) with ESMTP id k3QGeY1x000780 for ; Wed, 26 Apr 2006 12:40:35 -0400 (EDT) Received: (from wingc at localhost) by gx620.engin.umich.edu (8.13.6/8.13.6/Submit) id k3QGeX9g012128; Wed, 26 Apr 2006 12:40:33 -0400 Date: Wed, 26 Apr 2006 12:40:33 -0400 Message-Id: <200604261640.k3QGeX9g012128 at gx620.engin.umich.edu> To: krb5-bugs at mit.edu Subject: [PATCH] add support to kadm5 for removing old kvnos From: wingc at engin.umich.edu X-send-pr-version: 3.99 X-Spam-Score: -1.638 X-Spam-Flag: NO X-Scanned-By: MIMEDefang 2.42 X-Mailman-Approved-At: Wed, 26 Apr 2006 16:55:53 -0400 X-BeenThere: krb5-bugs-incoming at mailman.mit.edu X-Mailman-Version: 2.1.6 Precedence: list Reply-To: wingc at engin.umich.edu Sender: krb5-bugs-incoming-bounces at PCH.mit.edu Errors-To: krb5-bugs-incoming-bounces at PCH.mit.edu >Submitter-Id: net >Originator: Christopher Allen Wing >Organization: University of Michigan - CAEN >Confidential: no >Synopsis: [PATCH] add support to kadm5 for removing old kvnos >Severity: non-critical >Priority: low >Category: krb5-admin >Class: change-request >Release: 1.4.3 >Environment: System: any Architecture: any >Description: In krb5-1.4.3, there is no way to remove old kvnos for a principal whose password was changed using the -keepold option in kadmin. This is of interest when rekeying the TGS key as per the kadmin man page: kadmin: cpw -randkey -keepold krbtgt/REALM.NAME Attached is a patch against 1.4.3 which adds a new kadm5 RPM called 'flushkeys' to remove old kvnos. The patch does the following: 1. define FLUSHKEYS_PRINCIPAL kadm5 RPC (#22) 2. add kadm5_flushkeys_principal() API to libkadm5clnt and libkadm5srv 3. hook up support in kadmind, using the 'setkey' ACL permission (seemed reasonable) 4. add 'flushkeys' command to kadmin client 5. update man pages and documentation Does this seem reasonable? The FLUSHKEYS_PRINCIPAL RPC just removes all keys for a principal which are older than the current max kvno. If all keys have the same kvno then it does nothing. As far as I can guess, this would only be needed for rekeying the TGS key, which can be done (with the patch) as follows: kadmin: cpw -randkey -keepold krbtgt/REALM (now wait until all previously issued TGTs have expired) kadmin: flushkeys krbtgt/REALM (this removes the old kvnos for the TGS key) All other service principals should be able to be rekeyed by doing a regular 'ktadd' and storing the new keys into the application server's keytab along with the old kvnos. The old kvnos shouldn't have to stay in the KDC database for any reason, right? TGS rekeying isn't too common, but it is necessary e.g. when upgrading encryption types on an existing krb5 realm. It would be nice to handle this gracefully without hacks like manually editing the old kvnos out of the database via a dump. I can re-do the patch against the latest CVS code if the patch is undesirable for 1.4 but would be considered for 1.5. >How-To-Repeat: N/A >Fix: diff -uNr krb5-1.4.3.orig/doc/admin.texinfo krb5-1.4.3/doc/admin.texinfo --- krb5-1.4.3.orig/doc/admin.texinfo 2004-06-10 17:46:01.000000000 -0400 +++ krb5-1.4.3/doc/admin.texinfo 2006-04-25 10:04:49.000000000 -0400 @@ -1861,6 +1861,32 @@ explicitly setting the kvno with the @samp{-kvno} option. See @ref{Cross-realm Authentication} for more details. + at node Removing a Principal's Old Keys + at node Removing a Principal's Old Keys + +After rekeying a TGS principal by using the @code{change_password} +command with @b{-keepold} option, you should remove the old keys once +all credentials issued with the old kvno have expired. This is done +using the kadmin @code{flush_old_keys} command, which requires the +``setkey'' administrative privilege. The syntax is: + + at smallexample + at b{flush_old_keys} @i{principal} + at end smallexample + + at noindent @code{flush_old_keys} has the alias @code{flushkeys}. For +example: + + at smallexample + at group + at b{kadmin:} flushkeys krbtgt/@value{PRIMARYREALM} + at b{Are you sure you want to remove old keys for the principal +"krbtgt/@value{PRIMARYREALM}@@@value{PRIMARYREALM}"? (yes/no):} yes + at b{Old keys for principal "krbtgt/@value{PRIMARYREALM}@@@value{PRIMARYREALM}" removed. +kadmin:} + at end group + at end smallexample + @node Deleting Principals, Changing Passwords, Adding or Modifying Principals, Principals @subsection Deleting Principals @@ -1917,9 +1943,11 @@ @ref{Salts} for possible values. @item @b{-keepold} -Keeps the previous kvno's keys around. There is no easy way to delete -the old keys, and this flag is usually not necessary except perhaps for -TGS keys. Don't use this flag unless you know what you're doing. +Keeps the previous kvno's keys around. This is useful when rekeying a +TGS principal so that you do not cause problems for clients with +existing credentials of the older kvno. The @code{flush_old_keys} +command can then be used to remove the old keys at a later time (e.g., +after all previously issued credentials have expired). @end table diff -uNr krb5-1.4.3.orig/src/kadmin/cli/kadmin.c krb5-1.4.3/src/kadmin/cli/kadmin.c --- krb5-1.4.3.orig/src/kadmin/cli/kadmin.c 2005-03-22 18:53:59.000000000 -0500 +++ krb5-1.4.3/src/kadmin/cli/kadmin.c 2006-04-25 09:43:57.000000000 -0400 @@ -575,6 +575,53 @@ return; } +void kadmin_flushkeys(argc, argv) + int argc; + char *argv[]; +{ + kadm5_ret_t retval; + krb5_principal princ; + char *canon; + char reply[5]; + + if (argc != 2) { + fprintf(stderr, "usage: flush_old_keys principal\n"); + return; + } + retval = kadmin_parse_name(argv[1], &princ); + if (retval) { + com_err("flush_old_keys", retval, "while parsing principal name"); + return; + } + retval = krb5_unparse_name(context, princ, &canon); + if (retval) { + com_err("flush_old_keys", retval, + "while canonicalizing principal"); + krb5_free_principal(context, princ); + return; + } + + printf("Are you sure you want to remove old keys for the principal \"%s\"? (yes/no): ", canon); + fgets(reply, sizeof (reply), stdin); + if (strcmp("yes\n", reply)) { + fprintf(stderr, "Principal \"%s\" unchanged\n", canon); + free(canon); + krb5_free_principal(context, princ); + return; + } + retval = kadm5_flushkeys_principal(handle, princ); + krb5_free_principal(context, princ); + if (retval) { + com_err("flush_old_keys", retval, + "while processing principal \"%s\"", canon); + free(canon); + return; + } + printf("Old keys for principal \"%s\" removed.\n", canon); + free(canon); + return; +} + void kadmin_cpw(argc, argv) int argc; char *argv[]; diff -uNr krb5-1.4.3.orig/src/kadmin/cli/kadmin_ct.ct krb5-1.4.3/src/kadmin/cli/kadmin_ct.ct --- krb5-1.4.3.orig/src/kadmin/cli/kadmin_ct.ct 2002-10-08 16:20:29.000000000 -0400 +++ krb5-1.4.3/src/kadmin/cli/kadmin_ct.ct 2006-04-25 09:43:57.000000000 -0400 @@ -38,6 +38,9 @@ request kadmin_cpw, "Change password", change_password, cpw; +request kadmin_flushkeys, "Flush old kvnos for a principal", + flush_old_keys, flushkeys; + request kadmin_getprinc, "Get principal", get_principal, getprinc; diff -uNr krb5-1.4.3.orig/src/kadmin/cli/kadmin.h krb5-1.4.3/src/kadmin/cli/kadmin.h --- krb5-1.4.3.orig/src/kadmin/cli/kadmin.h 2004-05-30 03:27:32.000000000 -0400 +++ krb5-1.4.3/src/kadmin/cli/kadmin.h 2006-04-25 09:43:57.000000000 -0400 @@ -36,6 +36,7 @@ extern void kadmin_lock(int argc, char *argv[]); extern void kadmin_unlock(int argc, char *argv[]); extern void kadmin_delprinc(int argc, char *argv[]); +extern void kadmin_flushkeys(int argc, char *argv[]); extern void kadmin_cpw(int argc, char *argv[]); extern void kadmin_addprinc(int argc, char *argv[]); extern void kadmin_modprinc(int argc, char *argv[]); diff -uNr krb5-1.4.3.orig/src/kadmin/cli/kadmin.M krb5-1.4.3/src/kadmin/cli/kadmin.M --- krb5-1.4.3.orig/src/kadmin/cli/kadmin.M 2005-03-22 18:53:59.000000000 -0500 +++ krb5-1.4.3/src/kadmin/cli/kadmin.M 2006-04-25 12:01:58.000000000 -0400 @@ -403,6 +403,32 @@ .RE .fi .TP +\fBflush_old_keys\fP \fIprincipal\fP +removes keys with old kvnos for the specified principal. This command +always prompts for confirmation before performing the operation. This +command requires the +.I setkey +privilege. If all keys have the same kvno, then this command has no +effect. Aliased +to +.BR flushkeys . +.sp +.nf +.RS +.TP +EXAMPLE: +kadmin: flushkeys krbtgt/BLEEP.COM +Are you sure you want to remove old keys for the principal +"krbtgt/BLEEP.COM at BLEEP.COM"? (yes/no): yes +Old keys for principal krbtgt/BLEEP.COM at BLEEP.COM removed. +kadmin: +.TP +ERRORS: +KADM5_AUTH_SETKEY (reequires "setkey" privilege) +KADM5_UNK_PRINC (principal does not exist) +.RE +.fi +.TP \fBmodify_principal\fP [\fIoptions\fP] \fIprincipal\fP modifies the specified principal, changing the fields as specified. The options are as above for @@ -454,10 +480,12 @@ daemons earlier than krb5\-1.2. .TP \fB\-keepold \fP -Keeps the previous kvno's keys around. There is no -easy way to delete the old keys, and this flag is usually not -necessary except perhaps for TGS keys. Don't use this flag unless you -know what you're doing. +Keeps the previous kvno's keys around. This is usually not necessary +unless you are rekeying a TGS principal. After rekeying a TGS +principal, wait for a sufficient length of time such that all previously +issued credentials have expired, and then use the +.BR flush_old_keys +command to remove the old keys. .nf .TP EXAMPLE: @@ -789,9 +817,3 @@ .SH BUGS .PP Command output needs to be cleaned up. - -There is no way to delete a key kept around from a "\-keepold" option -to a password-changing command, other than to do a password change -without the "\-keepold" option, which will of course cause problems if -the key is a TGS key. There will be more powerful key-manipulation -commands in the future. diff -uNr krb5-1.4.3.orig/src/kadmin/server/kadm_rpc_svc.c krb5-1.4.3/src/kadmin/server/kadm_rpc_svc.c --- krb5-1.4.3.orig/src/kadmin/server/kadm_rpc_svc.c 2004-06-15 23:11:54.000000000 -0400 +++ krb5-1.4.3/src/kadmin/server/kadm_rpc_svc.c 2006-04-25 09:43:57.000000000 -0400 @@ -60,6 +60,7 @@ dpol_arg delete_policy_1_arg; mpol_arg modify_policy_1_arg; gpol_arg get_policy_1_arg; + flushkeys_arg flushkeys_principal_1_arg; setkey_arg setkey_principal_1_arg; setv4key_arg setv4key_principal_1_arg; cprinc3_arg create_principal3_1_arg; @@ -212,6 +213,12 @@ local = (char *(*)()) setkey_principal3_1_svc; break; + case FLUSHKEYS_PRINCIPAL: + xdr_argument = xdr_flushkeys_arg; + xdr_result = xdr_generic_ret; + local = (char *(*)()) flushkeys_principal_1_svc; + break; + default: krb5_klog_syslog(LOG_ERR, "Invalid KADM5 procedure number: %s, %d", inet_ntoa(rqstp->rq_xprt->xp_raddr.sin_addr), diff -uNr krb5-1.4.3.orig/src/kadmin/server/server_stubs.c krb5-1.4.3/src/kadmin/server/server_stubs.c --- krb5-1.4.3.orig/src/kadmin/server/server_stubs.c 2004-08-20 14:45:30.000000000 -0400 +++ krb5-1.4.3/src/kadmin/server/server_stubs.c 2006-04-25 09:43:57.000000000 -0400 @@ -786,6 +786,67 @@ } generic_ret * +flushkeys_principal_1_svc(flushkeys_arg *arg, struct svc_req *rqstp) +{ + static generic_ret ret; + char *prime_arg; + gss_buffer_desc client_name, + service_name; + OM_uint32 minor_stat; + kadm5_server_handle_t handle; + + xdr_free(xdr_generic_ret, &ret); + + if ((ret.code = new_server_handle(arg->api_version, rqstp, &handle))) + return &ret; + + if ((ret.code = check_handle((void *)handle))) { + free_server_handle(handle); + return &ret; + } + + ret.api_version = handle->api_version; + + if (setup_gss_names(rqstp, &client_name, &service_name) < 0) { + ret.code = KADM5_FAILURE; + return &ret; + } + if (krb5_unparse_name(handle->context, arg->princ, &prime_arg)) { + ret.code = KADM5_BAD_PRINCIPAL; + return &ret; + } + + /* + * For now, use the same ACL and error codes as setkey; this seems + * reasonable. + */ + if (!(CHANGEPW_SERVICE(rqstp)) && + kadm5int_acl_check(handle->context, rqst2name(rqstp), + ACL_SETKEY, arg->princ, NULL)) { + ret.code = kadm5_flushkeys_principal((void *)handle, arg->princ); + } else { + krb5_klog_syslog(LOG_NOTICE, LOG_UNAUTH, "kadm5_flushkeys_principal", + prime_arg, client_name.value, service_name.value, + inet_ntoa(rqstp->rq_xprt->xp_raddr.sin_addr)); + ret.code = KADM5_AUTH_SETKEY; + } + + if(ret.code != KADM5_AUTH_SETKEY) { + krb5_klog_syslog(LOG_NOTICE, LOG_DONE, "kadm5_flushkeys_principal", + prime_arg, ((ret.code == 0) ? "success" : + error_message(ret.code)), + client_name.value, service_name.value, + inet_ntoa(rqstp->rq_xprt->xp_raddr.sin_addr)); + } + + free_server_handle(handle); + free(prime_arg); + gss_release_buffer(&minor_stat, &client_name); + gss_release_buffer(&minor_stat, &service_name); + return &ret; +} + +generic_ret * setv4key_principal_1_svc(setv4key_arg *arg, struct svc_req *rqstp) { static