[Cooker] Fw: [suse-security-announce] SuSE Security Announcement - kernel (fwd)
Hi Frank just post things directly to cooker if you feel they are important. The reaction on hte list will show wether you did it right or not, don't worry .-) cu Denis -- - Dr. Denis Havlikhttp://www.ap.univie.ac.at/users/havlik Mandrakesoft||| e-mail: [EMAIL PROTECTED] Quality Assurance (@ @)(private: [EMAIL PROTECTED]) ---oOO--(_)--OOo- -- Forwarded message -- Date: Fri, 19 May 2000 23:15:36 +0200 From: Frank Meurer [EMAIL PROTECTED] Reply-To: Frank Meurer [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Fw: [suse-security-announce] SuSE Security Announcement - kernel (fwd) -- Forwarded message -- Date: Thu, 18 May 2000 20:37:32 +0100 From: bacano [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Fw: [suse-security-announce] SuSE Security Announcement - kernel - Original Message - From: "Marc Heuse" [EMAIL PROTECTED] Sent: Wednesday, May 17, 2000 7:50 PM Subject: [suse-security-announce] SuSE Security Announcement - kernel -BEGIN PGP SIGNED MESSAGE- __ SuSE Security Announcement Package: kernel 2.2.15 Date:Wed, 17 May 2000 18:24:50 GMT Affected SuSE versions: 6.1 - 6.4 Vulnerability Type: bypass ipchains filter rules denial of service SuSE default package: yes Other affected systems: all linux versions using kernel 2.2.x and several stateful firewall packages __ A security hole was discovered in the package mentioned above. Please update as soon as possible or disable the service if you are using this software on your SuSE Linux installation(s). Other Linux distributions or operating systems might be affected as well, please contact your vendor for information about this issue. Please note that we provide this information on an "as-is" basis only. There is no warranty whatsoever and no liability for any direct, indirect or incidental damage arising from this information or the installation of the update package. _ 1. Problem Description The masquerading feature in the Linux kernel has got a vulnerability in the udp and ftp masquerading code which allows arbitary backward connections to be opened. Some denial of service were found. 2. Impact Remote users may bypass ipchains filter rules protecting the internal network. Users can crash the machine. 3. Solution Update the package from our FTP server. Please note that we provide a patched 2.2.14 kernel to ensure stability and not the 2.2.15 kernel. __ Please verify these md5 checksums of the updates before installing: (NOTE: the 6.4 updates fit 6.1 to 6.3 as well) 765e268875a7716f681c14389a1c9b9b ftp://ftp.suse.com/pub/suse/i386/update/6.4/kernel/k_deflt.rpm be6ee213f0cafd4dac5c51a2a8d100f0 ftp://ftp.suse.com/pub/suse/i386/update/6.4/kernel/k_eide.rpm b900eb9f47c94df5cc15721e5f96a58e ftp://ftp.suse.com/pub/suse/i386/update/6.4/kernel/k_i386.rpm 37deca6ee856c3242a13c2a24f32fc7f ftp://ftp.suse.com/pub/suse/i386/update/6.4/d1/lx_suse-2.2.14.SuSE-24.i386.r pm __ You can find updates on our ftp-Server: ftp://ftp.suse.com/pub/suse/i386/update for Intel processors ftp://ftp.suse.com/pub/suse/axp/update for Alpha processors or try the following web pages for a list of mirrors: http://www.suse.de/ftp.html http://www.suse.com/ftp_new.html Our webpage for patches: http://www.suse.de/patches/index.html Our webpage for security announcements: http://www.suse.de/security If you want to report vulnerabilities, please contact [EMAIL PROTECTED] __ SuSE has got two free security mailing list services to which any interested party may subscribe: [EMAIL PROTECTED] - moderated and for general/linux/SuSE security discussions. All SuSE security announcements are sent to this list. [EMAIL PROTECTED] - SuSE's announce-only mailing list. Only SuSE's security annoucements are sent to this list. To subscribe to the list, send a message to: [EMAIL PROTECTED] To remove your address from the list, send a message to: [EMAIL PROTECTED] Send mail to the following for info and FAQ for this list: [EMAIL PROTECTED]
