On 01/03/2014 03:28 AM, Jitse Klomp wrote:
> 2014/1/3 David Benfell
>
>> I was unable to find an associated vulnerability in Linux. I trust the
>> OpenSSL folks would be on top of this faster than you can blink an eye
>> if it were a current issue. They have not, from what I've seen,
>> reacted t
Am 03.01.2014 um 08:57 schrieb Mauricio Tavares :
> On Thu, Jan 2, 2014 at 10:19 PM, Leon Fauster
> wrote:
>> Am 02.01.2014 um 20:34 schrieb Ken Smith :
>>> Fred Smith wrote:
>>> The bash commands in the earlier post are manually entered in a
>>> terminal. The cron job isn't active. Even if I set
On 01/03/2014 11:01 AM, Adrian Sevcenco wrote:
> i was just blew away by this:
> "What almost all commentators have missed is
> that hidden away in the small print (and subsequently confirmed by our
> specific query) is that if you want to be FIPS 140-2 compliant you MUST
> use the compromised poin
On 01/03/2014 01:15 PM, Karanbir Singh wrote:
> On 01/03/2014 11:01 AM, Adrian Sevcenco wrote:
>> i was just blew away by this:
>> "What almost all commentators have missed is
>> that hidden away in the small print (and subsequently confirmed by our
>> specific query) is that if you want to be FIPS
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
centos-announce-requ..
One thing you need to understand.
There is a huge difference between asymmetric encryption and
cryptographically secure pseudo-random number generator. EC is secure, the
default random number generator on Linux is /dev/urandom. It does not use
the backdoored NSA PRNG.
On Fri, Jan 3, 2014 at 6:
Adrian Sevcenco wrote:
> i was just blew away by this:
> "What almost all commentators have missed is
> that hidden away in the small print (and subsequently confirmed by our
> specific query) is that if you want to be FIPS 140-2 compliant you MUST
> use the compromised points."
I'm a complete in
Ahmed Hassan said the following on 03/01/2014 13:47:
> There is a huge difference between asymmetric encryption and
> cryptographically secure pseudo-random number generator. EC is secure, the
> default random number generator on Linux is /dev/urandom. It does not use
> the backdoored NSA PRNG.
Luigi Rosa wrote:
>> With headless and/or virtual servers the issue is even bigger because
> Linux could not be able to collect enough entropy to seed /dev/urandom
Is this a meaningful statement?
How do you measure the "entropy" of a seed (which I take to be a string)?
And if you can, is it true
Timothy Murphy said the following on 03/01/2014 14:20:
> Is this a meaningful statement? How do you measure the "entropy" of a seed
> (which I take to be a string)? And if you can, is it true that you can
> decrypt a string with low entropy?
The mathematic behind a PRNG (or DRNG to use NIST termi
Leon Fauster wrote:
> Am 03.01.2014 um 08:57 schrieb Mauricio Tavares:
>
>> On Thu, Jan 2, 2014 at 10:19 PM, Leon Fauster
>> wrote:
>>
>>> Am 02.01.2014 um 20:34 schrieb Ken Smith:
>>>
Fred Smith wrote:
{snip}
>> Even though it is a workaround - I myself like to use
>
Am 03.01.2014 um 15:04 schrieb Ken Smith :
> Leon Fauster wrote:
>> Am 03.01.2014 um 08:57 schrieb Mauricio Tavares:
>>
>>> On Thu, Jan 2, 2014 at 10:19 PM, Leon Fauster
>>> wrote:
>>>
> {snip}
>>> Even though it is a workaround - I myself like to use
>>> /export/backup -- I do not think t
On 03.01.2014 15:37, Leon Fauster wrote:
> Am 03.01.2014 um 15:04 schrieb Ken Smith :
>> Leon Fauster wrote:
>>> Am 03.01.2014 um 08:57 schrieb Mauricio Tavares:
>>>
On Thu, Jan 2, 2014 at 10:19 PM, Leon Fauster
wrote:
>> {snip}
Even though it is a workaround - I myself
Hi!