generic_ret ret; diff -uNr krb5-1.4.3.orig/src/lib/kadm5/admin.h krb5-1.4.3/src/lib/kadm5/admin.h --- krb5-1.4.3.orig/src/lib/kadm5/admin.h 2005-03-22 18:53:59.000000000 -0500 +++ krb5-1.4.3/src/lib/kadm5/admin.h 2006-04-25 09:43:57.000000000 -0400 @@ -392,6 +392,8 @@ krb5_keyblock **keyblocks, int *n_keys); #endif +kadm5_ret_t kadm5_flushkeys_principal(void *server_handle, + krb5_principal principal); kadm5_ret_t kadm5_setv4key_principal(void *server_handle, krb5_principal principal, krb5_keyblock *keyblock); diff -uNr krb5-1.4.3.orig/src/lib/kadm5/admin_xdr.h krb5-1.4.3/src/lib/kadm5/admin_xdr.h --- krb5-1.4.3.orig/src/lib/kadm5/admin_xdr.h 2001-07-25 15:02:29.000000000 -0400 +++ krb5-1.4.3/src/lib/kadm5/admin_xdr.h 2006-04-25 09:43:57.000000000 -0400 @@ -35,6 +35,7 @@ bool_t xdr_rprinc_arg(XDR *xdrs, rprinc_arg *objp); bool_t xdr_chpass_arg(XDR *xdrs, chpass_arg *objp); bool_t xdr_chpass3_arg(XDR *xdrs, chpass3_arg *objp); +bool_t xdr_flushkeys_arg(XDR *xdrs, flushkeys_arg *objp); bool_t xdr_setv4key_arg(XDR *xdrs, setv4key_arg *objp); bool_t xdr_setkey_arg(XDR *xdrs, setkey_arg *objp); bool_t xdr_setkey3_arg(XDR *xdrs, setkey3_arg *objp); diff -uNr krb5-1.4.3.orig/src/lib/kadm5/clnt/client_principal.c krb5-1.4.3/src/lib/kadm5/clnt/client_principal.c --- krb5-1.4.3.orig/src/lib/kadm5/clnt/client_principal.c 2004-06-15 23:11:54.000000000 -0400 +++ krb5-1.4.3/src/lib/kadm5/clnt/client_principal.c 2006-04-25 11:19:23.000000000 -0400 @@ -356,6 +356,25 @@ } kadm5_ret_t +kadm5_flushkeys_principal(void *server_handle, krb5_principal principal) +{ + flushkeys_arg arg; + generic_ret *r; + kadm5_server_handle_t handle = server_handle; + + CHECK_HANDLE(server_handle); + + if(principal == NULL) + return EINVAL; + arg.princ = principal; + arg.api_version = handle->api_version; + r = flushkeys_principal_1(&arg, handle->clnt); + if(r == NULL) + eret(); + return r->code; +} + +kadm5_ret_t kadm5_setv4key_principal(void *server_handle, krb5_principal princ, krb5_keyblock *keyblock) diff -uNr krb5-1.4.3.orig/src/lib/kadm5/clnt/client_rpc.c krb5-1.4.3/src/lib/kadm5/clnt/client_rpc.c --- krb5-1.4.3.orig/src/lib/kadm5/clnt/client_rpc.c 2001-02-18 17:58:36.000000000 -0500 +++ krb5-1.4.3/src/lib/kadm5/clnt/client_rpc.c 2006-04-25 09:43:57.000000000 -0400 @@ -137,6 +137,20 @@ } generic_ret * +flushkeys_principal_1(argp, clnt) + flushkeys_arg *argp; + CLIENT *clnt; +{ + static generic_ret res; + + memset((char *)&res, 0, sizeof(res)); + if (clnt_call(clnt, FLUSHKEYS_PRINCIPAL, xdr_flushkeys_arg, argp, xdr_generic_ret, &res, TIMEOUT) != RPC_SUCCESS) { + return (NULL); + } + return (&res); +} + +generic_ret * setv4key_principal_1(argp, clnt) setv4key_arg *argp; CLIENT *clnt; diff -uNr krb5-1.4.3.orig/src/lib/kadm5/clnt/libkadm5clnt.exports krb5-1.4.3/src/lib/kadm5/clnt/libkadm5clnt.exports --- krb5-1.4.3.orig/src/lib/kadm5/clnt/libkadm5clnt.exports 2004-06-30 16:30:54.000000000 -0400 +++ krb5-1.4.3/src/lib/kadm5/clnt/libkadm5clnt.exports 2006-04-25 09:43:57.000000000 -0400 @@ -32,6 +32,7 @@ kadm5_delete_principal kadm5_destroy kadm5_flush +kadm5_flushkeys_principal kadm5_free_config_params kadm5_free_key_data kadm5_free_name_list diff -uNr krb5-1.4.3.orig/src/lib/kadm5/kadm_rpc.h krb5-1.4.3/src/lib/kadm5/kadm_rpc.h --- krb5-1.4.3.orig/src/lib/kadm5/kadm_rpc.h 2001-02-18 18:00:08.000000000 -0500 +++ krb5-1.4.3/src/lib/kadm5/kadm_rpc.h 2006-04-25 09:43:57.000000000 -0400 @@ -91,6 +91,13 @@ typedef struct chpass3_arg chpass3_arg; bool_t xdr_chpass3_arg(); +struct flushkeys_arg { + krb5_ui_4 api_version; + krb5_principal princ; +}; +typedef struct flushkeys_arg flushkeys_arg; +bool_t xdr_flushkeys_arg(); + struct setv4key_arg { krb5_ui_4 api_version; krb5_principal princ; @@ -332,4 +339,9 @@ struct svc_req *rqstp); extern generic_ret *setkey_principal3_1(setkey3_arg *argp, CLIENT *clnt); +#define FLUSHKEYS_PRINCIPAL ((krb5_ui_4) 22) +extern generic_ret *flushkeys_principal_1_svc(flushkeys_arg *arg, + struct svc_req *rqstp); +extern generic_ret *flushkeys_principal_1(flushkeys_arg *argp, CLIENT *clnt); + #endif /* __KADM_RPC_H__ */ diff -uNr krb5-1.4.3.orig/src/lib/kadm5/kadm_rpc_xdr.c krb5-1.4.3/src/lib/kadm5/kadm_rpc_xdr.c --- krb5-1.4.3.orig/src/lib/kadm5/kadm_rpc_xdr.c 