Fedora Core 10 FEDORA-2009-2805 (ntop)

The remote host is missing an update to ntop announced via advisory FEDORA-2009-2805.
Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update ntop' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-2805
Update Information: ls -lh /var/log/ntop/access.log -rw-rw-rw- 1 root root 0 2009-02-04 11:53 /var/log/ntop/access.log Fixed. log world-writable when the --access-log- file option is used. This option is not used in Fedora or Red Hat by default and is not noted in the configuration file. It is, however, noted in the ntop manpage. It would require the root user to add this option to the configuration in order for this file to be created. ChangeLog: * Tue Mar 17 2009 Rakesh Pandit - 3.3.8-3 - Fixed world writable accesslog (#490561) - security bug * Tue Mar 3 2009 Peter Vrabec - 3.3.8-2 - invalid certificate fix (#486725)