How to get usermod working with SSSD/389DS ?
We have SSSD set up on our server and it uses 389DS.
SSSD was enabled with the following command:
authconfig --enablesssd --enablesssdauth --ldapbasedn=dc=example,dc=com
--enableshadow --enablemkhomedir --enablelocauthorize --update
Running for
Good day
I'm on the verge of starting a Data and Analytics company. We'll start small
with a few systems running CentOS Linux and developing our software using
python. However, we still haven't decided on a name for the business. Please go
to the following link to help me choose a most appropr
Luigi Rosa wrote:
>> Is this a meaningful statement? How do you measure the "entropy" of a
>> seed (which I take to be a string)? And if you can, is it true that you
>> can decrypt a string with low entropy?
You deleted the statement I queried. Here it is
"With headless and/or virtual servers th
On 1/3/2014 8:37 AM, Timothy Murphy wrote:
> I'm asking what you meant by it.
Entropy has a standard meaning in computer science, see
http://en.wikipedia.org/wiki/Information_entropy for an introductory
discussion with various references.
--
john r pierce
Fred Smith writes:
>
> On Thu, Jan 02, 2014 at 07:05:31PM +, Ken Smith wrote:
> > Hi All and happy new year,
> >
> > Via a cron job a USB disk is mounted on a Centos 6.4 machine for backup
> > and dismounted after. I've noticed this failing. See below, the backup
> > directory that was in
I am trying to build an RPM for Apache-2.4.7-1 on Centos-6.5-i86_64. I am
using mock.
The are three build dependencies that I am trying to resolve. One,
mod_socache_dc / distcache, I have simply removed from the spec file. The
other two are arp and apr-utils. Since httpd-2.4.7 needs arp >= 1.4
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 01/03/2014 03:36 AM, Adrian Sevcenco wrote:
IMHO underlying problem is not
> that a cipher/process/code was compromised but that the
> supervising _trustworthy_ entity is in fact not trustworthy at
> all!
It will be interesting to see how this p
Dennis Jacobfeuerborn wrote:
> On 03.01.2014 15:37, Leon Fauster wrote:
>
>> Am 03.01.2014 um 15:04 schrieb Ken Smith:
>>
>>> Leon Fauster wrote:
>>>
Am 03.01.2014 um 08:57 schrieb Mauricio Tavares:
> On Thu, Jan 2, 2014 at 10:19 PM, Leon Fauster
>
I'd suggest looking into the config for automount.
On Fri, 2014-01-03 at 22:48 +, Ken Smith wrote:
> Dennis Jacobfeuerborn wrote:
> > On 03.01.2014 15:37, Leon Fauster wrote:
> >
> >> Am 03.01.2014 um 15:04 schrieb Ken Smith:
> >>
> >>> Leon Fauster wrote:
> >>>
> Am 03.
John R Pierce wrote:
> Entropy has a standard meaning in computer science, see
> http://en.wikipedia.org/wiki/Information_entropy for an introductory
> discussion with various references.
Shannon entropy only makes sense when applied to a random variable.
It cannot be applied to a single string,
On 1/3/2014 4:25 PM, Timothy Murphy wrote:
> Shannon entropy only makes sense when applied to a random variable.
> It cannot be applied to a single string, as in this case.
the seed of a algorithm like /dev/urandom is not a single variable, its
a big array of variables. these have to be created
On 03.Jan.2014, at 21:24, James B. Byrne wrote:
> I am trying to build an RPM for Apache-2.4.7-1 on Centos-6.5-i86_64. I am
> using mock.
>
> The are three build dependencies that I am trying to resolve. One,
> mod_socache_dc / distcache, I have simply removed from the spec file. The
> other
Good luck with your company!
But the link does not work for me (i don't think it's just the space
in it, as i tried removing the space).
dan
On Fri, Jan 3, 2014 at 8:34 AM, kwazi mavuso wrote:
> Good day
>
> I'm on the verge of starting a Data and Analytics company. We'll start small
> with a
26 matches
Mail list logo
