Summary
The remote host is missing an update to ntop
announced via advisory FEDORA-2009-2805.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update ntop' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-2805
Insight
Update Information:
ls -lh /var/log/ntop/access.log -rw-rw-rw- 1 root root 0 2009-02-04 11:53 /var/log/ntop/access.log Fixed. log world-writable when the --access-log- file option is used. This option is not used in Fedora or Red Hat by default and is not noted in the configuration file. It is, however, noted in the ntop manpage. It would require the root user to add this option to the configuration in order for this file to be created.
ChangeLog:
* Tue Mar 17 2009 Rakesh Pandit - 3.3.8-3
- Fixed world writable accesslog (#490561) - security bug * Tue Mar 3 2009 Peter Vrabec - 3.3.8-2
- invalid certificate fix (#486725)
References
Updated on 2015-03-25