Posts

Showing posts from June, 2008

Security Update: Gnutls

Another security update has been released for Slackware and this time is Gnutls package which could lead to denial of service if successful exploitation is conducted. Here's the current changelog:
Sat Jun 28 16:52:32 CDT 2008
n/gnutls-2.2.5-i486-1.tgz:
Upgraded to GnuTLS version 2.2.5.
This updated package fixes bugs which can lead to a denial of service DoS) in programs linked with GnuTLS. Thanks to Ossi Herrala and Jukka Taimisto from the CROSS project at Codenomicon Ltd. for finding and reporting the problems, and to Simon Josefsson and Nikos Mavrogiannopoulos for researching the issues and developing patches, and to Andreas Metzler for noting and reporting a problem with one of the original patches.
For more information about the issues patched, please refer to:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1948
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1949
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1950
(* Security fix *)

Security Update: Ruby

Slackware security team has released an advisory containing ruby updates which fixed security problem leading to DoS (Denial of Service) condition or allow execution of arbitrary code. Here's the latest -Current changelog:
Fri Jun 27 23:17:20 CDT 2008
d/ruby-1.8.6_p230-i486-1.tgz:
Upgraded to ruby-1.8.6-p230.
This fixes a number of security related bugs in Ruby which could lead to a denial of service (DoS) condition or allow execution of arbitrary code.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2662
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2663
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2664
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2725
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2726
(* Security fix *)

Kernel 2.6.25.9 released

Just like i said earlier, kernel 2.6.25.x has the fastest track on all 2.6.x kernel series and it's going fast. Only few days and here comes another -Stable kernel release. It's 2.6.25.9. This quick release can be seen from two point of view.

From security point of view, this is a good thing. Critical bugs are fixed at fast rate, so people who had problems at their system can patch it as soon as possible. In the other hand, from development point of view, some people might think that there's something wrong with the development process. Too many bugs were found after it has been released.

I know that there are no software that 100% bug free. Every software has bugs. It's just a matter of time when will the bugs are detected. The -Stable team realized this and this is the reason why they created 2.6.x.y version. Waiting for the next 2.6.x release is surely not a good idea, because the development process would take 2-3 months. By that time, exploits would have spread out …

Automating Kernel Compilation

William from Argentina asked me to write kernel compilation howto. Actually it's already written on my website, but i will write it again here. This time, i will not list the detailed, but i just wanted to show you a script which was taken from Robby's work and i modified it a little bit to automate the kernel compilation process.

All you need is an extracted kernel in /usr/src and put the script in /usr/src directory. Run it as root user (don't use normal account, as it won't work) and make sure the right kernel version is already updated in the script. Please make sure you have read the instructions listed on the scripts before using it. Use it on your own risk. I'm not responsible for any damage or loss by using the script.

You can download the script on my Box account.

Stable Kernel 2.6.25.8

According to Greg Kroah Hartman on his presentation at Google Tech Talk earlier this month, kernel 2.6.25 achieved higher statistics compared to other releases. With that rapid changes, no wonder the changes are so inevitable. Because of the same reason, some bugs might slipped the development process, thus -Stable kernels are released to fix them.

This morning, i upgraded to 2.6.25.7, and tonight i saw a new release of 2.6.25.8 which fix couple of bug fixes (some of them are x86 which could applies to my system). It's just another proof that Linux Kernel project is one of the fastest project available on earth. Bugs are squashed at fast rate, meaning less vulnerability system for public servers.

BASH Commands

Sometimes, people are confused when they first met with BASH. It has lots of command line and also parameters. So some guide are needed to support them. One of them is the man(ual) page, but often people don't understand how to open the manual. So..., here's a simple website that tried to track all BASH commands with the descriptions. Just read it online and you're ready to learn more about BASH.

Firefox 3 and Internet Browsing

Image
Finally, i can browse the Internet using Linux in UGM. Thanks to Firefox 3 which has been released few days ago. When i was using Firefox 2, i couldn't browse the Internet using Linux, because the certificate is considered invalid, so i must use Windows. Now, i can browse using Linux again.

Besides that, i can browse without having to login anymore

Firefox 3 in Slackware

It's less than 24 hours from the download day and now Slackware-Current already has Firefox 3 package in the tree, which is good thing. Unlike the previous one, usually Slackware-Current started by upgrading the toolchain which will be used as the basis for the next Slackware-Current, but as far as i see now, Pat tried to keep the -Current updated even though it's not as much as usual. Probably the real -Current development will start in one or two months.

When that time comes, i believe he will start working on KDE 4.1 packages which is planned to be released on July. I'd love to see next Slackware shipped with KDE 4, GCC 4.3, and any other toolchain that is working at the best ever had.

Here's the latest -Current changelog:
Wed Jun 18 14:42:48 CDT 2008
xap/mozilla-firefox-3.0-i686-1.tgz: Upgraded to firefox-3.0.
Congratulations to the Firefox people for the nice improvements, as well as such an impressive number of first-day downloads. :-) We didn't put this out yeste…

Java Update

Slackware-Current goes on again with two updates related to Java packages. Though it's considered Beta, Pat decided to release it and include it in Slackware-Current since it can fixed CUPS printing problem that occurred to several users. Please note that it's still BETA, so use it on your own risk and only upgrade if you are having problems at printing via CUPS.
Sat Jun 14 11:14:22 CDT 2008
slackware/l/jre-6u10_beta-i586-1.tgz: Upgraded to Java(TM) 2 Platform Standard Edition Runtime Environment Version 6.0 update 10 beta. This is a BETA VERSION and may contain problems, but it may also fix an issue with CUPS printing. If this fix is important to you, it may be worth giving this package a try at your own risk. For now, -current seems like the only prudent place for this package. Hopefully we will see official 6u10 releases soon.

extra/jdk-6/jdk-6u10_beta-i586-1.tgz: Upgraded to Java(TM) 2 Platform Standard Edition Development Kit Version 6.0 update 10 beta. This is a BETA VERSIO…

Stable Kernel 2.6.25.6

Only few days ago a new stable kernel 2.6.25.5 has been released, and now another stable kernel is released. It's 26.25.6 which has lots of bug fixed compared to 1 security vulnerability in 2.6.25.5. Lucky me i didn't upgrade to that version, as i will have to recompile again for this update. So in the mean time, i will still be using 2.6.25.4 for now.

Slackware 12.1 Review Article

Linux.com has published an article about Slackware 12.1 Reviews made by Drew Ames. It's called "Upgrading to Slackware 12.1". It's a good article. Check it out.

Playing With Gnokii and Gnocky

Image
I have a task from my lecturer from UGM to do some research about an application that can be used to communicate with mobile phones. We can make our own, or just look for an existing application. I decided to use Gnokii since i have Nokia on my stock. Since Gnokii doesn't need too much dependencies, i decided to build my own SlackBuild script and i have uploaded it to Indonesian SlackBuild Repository (feel free to use it).

I do have problem sending an sms from Gnokii, so i tried to install Gnocky, a GUI application that uses Gnokii as the base to make connection with the mobile phone (i used N70 which belongs to my father as the sample). I even make the SlackBuild script also.

When i plug my CA-53 cable into my Slackware box, i look over the dmesg result and i got this:
usb 3-3: new full speed USB device using ohci_hcd and address 3
usb 3-3: configuration #1 chosen from 1 choice
usb 3-3: New USB device found, idVendor=0421, idProduct=043a
usb 3-3: New USB device strings: Mfr=1, Product=…