Re: Security ERRATA Important: microcode_ctl
Can someone shed some more light on the stability issues that this update addresses? Is there a way to tell if a machine is having these problems? I had just updated my servers and would rather not have to do it again so soon. thanks, Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu On Wed, 17 Jan 2018, Pat Riehecky wrote: Synopsis: Important: microcode_ctl security update Advisory ID: SLSA-2018:0093-1 Issue Date:2018-01-16 CVE Numbers: CVE-2017-5715 -- This update supersedes the previous microcode update provided with the CVE-2017-5715 (Spectre) CPU branch injection vulnerability mitigation. Further testing has uncovered problems with the microcode provided along with the Spectre mitigation that could lead to system instabilities. As a result, this microcode update reverts to the last known good microcode version dated before 03 January 2018. You should contact your hardware provider for the latest microcode updates. IMPORTANT: If you are using Intel Skylake-, Broadwell-, and Haswell-based platforms, obtain and install updated microcode from your hardware vendor immediately. The "Spectre" mitigation requires both an updated kernel and updated microcode from your hardware vendor. -- SL6 x86_64 microcode_ctl-1.17-25.4.el6_9.x86_64.rpm microcode_ctl-debuginfo-1.17-25.4.el6_9.x86_64.rpm microcode_ctl-1.17-20.2.el6_7.x86_64.rpm microcode_ctl-debuginfo-1.17-20.2.el6_7.x86_64.rpm microcode_ctl-1.17-19.2.el6_6.x86_64.rpm microcode_ctl-debuginfo-1.17-19.2.el6_6.x86_64.rpm i386 microcode_ctl-1.17-25.4.el6_9.i686.rpm microcode_ctl-debuginfo-1.17-25.4.el6_9.i686.rpm SL7 x86_64 microcode_ctl-2.1-22.5.el7_4.x86_64.rpm microcode_ctl-debuginfo-2.1-22.5.el7_4.x86_64.rpm microcode_ctl-2.1-16.5.el7_3.x86_64.rpm microcode_ctl-debuginfo-2.1-16.5.el7_3.x86_64.rpm microcode_ctl-2.1-12.el7_2.3.x86_64.rpm microcode_ctl-debuginfo-2.1-12.el7_2.3.x86_64.rpm - Scientific Linux Development Team
Best option for php version 7?
I want to set up a web server with PHP version 7, preferrably 7.1 or newer, which is not available in SL or EPEL. What is the best (i.e. stable and kept up-to-date) place to get it? thanks, Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu
Filesystem package messes with /usr/local
I always thought that /usr/local was defined to be an area left alone by the operating system. For many years, we have made it a symlink to a read-only directory in AFS space. This has worked fine - until now. When I tried to update the "filesystem" package, it failed because it tried to do chmods on (at least) /usr/local/bin and /usr/local/etc. Why is it doing this? Is /usr/local no longer truly local? thanks, Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu
Re: libuser security update for SL 6
Does that mean that 6.1 thru 6.6 will not get the update? Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu On Mon, 27 Jul 2015, Akemi Yagi wrote: On Mon, Jul 27, 2015 at 9:25 AM, peter.c...@stfc.ac.uk wrote: Hello, I wonder if there is any news on the security update on libuser for SL 6? RHEL 6.7 was released a few days ago. I see that the latest libuser package is an update to 6.7. Akemi
Re: SL7x and the 'epel' repo
In that case, I'm thinking that it could be useful to maintain an EPEL mirror that does not get updated between TUV's release and the SL release. I could do that for my own use or it could be a community effort. Thoughts? Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu On Fri, 27 Mar 2015, Akemi Yagi wrote: On Fri, Mar 27, 2015 at 7:47 AM, Steve Gaarder gaar...@math.cornell.edu wrote: Thinking about this some more, I assume that EPEL is actually built against the latest from TUV, so 7.1 in this case. Correct? Yes, that is correct. There is a similar discussion thread on the CentOS mailing list: http://lists.centos.org/pipermail/centos/2015-March/150945.html Akemi
Errata database?
Are the SL Errata available in any sort of machine-parseable form? The Errata page has a nice pretty presentation, but what I'd like is a list of errata, their severity, and what packages are involved, all in a format that I can parse with a Perl script or equivalent. Is such a thing available? thanks, Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu
Re: SL7: Missing texlive-* packages
Here's what I'm working on to provide a full complement of TeX goodies on SL7: I installed the latest TeXlive in a network directory accessible to all my SL7 machines. I am working on creating an RPM that will install symlinks to all the relevant commands etc, and that RPM's spec file will have a provides for everything that the upstream Texlive package provides. In that way I should be able to install RPMs that depend on TeX (e.g. kile) without triggering an install of the upstream packages. Any feedback on this? thanks, Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu
Any experience with the Intel Z87 chipset?
I'm looking at getting some machines based on the Intel Z87 chipset. Has anyone tried SL6 on this? I'm wondering how well the graphics and ethernet work with the stock SL drivers. thanks, Steve Gaarder System Administrator, Dept of Mathematics Cornell University, Ithaca, NY, USA gaar...@math.cornell.edu