2004-06-25 19:23:36.000000000 -0400 +++ krb5-1.4.3/src/lib/kadm5/kadm_rpc_xdr.c 2006-04-25 09:43:57.000000000 -0400 @@ -669,6 +669,18 @@ } bool_t +xdr_flushkeys_arg(XDR *xdrs, flushkeys_arg *objp) +{ + if (!xdr_ui_4(xdrs, &objp->api_version)) { + return (FALSE); + } + if (!xdr_krb5_principal(xdrs, &objp->princ)) { + return (FALSE); + } + return (TRUE); +} + +bool_t xdr_setv4key_arg(XDR *xdrs, setv4key_arg *objp) { unsigned int n_keys = 1; diff -uNr krb5-1.4.3.orig/src/lib/kadm5/srv/libkadm5srv.exports krb5-1.4.3/src/lib/kadm5/srv/libkadm5srv.exports --- krb5-1.4.3.orig/src/lib/kadm5/srv/libkadm5srv.exports 2004-08-21 12:59:47.000000000 -0400 +++ krb5-1.4.3/src/lib/kadm5/srv/libkadm5srv.exports 2006-04-25 09:43:57.000000000 -0400 @@ -31,6 +31,7 @@ kadm5_delete_principal kadm5_destroy kadm5_flush +kadm5_flushkeys_principal kadm5_free_config_params kadm5_free_key_data kadm5_free_name_list @@ -143,6 +144,7 @@ xdr_cprinc_arg xdr_dpol_arg xdr_dprinc_arg +xdr_flushkeys_arg xdr_generic_ret xdr_getprivs_ret xdr_gpol_arg diff -uNr krb5-1.4.3.orig/src/lib/kadm5/srv/svr_principal.c krb5-1.4.3/src/lib/kadm5/srv/svr_principal.c --- krb5-1.4.3.orig/src/lib/kadm5/srv/svr_principal.c 2004-12-20 16:16:20.000000000 -0500 +++ krb5-1.4.3/src/lib/kadm5/srv/svr_principal.c 2006-04-25 11:24:50.000000000 -0400 @@ -102,6 +102,22 @@ free(data); } +/* This is in lib/kdb/kdb_cpw.c, but is static */ +static int get_key_data_kvno(context, count, data) + krb5_context context; + int count; + krb5_key_data * data; +{ + int i, kvno; + /* Find last key version number */ + for (kvno = i = 0; i < count; i++) { + if (kvno < data[i].key_data_kvno) { + kvno = data[i].key_data_kvno; + } + } + return(kvno); +} + kadm5_ret_t kadm5_create_principal(void *server_handle, kadm5_principal_ent_t entry, long mask, @@ -1521,6 +1537,89 @@ return ret; } +kadm5_ret_t +kadm5_flushkeys_principal(void *server_handle, krb5_principal principal) + +{ + krb5_db_entry kdb; + osa_princ_ent_rec adb; + krb5_key_data *key_data; + int key_data_count; + int kvno, oldkeys = 0; + int i, ret; + kadm5_server_handle_t handle = server_handle; + + CHECK_HANDLE(server_handle); + + if (principal == NULL) + return EINVAL; + if (hist_princ && /* this will be NULL when initializing the databse */ + ((krb5_principal_compare(handle->context, + principal, hist_princ)) == TRUE)) + return KADM5_PROTECT_PRINCIPAL; + + if ((ret = kdb_get_entry(handle, principal, &kdb, &adb))) + return(ret); + + /* First save the old keydata */ + kvno = get_key_data_kvno(handle->context, kdb.n_key_data, kdb.key_data); + key_data_count = kdb.n_key_data; + key_data = kdb.key_data; + + /* See if there are any old keys */ + for (i = 0; i < key_data_count; i++) { + if (key_data[i].key_data_kvno != kvno) { + oldkeys = 1; + break; + } + } + + /* do nothing if all keys have the same kvno */ + if (!oldkeys) { + ret = KADM5_OK; + goto done; + } + + /* otherwise remove the old keys */ + kdb.key_data = NULL; + kdb.n_key_data = 0; + + for (i = 0; i < key_data_count; i++) { + if (key_data[i].key_data_kvno == kvno) { + if ((ret = krb5_dbe_create_key_data(handle->context, &kdb))) { + cleanup_key_data(handle->context, kdb.n_key_data, kdb.key_data); + break; + } + /* We should decrypt/re-encrypt the data to use the same mkvno*/ + kdb.key_data[kdb.n_key_data - 1] = key_data[i]; + memset(&key_data[i], 0, sizeof(krb5_key_data)); + } + } + + if (ret) { + goto done; + } + + /* free old keys */ + cleanup_key_data(handle->context, key_data_count, key_data); + + /* + * We don't update any admin data for the principal such as: + * kdb.attributes (KRB5_KDB_REQUIRES_PWCHANGE), kdb.pw_expiration, + * or the time of last password change. This is because we haven't + * "changed" the default keys (those with max kvno). + */ + + if ((ret = kdb_put_entry(handle, &kdb, &adb))) + goto done; + + ret = KADM5_OK; +done: + kdb_free_entry(handle, &kdb, &adb); + + return ret; +} + /* * kadm5_setv4key_principal: * From rt-comment at krbdev.mit.edu Wed Apr 26 18:21:25 2006 From: rt-comment at krbdev.mit.edu ("service@intl.paypal.com" via RT) Date: Wed, 26 Apr 2006 18:21:25 -0400 (EDT) Subject: [krbdev.mit.edu #3701] Your account has been flagged! In-Reply-To: Message-ID: PayPal
    PayPal April 2006