Re: [Cooker] XFree-4.0
You can get the Glide SDK from www.3dfx.com... -Chris On Fri, 19 May 2000, you wrote: I like to rebuild XFree-4.0 by my self. When I do a rpm --rebuild on the XFree86-4.0-6mdk.src.rpm I get error: failed build dependencies: Glide_SDK is needed by XFree86-4.0-6mdk I can't find Gide_SDK anywhere but someone here mus have built XFree86-4 as a src.rpm so can someone point me to Glide_SDK? I think it would be greate if Glide_SDK could be in the contribs /M
Re: [Cooker] Request: FTE-console
On Sat, 20 May 2000, cteg wrote: the current FTE package has only xfte included. fte-console would be nice, fits better with mutt for example. Hi there. Can you point me to fte-console and I'll include it in the package? I'm assuming it's an external add-on? Or is this something that comes with FTE by default and I just haven't included it in the RPM? Thanks for any light you can shed on it. -- [EMAIL PROTECTED], OpenPGP key available on www.keyserver.net Freezer Burn BBS: telnet://bbs.freezer-burn.org . ICQ: 54924721 Webmaster for the Linux Portal Site Freezer Burn: http://www.freezer-burn.org
Re: [Cooker] Request: FTE-console
On Sat, May 20, 2000 at 08:52:47AM -0600, Vincent Danen wrote: On Sat, 20 May 2000, cteg wrote: the current FTE package has only xfte included. fte-console would be nice, fits better with mutt for example. Hi there. Can you point me to fte-console and I'll include it in the package? I'm assuming it's an external add-on? Or is this something that comes with FTE by default and I just haven't included it in the RPM? Thanks for any light you can shed on it. Hi, It's in the tarball. in /src/fte-unix.mak you can specify the targets. It won't be built without. Don't worry, this is not documented. Just tried target vfte (console) from latest tarball but fails for some reason, i hope you have better luck/skills and can get this one compiled. Anyway, i'll try to track that down. Have to look close. Thanks for taking care of that. -cteg -- damn i'm looking good
[Cooker] Beta2 ISO?
Hi there. I want to upgrade my system to the latest beta of 7.1 but on the FTP sites the latest ISO I see is from May 3. That can't be correct, can it? Should I mirror the primary mirror and generate my own ISO or is a more recent ISO hidding somewhere? -- [EMAIL PROTECTED], OpenPGP key available on www.keyserver.net Freezer Burn BBS: telnet://bbs.freezer-burn.org . ICQ: 54924721 Webmaster for the Linux Portal Site Freezer Burn: http://www.freezer-burn.org
[Cooker] Beta2 ISOs: followup
FYI, I mirror the cooker hourly on my system just to keep up to date on some packages (and to help me with building RPMs). Should I just make my ISO from cooker? Is this equivalent to the current 7.1 beta? I guess I'm asking if cooker has become 7.1 beta until 7.1 final is out and it resumes cooking? If so, then life is very easy for me... =) I looked on the FTP sites and don't see anything specifically labelled as Hydrogen or 7.1 which is why I'm thinking maybe cooker is the current beta. Am I right? -- [EMAIL PROTECTED], OpenPGP key available on www.keyserver.net Freezer Burn BBS: telnet://bbs.freezer-burn.org . ICQ: 54924721 Webmaster for the Linux Portal Site Freezer Burn: http://www.freezer-burn.org
Re: [Cooker] Request: FTE-console
