LINUXsecure_LOGO
Issues on Linux and Security
 
-->
 
 
 
 
 
 
 
home
button Home
 

Welcome to LinuxSecure

I found some scripts on my workstation that have not been published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can contact me, if you are interested in one or more of them.

  • A tool for the backup of network components. The script runs as a daemon and can be configured via config files. It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage. There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
  • Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send, mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem (deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before, dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
  • A logscanner and a scanner for the checkpoint objects file.
  • A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
  • A ftp-script for the honeynet.
  • Various backupscripts in Perl and Bash.
  • Various iptables scrips.
  • A script called minilinux to create a small linux out of a huge running system.
  • Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
  • A snort admin interface in php.
  • A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.


back to top

button Whats New
[2005-02-18] mp3riot version 1.3 released
[2004-10-08] mp3riot version 1.2 is out.
[2004-04-30] Added section Bridging
[2004-01-09] working progress on mp3riot version 1.2
The LWN.net Weekly Edition for April 24, 2014 is available.
[$] LWN.net Weekly Edition for April 24, 2014

Ubuntu's Trusty Tahr has been released and that means it's time for a new development branch. Mark Shuttleworth has announcedthe name of the next Ubuntu release. "So bring your upstanding best to the table ? or the forum ? or the mailing list ? and let?s make something amazing. Something unified and upright, something about which we can be universally proud. And since we?re getting that once-every-two-years chance to make fresh starts and dream unconstrained dreams about what the future should look like, we may as well go all out and give it a dreamlike name. Let?s get going on the utopic unicorn."
Shuttleworth: U talking to me?

A band called netcathas released their latest album as a Linux kernel module. The album "Cycles Per Instruction"is available from the band's web site, and on github.
Band Releases Album as a Kernel Module

Greg Kroah-Hartman has released stable kernel 3.13.11with some important fixes. This is the last 3.13.y release. Please move to 3.14.y now. Update: the Ubuntu kernel team has announcedthat it will be providing ongoing support for 3.13 until April 2016.
Stable kernel 3.13.11

[Jessica McKellar]In a keynote on day two of PyCon 2014(April 12), Jessica McKellar made an impassioned plea for the Python community to focus on the "next generation"of Python programmers. She outlined the programming-education problem that exists in US high schools (and likely elsewhere in the world as well), but she also highlighted some concrete steps the community could take to help fix it. Subscribers can click below for the full keynote coverage.
[$] The next generation of Python programmers

CentOShas updated qemu-kvm(C6: multiple vulnerabilities). Debianhas updated openjpeg(fixes a regression in the previous update). Fedorahas updated httpd(F19: multiple vulnerabilities), jbigkit(F19: code execution), and python-django-horizon(F20: cross-site scripting). Oraclehas updated qemu-kvm(OL6: multiple vulnerabilities). Red Hathas updated kernel(RHEL6.3 EUS: denial of service), openshift-origin-broker(RH OpenShift 1.2.7; RH OpenShift 2.0.5: authentication bypass), and qemu-kvm(RHEL6: multiple vulnerabilities). Scientific Linuxhas updated qemu-kvm(SL6: multiple vulnerabilities). Ubuntuhas updated mysql-5.5(14.04 LTS, 13.10, 12.10, 12.04 LTS: multiple vulnerabilities), rsync(14.04 LTS: denial of service), and python-django(all: fixes a regression in the previous update).
Security advisories for Wednesday

Ars Technica takes a lookat the LibreSSLfork of OpenSSL created by the OpenBSD project. "The decision to fork OpenSSL is bound to be controversial given that OpenSSL powers hundreds of thousands of Web servers. When asked why he wanted to start over instead of helping to make OpenSSL better, de Raadt said the existing code is too much of a mess. "Our group removed half of the OpenSSL source tree in a week. It was discarded leftovers,"de Raadt told Ars in an e-mail. "The Open Source model depends [on] people being able to read the code. It depends on clarity. That is not a clear code base, because their community does not appear to care about clarity. Obviously, when such cruft builds up, there is a cultural gap. I did not make this decision... in our larger development group, it made itself.""
OpenSSL code beyond repair, claims creator of ?LibreSSL? fork (Ars Technica)