    Manage Your Money in 2006

    PayPal Security Measures.

    It's easy to track your expenses and stay organized when you use PayPal. All your incoming and outgoing payments are tracked on your Account History page. See sample.


    Shop without sharing your financial information. PayPal. Privacy built in. Learn more.
    Your account has been flagged!
    PayPal Security Measures.

    Dear PayPal Member,

    Your account has been randomly flagged in our system as a part of our routine security measures. This is a must to ensure that only you have access and use of your Paypal account and to ensure a safe PayPal experience. We require all flagged accounts to verify their information on file with us. To verify your information at this time, please visit our secure server webform by clicking the hyperlink below:

    Click here to verify your Information



    If you choose to ignore our request, you leave us no choice but to temporarily suspend your account.
    Thank you for your patience as we work together to protect your account.
     Your PayPal Account in Action


    		 Use PayPal to purchase with cash.
    		Use PayPal to purchase with cash.
    When you link your bank account to your PayPal account, you can fund your purchases with the money from your bank account. So get Verified—it's just like spending cash. Learn more.




    		Make FREE calls around the world.
    		Make FREE calls around the world.
    Reduce your phone bills—with Skype software you can talk to other Skype users all over the world for free. Or make low-cost calls to any landline or cell phone with SkypeOutTM services you purchase with PayPal. Learn more.




    		Pay or get paid back with PayPal.
    		Pay or get paid back with PayPal.
    Start off the year with a clean slate. Easily pay your family and friends what you owe them, or request money that they owe you. See how easy it is to send or request money with PayPal.

