Issues on Linux and Security
button Home

Welcome to LinuxSecure

I found some scripts on my workstation that have not been published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can contact me, if you are interested in one or more of them.

  • A tool for the backup of network components. The script runs as a daemon and can be configured via config files. It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage. There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
  • Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send, mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem (deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before, dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
  • A logscanner and a scanner for the checkpoint objects file.
  • A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
  • A ftp-script for the honeynet.
  • Various backupscripts in Perl and Bash.
  • Various iptables scrips.
  • A script called minilinux to create a small linux out of a huge running system.
  • Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
  • A snort admin interface in php.
  • A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.

back to top

button Whats New
[2005-02-18] mp3riot version 1.3 released
[2004-10-08] mp3riot version 1.2 is out.
[2004-04-30] Added section Bridging
[2004-01-09] working progress on mp3riot version 1.2
On his blog, Sebastian Kügler looksat what's left to be done for KDE's Plasma desktop to support Wayland. He discusses why the project cares about Wayland, what it means to support Wayland, the current status, the strategy for further work, and how interested folks can get involved. "One of the important topics which we have (kind of) excluded from Plasma?s recent 5.0 release is support for Wayland. The reason is that much of the work that has gone into renovating our graphics stack was also needed in preparation for Wayland support in Plasma. In order to support Wayland systems properly, we needed to lift the software stack to Qt5, make X11 dependencies in our underlying libraries, Frameworks 5 optional. This part is pretty much done. We now need to ready support for non-X11 systems in our workspace components, the window manager and compositor, and the workspace shell."
Kügler: Plasma?s Road to Wayland

CentOShas updated kernel(C7; C6; C5: two vulnerabilities) and qemu-kvm(C7: many vulnerabilities). Debianhas updated apache2(three vulnerabilities) and transmission(code execution). Fedorahas updated httpd(F20: multiple vulnerabilities), ipython(F20; F19: code execution), java-1.7.0-openjdk(F19: multiple vulnerabilities), java-1.8.0-openjdk(F20; F19: multiple vulnerabilities), and kernel(F19: multiple vulnerabilities). Oraclehas updated enterprise kernel(OL7: three vulnerabilities) and kernel(OL5: two vulnerabilities). Red Hathas updated openstack-nova(OSP5.0: information disclosure), openstack-swift(OSP5.0: cross-site scripting), python-django-horizon(OSP5.0: three vulnerabilities), and qemu-kvm-rhev(OSP4.0, OSP3.0: multiple vulnerabilities).
Security updates for Friday

At yesterday's Fedora Engineering Steering Committee (FESCo) meeting, the release of Fedora 21 was delayed by three weeks (FESCo ticket), with the final release now scheduledfor November 4. There are some problems with "test composes"of the release (creating test ISO images) that mean the deadline for the alpha release would be missed. The original plan was to delay for two weeks, but that put the freeze just before the Flock conference, so it was decided to push out an additional week.
Fedora 21 delayed three weeks

Over at Model View Culture, Adam Saunders interviews Karen Sandler, executive director of the Software Freedom Conservancy(SFC) and formerly the executive director of the GNOME Foundation. Sandler talks about SFC, the Outreach Program for Women, as well as being a cyborg: "I was diagnosed with a heart condition and needed a pacemaker/defibrillator, and none of the device manufacturers would let me see the source code that was to be literally sewn into my body and connected to my heart. My life relies on the proper functioning of software every day, and I have no confidence that it will. The FDA generally doesn't review the source code of medical devices nor can the public. But multiple researchers have shown that these devices can be maliciously hacked, with fatal consequences. Once you start considering medical devices, you quickly start to realize that it's all kinds of software that is life and society-critical - cars, voting machines, stock markets... It's essential that our software be safe, and the only way we can realistically expect that to be the case over time is by ensuring that our software is free and open. If there's catastrophic failure at Medtronic (the makers of my defibrillator), for example, I wouldn't be able to fix a bug in my own medical device."
An Interview with Karen Sandler (Model View Culture)