Debianhas updated icedove(multiple vulnerabilities). openSUSEhas updated squid(13.1, 12.3: denial of service), flash-player(13.1, 12.3: multiple vulnerabilities), json-c(13.1, 12.3: denial of service), openssl(13.1, 12.3: information disclosure), and otrs(13.1, 12.3: cross-site scripting). Slackwarehas updated libyaml(code execution) and php(denial of service). Ubuntuhas updated python-django(all: multiple vulnerabilities).
Tuesday's security advisories

Version 4.9.0 of the GNU Compiler Collection is out. "GCC 4.9.0 is a major release containing substantial new functionality not available in GCC 4.8.x or previous GCC releases."The list of new features is indeed long; see the 4.9.0 release pagefor lots more information.
GCC 4.9.0 released

David Faure has a report on the Freedesktop Summit, which was held recently in Nuremberg. "The meeting also produced an agreement on the future of startup notification in the Wayland world. A protocol based on broadcast of D-Bus signals will be used instead of the current approach with X client messages. This approach is expected to integrate nicely with future frameworks for sandboxed applications. Improvements were also made to the protocol to allow for tab-based applications that make dynamic choices about creating a new tab or a new window depending on the workspace in which a document was opened."[Editor's note: apologies to Ryan Lortie who wrote this article.]
Faure: Freedesktop Summit 2014 Report

Debianhas updated prosody(regression in previous update), wordpress(regression in previous update), and wordpress(error in previous update). Fedorahas updated elfutils(F20: code execution), java-1.7.0-openjdk(F20; F19: multiple unspecified vulnerabilities), kernel(F20: two vulnerabilities), and rsync(F20: denial of service). Mageiahas updated virtualbox(MG4: code execution) and virtualbox(MG3: multiple vulnerabilities).
Security updates for Monday

The second 3.15 kernel prepatchis available for testing. "And on the seventh day the rc release rose again, in accordance with the Scriptures laid down at the kernel summit of the year 2004."
Kernel prepatch 3.15-rc2

Ars Technica reportson the impact that the "Heartbleed"bug in OpenSSL has had for the Tor anonymizing network. "The Tor Project team has been moving to provide patches for all of the components, and most of the core network was quickly secured. However, a significant percentage of the relay servers, many of which serve countries with heavy Internet censorship, have remained unpatched. These systems are operated by volunteers and may run unattended."
Ars Technica: Tor network?s ranks of relay servers cut because of Heartbleed bug

Debianhas updated openssl(multiple vulnerabilities), qemu(code execution), and qemu-kvm(code execution). Mageiahas updated apache-mod_security(rules bypass), cups-filters(M4: code execution), openjpeg(code execution), php(denial of service), and rsync(M4: denial of service). Oraclehas updated kernel(2.6.39 - OL5; OL6: privilege escalation) and kernel(3.8.13 - OL6: privilege escalation). SUSEhas updated jakarta-commons-fileupload(SLES11 SP3: denial of service).
Friday's security updates

The Debian project has announced that the security support period for the 6.0 ("squeeze") release has been extended by nearly two years; it now runs out in February 2016. At the end, squeeze will have received a full five years of security support. "squeeze-lts is only going to support i386 and amd64. If you're running a different architecture you need to upgrade to Debian 7 (wheezy). Also there are going to be a few packages which will not be supported in squeeze-lts (e.g. a few web-based applications which cannot be supported for five years). There will be a tool to detect such unsupported packages."
Debian 6.0 to get long-term support

Oracle Java SE CVE-2014-0452 Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2014-0452 Remote Security Vulnerability

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2014-2397 Remote Security Vulnerability

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2014-0446 Remote Security Vulnerability

Oracle Java SE CVE-2014-0456 Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2014-0456 Remote Security Vulnerability

[security bulletin] HPSBMU02997 rev.2 - HP Smart Update Manager (SUM) running OpenSSL, Remote Disclosure of Information
Bugtraq: [security bulletin] HPSBMU02997 rev.2 - HP Smart Update Manager (SUM) running OpenSSL, Remote Disclosure of Information

[security bulletin] HPSBMU02995 rev.5 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure
Bugtraq: [security bulletin] HPSBMU02995 rev.5 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure

AirPhoto WebDisk v4.1.0 iOS - Code Execution Vulnerability
Bugtraq: AirPhoto WebDisk v4.1.0 iOS - Code Execution Vulnerability

CVE-2014-2042 - Unrestricted file upload in Livetecs Timelive
Bugtraq: CVE-2014-2042 - Unrestricted file upload in Livetecs Timelive

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
More rss feeds from SecurityFocus

-->