     Special Offers for PayPal Customers
         
    Dell

    Save 20% on Dell Inspiron Notebooks when you use PayPal. Enter code at checkout: SFW86WKM?16WSL


    		 Cooking.com

    Special Offer—
    Use PayPal and get free Super Saver Shipping on ship-
    ments of $49 or more.


    		 Shoebuy.com

    Save 10% on over 300,000 products. Enter promo code: paysave. Plus Free Shipping, Free Returns, and No Sales Tax.


     Helpful Links: ID Theft Resources | Help Center | PayPal Shops | Password Help
    Please do not replay to this e-mail. To modify your notification preferences, log in to your PayPal account, click the Profile sub-tab, then click the Notifications link under Account Information. Changes may take up to 10 days to be reflected in our mailings. PayPal will not sell or rent any of your personally identifiable information to third parties. For more information about the security of your information, read our Privacy Policy at https://www.paypal.com/privacy.

    Copyright © 2006 PayPal Inc. All rights reserved. Designated trademarks and brands are the property of their respective owners. PayPal is located at 2211 N. First St., San Jose, CA 95131.
    From rt-comment at krbdev.mit.edu Thu Apr 27 15:27:25 2006 From: rt-comment at krbdev.mit.edu (member@ebay.com via RT) Date: Thu, 27 Apr 2006 15:27:25 -0400 (EDT) Subject: [krbdev.mit.edu #3703] Message from eBay Member In-Reply-To: Message-ID:
    Your registered name is included to show this message originated from eBay. Learn more.
    Question about Item -- Respond Now eBay
    eBay sent this message on behalf of an eBay member via My Messages. Responses sent using email will go to the eBay member directly and will include your email address. Click the Respond Now button below ! to send your response via My Messages (your email address will not be included).
     Question from eBay Member: power$seller
    Item: (836499868)
    This message was sent while the listing was active.
    power$seller is a potential buyer.
    Hi,
    Tell me d    o you accept paypal?
    Thank you
    Respond to this question in My Messages.
    Respond Now
    Item Details
    Item number: 8366499868
    End date: 17-Apr-06 18:56:12 BST
    View item description:
    htps://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=8366472868&sspagename=ADME:B:AAQ:UK:1
    Thank you for using eBay
    http://www.ebay.com/
    Marketplace Safety Tip Marketplace Safety Tip
    Always remember to complete your transactions on eBay - it's the safer way to trade.