CentOShas updated httpd(C7; C6; C5: multiple vulnerabilities). Debianhas updated iceweasel(multiple vulnerabilities) and openjdk-7(multiple vulnerabilities). Fedorahas updated firefox(F20: multiple vulnerabilities). Oraclehas updated dovecot(OL7: denial of service), firefox(OL7; OL7; OL5: multiple vulnerabilities), gnutls(OL7: two vulnerabilities), httpd(OL7; OL6; OL5: multiple vulnerabilities), java-1.6.0-openjdk(OL7; OL7: multiple vulnerabilities), java-1.7.0-openjdk(OL7; OL7: multiple vulnerabilities), json-c(OL7: two denial of service flaws), kernel(OL7; OL6: two privilege escalations), kernel(OL7: multiple vulnerabilities), kernel(OL7:privilege escalation), libtasn1(OL7: three vulnerabilities), libvirt(OL7: information disclosure/denial of service), lzo(OL7: denial of service/possible code execution), mariadb(OL7: multiple unspecified vulnerabilities), nss, nspr(OL7: code execution), openssl(OL7: multiple vulnerabilities), openssl098e(OL7: man-in-the-middle attack), qemu-kvm(OL7: many vulnerabilities), qemu-kvm(OL7: code execution), samba(?:), (tomcat(OL7: three vulnerabilities), and tomcat(OL7: three vulnerabilities). Red Hathas updated kernel(RHEL7; RHEL6.4; RHEL6; RHEL5: two privilege escalations) and qemu-kvm(RHEL7: many vulnerabilities). Scientific Linuxhas updated kernel(SL6; SL5: two privilege escalations). Slackwarehas updated httpd(multiple vulnerabilities), thunderbird(multiple vulnerabilities), and firefox(multiple vulnerabilities). SUSEhas updated libtasn1(SLE11SP3: three vulnerabilities) and ppc64-diag(SLE11SP3: two vulnerabilities). Ubuntuhas updated apache2(14.04, 12.04, 10.04: multiple vulnerabilities), jinja2(12.04: code execution), lzo2(14.04, 12.04: denial of service/possible code execution), and oxide-qt(14.04: multiple vulnerabilities).
Security updates for Thursday

Another of the Red Hat Enterprise Linux (RHEL) rebuilds has released its version of RHEL 7: Oracle Linux 7 for x86_64 is now available. It does add some features, including DTrace, Ksplice, and Xen. More information can be found in the release notes.
Oracle Linux 7 released

The Weekly Edition for July 24, 2014 is available.
[$] Weekly Edition for July 24, 2014

Recently, public attention has been called to a new online user-tracking method that is purported to be nearly impossible to block. Called "canvas fingerprinting,"the technique relies on forcing the browser to generate an image on the client side of the connection—an image that is unique enough to serve as a fingerprint for the browser that created it. In fact, the basis for this fingerprinting approach is several years old, but it does now seem to be in use in the wild. Whether or not it truly amounts to an insurmountable blocking challenge, however, remains to be seen.
[$] Browser tracking through "canvas fingerprinting"

The ownCloud 7 release has been announced. The headline feature this time around appears to be server-to-server sharing, but it also has mobile web browser support, file activity notifications, and an improved management interface.
ownCloud 7 released

CentOShas updated firefox(C6; C5: multiple vulnerabilities), firefox, xulrunner(C7: multiple vulnerabilities), libvirt(C7: information disclosure/denial of service), nss, nspr(C7: code execution), nss(C5; C6: code execution), nss-util(C6: code execution), nspr(C6; C5: code execution), and thunderbird(C5; C6: multiple vulnerabilities). Debianhas updated acpi-support(privilege escalation) and mysql-5.5(unidentified vulnerabilities). Fedorahas updated libXfont(F19: multiple vulnerabilities), python-simplejson(F19: information disclosure), and readline(F20: insecure temporary files). Oraclehas updated firefox(OL6: multiple vulnerabilities), nss, nspr(OL6; OL5: code execution), and thunderbird(OL6: multiple vulnerabilities). Red Hathas updated firefox(RHEL5,6,7: multiple vulnerabilities), httpd(RHEL5,6; RHEL7: multiple vulnerabilities), httpd24-httpd(RHSC1: multiple vulnerabilities), kernel-rt(RHE MRG2.5: multiple vulnerabilities), libvirt(RHEL7: information disclosure/denial of service), nss(RHEL5.6,5.9,6.2,6.4: code execution), nss, nspr(RHEL5,7: code execution), nss, nspr(RHEL6: multiple vulnerabilities), and thunderbird(RHEL5,6: multiple vulnerabilities). Scientific Linuxhas updated firefox(SL5,6: multiple vulnerabilities), httpd(SL5,6: multiple vulnerabilities), nss and nspr(SL6; SL5: code execution), and thunderbird(SL5,6: multiple vulnerabilities). Ubuntuhas updated acpi-support(12.04 LTS: privilege escalation), firefox(14.04 LTS, 12.04 LTS: multiple vulnerabilities), libtasn1-3, libtasn1-6(14.04 LTS, 12.04 LTS, 10.04 LTS: multiple vulnerabilities), and thunderbird(14.04 LTS, 12.04 LTS: multiple vulnerabilities).
Security advisories for Wednesday