On Sat, 20 May 2000, cteg wrote: the current FTE package has only xfte included. fte-console would be nice, fits better with mutt for example. Hi there. Can you point me to fte-console and I'll include it in the package? I'm assuming it's an external add-on? Or is this something that comes with FTE by default and I just haven't included it in the RPM? Thanks for any light you can shed on it. It's in the tarball. in /src/fte-unix.mak you can specify the targets. It won't be built without. Don't worry, this is not documented. Just tried target vfte (console) from latest tarball but fails for some reason, i hope you have better luck/skills and can get this one compiled. Anyway, i'll try to track that down. Have to look close. Thanks for taking care of that. Yeah, I see it won't compile either. Quick question, doesn't cfte work for you? Isn't that the console version? What's the difference between cfte and vfte (I haven't got a clue)? I'll see if there is a newer version and will try to upgrade the RPM to see if that makes a difference. -- [EMAIL PROTECTED], OpenPGP key available on www.keyserver.net Freezer Burn BBS: telnet://bbs.freezer-burn.org . ICQ: 54924721 Webmaster for the Linux Portal Site Freezer Burn: http://www.freezer-burn.org
Re: [Cooker] Request: FTE-console
On Sat, May 20, 2000 at 10:58:48AM -0600, Vincent Danen wrote: Yeah, I see it won't compile either. Quick question, doesn't cfte work for you? Isn't that the console version? What's the difference between cfte and vfte (I haven't got a clue)? I'll see if there is a newer version and will try to upgrade the RPM to see if that makes a difference. cfte is to recompile your configuration. vfte is fte-console. i haven't used vfte in linux before (just on my nt-box at the office, there is a win version of vfte, os/2 as well) and found it would be nice to have just like vim/gvim. It must exist somehow ;) Found a rpm for "conectiva linux" (??), it has all the binaries. Binaries don't work on my system tho. Maybe i can catch the author in #icewm (yeah he is the icewm dude) -cteg -- damn i'm looking good
[Cooker] Website
This isn't related to the Cooker. But could you please check out 161.184.43.136 and tell me what you think. Send suggestions/comments to [EMAIL PROTECTED] It is a website I am working on. All I have finished is the topbar. Thank you. Also if you have the latest Netscape release check it out and tell me if it still looks fine. It works with IE4-5 and Netscape 6PR.. Not sure about Netscape 4.7x thanx. Chris
Re: [Cooker] Website
Looks good from Netscape 4.73, what did you use for the graphics? Mike Chris Edwards wrote: This isn't related to the Cooker. But could you please check out 161.184.43.136 and tell me what you think. Send suggestions/comments to [EMAIL PROTECTED] It is a website I am working on. All I have finished is the topbar. Thank you. Also if you have the latest Netscape release check it out and tell me if it still looks fine. It works with IE4-5 and Netscape 6PR.. Not sure about Netscape 4.7x thanx. Chris -- == Michael Holt [EMAIL PROTECTED] Kirkland, WA == The Penguins are coming!!! ==
Re: [Cooker] Website
Chris Edwards wrote: This isn't related to the Cooker. Which means it shouldn't be here.
[Cooker] Web site
Nice to have one that scales with the browser. Konqueror likes it. BTW, Konqueror crashes with SIGSEGV all over the place _unless_ java and javascript are activated, then it seems to be pretty smooth and even looks at sites that will choke Netscape. Civileme
[Cooker] Problem with xmms-devel
There is a problem with xmms-devel. I tried to rebuild xmms-sheel but during the link I've got undefined error. And with xmms rpms from www.xmms.org, it works fine. -- Thomas Poindessous EpX asso GNU/Linux de l'Epita [EMAIL PROTECTED] http://www.epita.fr/~epx
[Cooker] reiserfs
I have moved my install drive to reiserfs now, is there a possible hack to get the hd install working in that way? I do not have the drive space to move back to ext2, dose someone have instructions on how to get 7.1 to install from a reiserfs partion? -DarkWlf
[Cooker] sparc ipx
anyone have any luck installing mandrake on a sparc ipx box? -DarkWlf
[Cooker] Hey!
