Which CVE is that, or is it something else?
On Oct 6, 2014, at 9:35 PM, Bob Friesenhahn
wrote:
> The gift keeps on giving. There is yet another related security patch for
> bash. Here is the one for bash 4.3:
>
> http://lists.gnu.org/archive/html/bug-bash/2014-10/msg00040.html
>
> Bob
> --
The gift keeps on giving. There is yet another related security patch
for bash. Here is the one for bash 4.3:
http://lists.gnu.org/archive/html/bug-bash/2014-10/msg00040.html
Bob
--
Bob Friesenhahn
bfrie...@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/
GraphicsMagick Maint
These aren't new aspects of the bug. The fact is that default operation of
systems using bash as the shell for interpolation with system or for
scripts interpreted by bash allows remote code execution by taking strings
from untrusted sources (e.g. USER_AGENT in web servers) and passing them
through
Search q-nap & shellshock and you see how deep this goes...
On 6 oktober 2014 19:28:00 David Brodbeck wrote:
On Thu, Oct 2, 2014 at 8:12 AM, Alan Coopersmith <
alan.coopersm...@oracle.com> wrote:
> On 10/ 2/14 07:00 AM, Brandon Hume wrote:
>
>> On many (most? all?) Linuxes, /bin/sh *is* /bi
The SFE version isn't the latest version. But it works out-of-the-box.
Compiling the latest version from openvpn sources should be possible. You
can then copy the new version over the SFE version i guess. This shouldn't
break the SMF paths.
On 6 oktober 2014 14:38:00 Jonathan Adams wrote:
There are a lot of tools depending on bash. Including virusscanners and
spamfilters.
The openCSW bash installs into another directory then the "real"/old bash.
How can you change the old bash with the openCSW bash?
I saw that solaris 11.2 supports a lot of (old) sparc hardware. And most of
On Thu, Oct 2, 2014 at 8:12 AM, Alan Coopersmith <
alan.coopersm...@oracle.com> wrote:
> On 10/ 2/14 07:00 AM, Brandon Hume wrote:
>
>> On many (most? all?) Linuxes, /bin/sh *is* /bin/bash.
>>
>
> Many, but not all - the Debian family and some others use a lighter weight,
> POSIX compatible shell
On 06/10/2014 14:54, Cal Sawyer wrote:
...
If the only solutions being offered after nearly 2 weeks are a) use ksh because bash is
somehow inferior (shades of "csh-is-deterimental") or 2. rebuild bash youself
from source, i'd have to say that imho it's the polar opposite and this appears to be
Per openindiana.org:
"OpenIndiana is a robust enterprise operating system"
If the only solutions being offered after nearly 2 weeks are a) use ksh because bash is
somehow inferior (shades of "csh-is-deterimental") or 2. rebuild bash youself
from source, i'd have to say that imho it's the polar
root@jadlaptop:~# pkg publisher
PUBLISHER TYPE STATUS P LOCATION
openindiana.org origin online F
http://pkg.openindiana.org/hipster-2014.1/
jds.openindiana.org (non-sticky, disabled) origin online F
http://opensolaris.cz:1/
sfe-encumbered orig
On 06/10/14 13:03, Jonathan Adams wrote:
I have the OpenVPN package installed from the sfe repository, that includes
the tuntap from sfe ...
works fine on hipster.
Jon
I had installed the opencsw version but apparently no tuntap in there.
What is the url to get the sfe package ?
Thanks
Marc
I have the OpenVPN package installed from the sfe repository, that includes
the tuntap from sfe ...
works fine on hipster.
Jon
On 6 October 2014 11:42, Marc Lobelle wrote:
> Hi,
> I would like to connect an openindiana machine (AMD64) with openvpn over
> TUN. Does anybody of you know were i c
On 10/ 6/14 12:42 PM, Marc Lobelle wrote:
Hi,
I would like to connect an openindiana machine (AMD64) with openvpn over TUN.
Does anybody of you know were i can get a precompiled
TUN driver for openindiana ? I'm certainly not the first needing this.
Thanks
Marc
Hi Marc,
for /dev pkg:/system/
Hi,
I would like to connect an openindiana machine (AMD64) with openvpn over TUN. Does anybody of you
know were i can get a precompiled TUN driver for openindiana ? I'm certainly not the first needing this.
Thanks
Marc
___
openindiana-discuss maili
2014-10-06 9:31 GMT+02:00 Frank Van Damme :
> 2014-10-03 11:55 GMT+02:00 Andreas Wacknitz :
>
>> What most people don’t understand is that OpenIndiana is YOURS.
>> OpenIndiana is just a name with no company behind.
>> If you want something and nobody else is doing it then do it by yourself.
>> So
2014-10-03 11:55 GMT+02:00 Andreas Wacknitz :
> What most people don’t understand is that OpenIndiana is YOURS.
> OpenIndiana is just a name with no company behind.
> If you want something and nobody else is doing it then do it by yourself.
> So instead of taking notes you should start acting.
16 matches
Mail list logo