Firefox 31 has been released. This version adds a search field to the new tab page, adds support of Prefer:Safe http header for parental control, and it will block malware from downloaded files. See the release notesfor more information.
Firefox 31 released

Rick Spencer introducesUbuntu's community team. "First, we created the role Community Team Manager. Notice the important inclusion of the word ?Team?. This person?s job is not to ?manage the community?, but rather to organize and lead the rest of the community team members. This includes things like project planning, HR responsibilities, strategic planning and everything else entailed in being a good line manager. After arather competitive interview process, with some strong candidates, one person clearly rose to the top as the best candidate. So, I would like formally introduce David Planella as the Community Team Manager!"Michael Hall, Daniel Holbach, and Nicholas Skaggs are the other members of the team.
Spencer: The Community Team

Dan Walsh looks at container security, on "I hear and read about a lot of people assuming that Docker containers actually sandbox applications?meaning they can run random applications on their system as root with Docker. They believe Docker containers will actually protect their host system [...] Stop assuming that Docker and the Linux kernel protect you from malware."
Docker security with SELinux (

CentOShas updated java-1.6.0-openjdk(C7; C6; C5: multiple vulnerabilities). Fedorahas updated couchdb(F20; F19: denial of service), erlang-ibrowse(F20; F19: denial of service), php-ZendFramework(F20; F19: SQL injection), and polarssl(F20; F19: denial of service). Oraclehas updated java-1.6.0-openjdk(OL6; OL5: multiple vulnerabilities). Red Hathas updated java-1.6.0-openjdk(RHEL5,6,7: multiple vulnerabilities) and java-1.6.0-sun(RHEL5,6,7: multiple vulnerabilities). Scientific Linuxhas updated java-1.6.0-openjdk(SL5,6: multiple vulnerabilities). Ubuntuhas updated cups(privilege escalation).
Tuesday's security updates

Debianhas updated drupal7(multiple vulnerabilities) and ruby-activerecord-3.2(SQL injection). Fedorahas updated cups(F20: privilege escalation), dpkg(F20: two file modification via path traversal flaws), java-1.7.0-openjdk(F20: multiple vulnerabilities), kernel(F20: privilege escalation), ocsinventory(F20; F19: cross-site scripting), and transmission(F20: code execution). openSUSEhas updated privoxy(13.1: privoxy requires privoxyd), dbus-1(13.1; 12.3: two denial of service flaws), eet(13.1, 12.3: code execution), lzo(13.1, 12.3: code execution), and php(13.1, 12.3: multiple vulnerabilities).
Security advisories for Monday

BulletProof FTP Client Local Buffer Overflow Vulnerability
Vuln: BulletProof FTP Client Local Buffer Overflow Vulnerability

Apple QuickTime 'mvhd' Atom Heap Memory Corruption Vulnerability
Vuln: Apple QuickTime 'mvhd' Atom Heap Memory Corruption Vulnerability

Siemens SIMATIC WinCC and PCS 7 CVE-2014-4685 Local Privilege Escalation Vulnerability
Vuln: Siemens SIMATIC WinCC and PCS 7 CVE-2014-4685 Local Privilege Escalation Vulnerability

Siemens SIMATIC WinCC and PCS7 Database Server Remote Privilege Escalation Vulnerability
Vuln: Siemens SIMATIC WinCC and PCS7 Database Server Remote Privilege Escalation Vulnerability

Easy file sharing web server - persist XSS in forum msgs
Bugtraq: Easy file sharing web server - persist XSS in forum msgs

[SECURITY] [DSA 2989-1] apache2 security update
Bugtraq: [SECURITY] [DSA 2989-1] apache2 security update

Security advisory for Bugzilla 4.5.5, 4.4.5, 4.2.10, and 4.0.14
Bugtraq: Security advisory for Bugzilla 4.5.5, 4.4.5, 4.2.10, and 4.0.14

[SECURITY] [DSA 2988-1] transmission security update
Bugtraq: [SECURITY] [DSA 2988-1] transmission security update

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
More rss feeds from SecurityFocus