I'm new to the list, what is the status and timeframe for the next Mandrake release? and does anyone know the projected release number? ( 7.5 maybe ) and even some highlights of it ( I've totally been out of the loop cause of school and finals and such, sorry about all the newbie questions ) -Riyad
[Cooker] rpm's
Name: nano Relocations: (not relocateable) Version : 0.9.8 Vendor: MandrakeSoft Release : 1mdk Build Date: Sat May 20 12:04:55 2000 Install date: (not installed) Build Host: linux.cyberbytesbbs.com Group : Console/Editors Source RPM: nano-0.9.8-1mdk.src.rpm Size: 166515 License: GPL Packager: John Johnson [EMAIL PROTECTED] URL : http://www.asty.org/nano/ Summary : nano (Nano's ANOther editor) is the editor formerly known as TIP (TIP Isn't Pico). It aims to emulate Pico as closely as possible while also offering a few enhancements. Description : nano (Nano's ANOther editor) is the editor formerly known as TIP (TIP Isn't Pico). It aims to emulate Pico as closely as possible while also offering a few enhancements.
[Cooker] rpm's
Name: nessus Relocations: /usr Version : 1.0.0 Vendor: MandrakeSoft Release : 1mdk Build Date: Sat May 20 12:47:13 2000 Install date: (not installed) Build Host: linux.cyberbytesbbs.com Group : Networking/DaemonsSource RPM: nessus-1.0.0-1mdk.src.rpm Size: 932045 License: GPL Packager: John Johnson [EMAIL PROTECTED] URL : http://www.nessus.org/ Summary : Nessus security scanner Description : Nessus is a free, up-to-date, and full featured remote security scanner for Linux. It is multithreaded, plugin-based, has a nice GTK interface, and currently performs 410 remote security checks. It has powerful reporting capabilities (HTML, LaTeX, ASCII text) and not only points out problems, but suggests a solution for each of them.
[Cooker] rpm's
Name: nmap Relocations: (not relocateable) Version : 2.53 Vendor: MandrakeSoft Release : 1 Build Date: Fri May 19 17:33:02 2000 Install date: (not installed) Build Host: linux.cyberbytesbbs.com Group : Applications/System Source RPM: nmap-2.53-1.src.rpm Size: 750798 License: GPL Packager: John Johnson [EMAIL PROTECTED] URL : http://www.insecure.org/nmap/ Summary : Network exploration tool and security scanner Description : Nmap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), and TCP/IP fingerprinting (remote host operating system identification). Nmap also offers flexible target and port specification, decoy scanning, determination of TCP sequence predictability characteristics, sunRPC scanning, reverse-identd scanning, and more.
Re: [Cooker] Hey!
Riyad Kalla a écrit : I'm new to the list, what is the status and timeframe for the next Mandrake release? and does anyone know the projected release number? ( 7.5 maybe ) freeze time for 7.1. and even some highlights of it ( I've totally been out of the loop cause of school and finals and such, sorry about all the newbie questions ) :-) . Take a look to: http://www.linux-mandrake.com/en/hydrobeta.php3 for 7.1 features ..; cu -Riyad -- --^^/°°\^^-- | Daouda LOemail:[EMAIL PROTECTED] | workin' on KDE-GNOME interoperability
Re: [Cooker] Hey!
- Original Message - From: "Daouda LO" [EMAIL PROTECTED] To: [EMAIL PROTECTED]; "Riyad Kalla" [EMAIL PROTECTED] Sent: Saturday, May 20, 2000 10:43 PM Subject: Re: [Cooker] Hey! Riyad Kalla a écrit : I'm new to the list, what is the status and timeframe for the next Mandrake release? and does anyone know the projected release number? ( 7.5 maybe ) freeze time for 7.1. Rumored for release on June 1st - but I would be glad to wait if it meant fixing some more bugs. Hoyt