    Is this message an offer to buy your item directly through email without winning the item on eBay? If so, please help make the eBay marketplace safer by reporting it to us. These external transactions may be unsafe and are against eBay policy. Learn more about trading safely! .
    Is this email inappropriate? Does it breach eBay policy? Help protect the community by reporting it.
    Learn how you can protect yourself from spoof (fake) emails at:
    https://pages.ebay.co.uk/education/spooftutorial
    This eBay notice was sent to labalalume at yahoo.com on behalf of another eBay member through the eBay platform and in accordance with our Privacy Policy. If you would like to receive this email in text format, change your notification preferences.
    See our Privacy Policy and User Agreement if you have questions about eBay's communication policies.
    Privacy Policy: https://pages.ebay.co.uk/help/policies/privacy-policy.html
    User Agreement: https://pages.ebay.co.uk/help/policies/user-agreement.html
    Copyright ? 2005 eBay, Inc. All Rights Reserved.
    Designated trademarks and brands are the property of their respective owners.
    eBay and the eBay logo are registered trademarks or trademarks of eBay, Inc.
    From rt-comment at krbdev.mit.edu Sat Apr 29 03:06:41 2006 From: rt-comment at krbdev.mit.edu (Ken Raeburn via RT) Date: Sat, 29 Apr 2006 03:06:41 -0400 (EDT) Subject: [krbdev.mit.edu #3706] CVS Commit In-Reply-To: Message-ID: The replay lookaside cache includes the sending address, but the krb5 library replay cache does not. So, if the same message arrives from two different source addresses, it is considered a replay by the KDC. If the client isn't receiving the replies for some reason, and the client has multiple addresses it uses to contact different addresses on the KDC (and trying to reach the KDC via both IPv4 and IPv6 is an obvious such case), this can cause errors to be returned by the KDC. * replay.c (krb5_kdc_replay_ent): Remove "addrs" field. (MATCH): Don't check it. (kdc_check_lookaside, kdc_insert_lookaside): Remove "from" argument. * kdc_util.h (kdc_check_lookaside, kdc_insert_lookaside): Update decls. * dispatch.c (dispatch): Update calls. Commit By: raeburn Revision: 17970 Changed Files: U trunk/src/kdc/dispatch.c U trunk/src/kdc/kdc_util.h U trunk/src/kdc/replay.c From rt-comment at krbdev.mit.edu Sat Apr 29 20:17:23 2006 From: rt-comment at krbdev.mit.edu (mailiqkhan@yahoo.co.uk via RT) Date: Sat, 29 Apr 2006 20:17:23 -0400 (EDT) Subject: [krbdev.mit.edu #3708] FROM MR.KHAN In-Reply-To: Message-ID: Good day, I sincerely seek your honest assistance and contribution to this crucial business that is very important to me and if you are not interested in the proposal, please accept my apologies in advance. I am Mr. Iqbal Ahmed Khan, the Managing Director Hong Kong & Shanghai Bancorp HSBC Amanah Finance, London, United Kingdom and the chief executive officer, HSBC Middle East, Dubai, UAE. http://www.middleeast.hsbc.com/hsbc/meregional_wel/board-of-directors In my department I discovered an abandoned sum of 20.5 million dollars in an account that belongs to a foreign customer of my bank who died alongside his wife, Children and other relatives in the Air France concord plane crash bound for New York in their plan for a world cruise. See the link below: http://news.bbc.co.uk/1/hi/world/europe/859479.stm This late customer has an account valued at 20.5 million dollars. Already, the bank has issued a notice for any of his next of kin to come forward and redeem the money or the bank will take over his account. Unfortunately from our investigations and confirmations from his attorney he has no family member to stand in as his next of kin. Since the bank has been unsuccessful in locating the relatives of the deceased for some years now, and with the bank giving a deadline, I now seek your consent to present you as the next of kin of the deceased so that the proceeds of this account valued at 20.5 million dollars could be paid to you and then you and I can share the money. 50% for me, 40% for you and 10% for miscellaneous expenses that might arise. I have been in contact with his attorney who is also a part of this business, who also has all the necessary information that can be used to back up our application. Obviously we need to conclude this business as soon as possible before the money goes into the Bank's Treasury because the HSBC banking law and guideline stipulates that if such fund remains un-claimed for 6 years, the money would be declared unserviceable by the bank particularly and transferred into the Bank's Treasury as un-claimed debt. All I require is your honest co-operation to enable us see this business through. I guarantee that this will be executed under a legitimate arrangement that will protect you from any breach of the law. Trust me; this is a Risk free business relationship. Please send me your full name and address, telephone and fax numbers to enable us discuss further about this transaction. Best regards, Mr.Iqbal Ahmed Khan ________________________________________________________________________ SERVIZIO VOICE: TELEFONA e INVIA SMS dal tuo computer a tariffe vantaggiose! Scopri come telefonare e videochiamare gratis da pc a pc. http://voice.repubblica.it From rt-comment at krbdev.mit.edu Sun Apr 30 12:19:02 2006 From: rt-comment at krbdev.mit.edu ( Mrs Maria Rooney via RT) Date: Sun, 30 Apr 2006 12:19:02 -0400 (EDT) Subject: [krbdev.mit.edu #3710] LOTTO WINNER In-Reply-To: Message-ID: National Lotto Suite 179 1007 West/Zuld, L70 1NL Zwolle Holland (Customer Services) Ref: DEUK/9383/8161/99 Batch: GI/SE12-59 Government Accredited Licensed lottery promoters. International Promotions/Prize Award Department Login to http://lottery.co.uk/res We are please to announce you as one of the 10 lucky winners in the national lottery held on the 25th April, 2006. All 10 winning addresses were randomly selected from a batch of 50,000,000 international emails. Your email address emerged alongside 9 others as a category 2 winner in this year national lotto game draw Consequently, you have therefore been approved for a total pay out of £1,000,000 (one million pounds sterlings) only. In order to avoid unnecessary delays and complications please remember to quote your reference number and batch numbers: 1, Batch 7499-4206-5876 2, Ref: 739801527-Nll 3, lucky numbers 94-1-537-97-31-809 Please note that your lucky winning number falls within our European booklet representative office in Europe as indicated in your play coupon. In view of this, your £1,000,000 would be released to you by any of our payment offices in Europe. To file for your claim, please contact Advocate Patrick cox Tel: +31 -6100- 234 82 Fax: +31-847-545-681 Email:bejesbejescom at netscape.net law & Associates This will enable the office of bejes & asscociates to send the claims application form (A4) to you the Beneficiary.you can confirm your winnings when you LOGIN TO http://lottery.co.uk/res For security reasons, you are advised to keep your winning information confidential till your claims is processed and your money remitted to you in whatever manner you deem fit to claim your prize. This is part of our precautionary measure to avoid double claiming and unwarranted abuse of this program. Please be warned. Remember, all winnings must be claim not later than May 5th, 2006, after this date, unclaimed funds will be returned to the national Lotto CONGRATULATIONS! CALL NOW TO CLAIM YOUR WINNING PRIZE Advocate Patrick cox Tel: +31 -6100- 234 82 Fax: +31-847-545-681 Email:bejesbejescom at netscape.net law & Associates Yours faithfully, Mrs Maria Rooney Online coordinator for THE NATIONAL LOTTERY Sweepstakes International Program.