Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Kevin Chadwick
On Tue, 31 Jan 2012 18:37:20 +0100 Karol Blazewicz wrote: > > It is there. I did a more /FORT rather than grep > > It seems there is a difference here between OpenBSD and Arches more. > > more +/FORT /etc/makepkg.conf works as expected, but indeed searching > while viewing yields 'pattern not fou

Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Karol Blazewicz
On Tue, Jan 31, 2012 at 6:31 PM, Kevin Chadwick wrote: > It is there. I did a more /FORT rather than grep > It seems there is a difference here between OpenBSD and Arches more. more +/FORT /etc/makepkg.conf works as expected, but indeed searching while viewing yields 'pattern not found' for many

Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Kevin Chadwick
On Tue, 31 Jan 2012 17:31:17 + Kevin Chadwick wrote: > Glad I've found this. It seems there is a difference here between > OpenBSD and Arches more. On OpenBSD it searches what's displayed too. I'll use less from now on it's better anyway -- Kc

Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Kevin Chadwick
On Tue, 31 Jan 2012 18:36:54 +0200 Ionut Biru wrote: > > I couldn't find it in makepkg.conf anyway? > > > > maybe you didn't merge makepkg.conf.pacnew. It is there. I did a more /FORT rather than grep and it was on the first page and so said wasn't found. When I actually compared it to my build

Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Ionut Biru
On 01/31/2012 06:37 PM, Kevin Chadwick wrote: > > http://www.sudo.ws/sudo/alerts/sudo_debug.html > > Is sudo on arch built with? > > -D_FORTIFY_SOURCE=2 > yes it is. we also have the version that is supposed to have the vulnerability fixed. > I couldn't find it in makepkg.conf anyway? > may

Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Karol Blazewicz
On Tue, Jan 31, 2012 at 5:37 PM, Kevin Chadwick wrote: > > http://www.sudo.ws/sudo/alerts/sudo_debug.html > > Is sudo on arch built with? > > -D_FORTIFY_SOURCE=2 > > I couldn't find it in makepkg.conf anyway? Is it http://projects.archlinux.org/svntogit/packages.git/commit/trunk?h=packages/sudo&i

Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Thanasis Georgiou
On 31 January 2012 18:37, Kevin Chadwick wrote: > > http://www.sudo.ws/sudo/alerts/sudo_debug.html > > Is sudo on arch built with? > > -D_FORTIFY_SOURCE=2 > > I couldn't find it in makepkg.conf anyway? > > -- > Kc I got sudo 1.8.3.p2, which is said to fix the problem. Wait a bit for your mirror to

Re: [arch-general] Sudo Vulnerability

2012-01-31 Thread Florian Pritz
On 31.01.2012 17:37, Kevin Chadwick wrote: > > http://www.sudo.ws/sudo/alerts/sudo_debug.html > > Is sudo on arch built with? > > -D_FORTIFY_SOURCE=2 yes > > I couldn't find it in makepkg.conf anyway? > You should merge the .pacnew -- Florian Pritz signature.asc Description: OpenPGP di