Issues on Linux and Security
button Home

Welcome to LinuxSecure

I found some scripts on my workstation that have not been published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can contact me, if you are interested in one or more of them.

  • A tool for the backup of network components. The script runs as a daemon and can be configured via config files. It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage. There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
  • Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send, mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem (deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before, dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
  • A logscanner and a scanner for the checkpoint objects file.
  • A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
  • A ftp-script for the honeynet.
  • Various backupscripts in Perl and Bash.
  • Various iptables scrips.
  • A script called minilinux to create a small linux out of a huge running system.
  • Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
  • A snort admin interface in php.
  • A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.

back to top

button Whats New
[2005-02-18] mp3riot version 1.3 released
[2004-10-08] mp3riot version 1.2 is out.
[2004-04-30] Added section Bridging
[2004-01-09] working progress on mp3riot version 1.2
The Linux Foundation has announcedthe R Consortium. "The R language is used by statisticians, analysts and data scientists to unlock value from data. It is a free and open source programming language for statistical computing and provides an interactive environment for data analysis, modeling and visualization. The R Consortium will complement the work of the R Foundation, a nonprofit organization based in Austria that maintains the language. The R Consortium will focus on user outreach and other projects designed to assist the R user and developer communities. Founding companies and organizations of the R Consortium include The R Foundation, Platinum members Microsoft and RStudio; Gold member TIBCO Software Inc.; and Silver members Alteryx, Google, HP, Mango Solutions, Ketchum Trading and Oracle."
Linux Foundation Announces R Consortium

CentOShas updated postgresql(C7; C6: multiple vulnerabilities) and xerces-c(C7: denial of service). Debianhas updated unattended-upgrades(authentication bypass). Debian-LTShas updated aptdaemon(information leak), hostapd(denial of service), jqueryui(cross-site scripting), and shibboleth-sp2(denial of service). Fedorahas updated chicken(F22; F21: out-of-bounds read), openvas-cli(F21: sql injection), openvas-libraries(F21: sql injection), openvas-manager(F21: sql injection), openvas-scanner(F21: sql injection), php-htmLawed(F22; F21: multiple vulnerabilities), postgresql(F21: multiple vulnerabilities), python-jwt(F22; F21: token verification bypass), rubygem-jquery-rails(F22; F21: CSRF vulnerability), and rubygem-web-console(F22: code execution). Oraclehas updated postgresql(OL7; OL6: multiple vulnerabilities) and xerces-c(OL7: denial of service). Red Hathas updated kernel(RHEL6.5: two vulnerabilities), openssl(RHEL5: multiple vulnerabilities), postgresql(RHEL6,7: multiple vulnerabilities), postgresql92-postgresql(RHSCL2: multiple vulnerabilities), rh-postgresql94-postgresql(RHSCL2: multiple vulnerabilities), and xerces-c(RHEL7: denial of service). Scientific Linuxhas updated nss(SL6,7: cipher-downgrade attacks), postgresql(SL6,7: multiple vulnerabilities), and xerces-c(SL7: denial of service). SUSEhas updated java-1_6_0-ibm(SLEM12: multiple vulnerabilities). Ubuntuhas updated oxide-qt(15.04, 14.10, 14.04: multiple vulnerabilities) and unattended-upgrades(15.04, 14.10, 14.04, 12.04: authentication bypass).
Tuesday's security advisories

Amazon has announcedthe release of a new TLS library called "s2n"under the Apache license. "s2n is a library that has been designed to be small, fast, with simplicity as a priority. s2n avoids implementing rarely used options and extensions, and today is just more than 6,000 lines of code. As a result of this, we?ve found that it is easier to review s2n; we have already completed three external security evaluations and penetration tests on s2n, a practice we will be continuing."
Amazon's new TLS implementation

Four new stable kernels are available; 4.1.1, 4.0.7, 3.14.46, and 3.10.82. All contain important fixes.
Stable kernel updates

Debianhas updated libcrypto++(information disclosure). Debian-LTShas updated cacti(multiple vulnerabilities), libwmf(denial of service), and t1utils(code execution). Fedorahas updated kernel(F22: denial of service). openSUSEhas updated roundcubemail(13.2: two vulnerabilities). Scientific Linuxhas updated kvm(SL5: code execution). SUSEhas updated java-1_7_0-ibm(SLE11SP3: multiple vulnerabilities) and Xen(SLES11SP2; SLES11SP1: multiple vulnerabilities).
Security updates for Monday

Valve has announcedthe first preview release of its forthcoming SteamOS update. The new release is based on Debian 8.1 with long-term support kernel 3.18; there are downloadable builds linked to in the announcement for both UEFI and legacy BIOS systems. There appear to be few user-visible differences between the new release and the current SteamOS so far, though; the announcement notes: "Although there are a lot of changes under the covers, the overall functionality and experience of brewmaster is the same as alchemist."
Valve: Introducing SteamOS "brewmaster"

CentOShas updated kvm(C5: code execution). Debian-LTShas updated librack-ruby(denial of service) and libwmf(multiple vulnerabilities). openSUSEhas updated flash-player(13.1, 13.2: code execution), chromium(13.1, 13.2: multiple vulnerabilities), and openssl(13.1, 13.2: multiple vulnerabilities). Oraclehas updated kvm(O5: code execution) and nss(O6; O7: cipher-downgrade attacks). Red Hathas updated kernel(RHEL5: privilege escalation) and kvm(RHEL5: code execution). Scientific Linuxhas updated kernel(SL7: multiple vulnerabilities) and mailman(SL7: code execution). SUSEhas updated compat-openssl098(SLE12: multiple vulnerabilities), KVM(SLE11 SP3: multiple vulnerabilities), and openssl(SLE12: multiple vulnerabilities).
Friday's security updates

Version 4.1 of the Ardourdigital audio workstation software has been released. There are some new features in the release including input gain control, support for capture-only and playback-only devices, a real "Save As"option (with the old option being renamed to "Snapshot (& switch to new version)"), and allowing plugins to be reordered and meter positions to change without adding a click into the audio. There are also lots of user interface changes, including better High-DPI support. "This release contains several new features, both internally and in the user interface, and a slew of bug fixes worthy of your attention. Encouragingly, we also have one of our longest ever contributor lists for this release. We had hoped to be on a roughly monthly release cycle after the release of 4.0, but collaborations with other organizations delayed 4.1 by nearly a month."
Ardour 4.1 released

The Ubuntu Community Council (UCC) and Kubuntu Council (KC) have issued a joint statementregarding the conflict between Jonathan Riddell and the UCC. "We have mutually agreed that KDE is important to Ubuntu, and the Kubuntu Council believes that Ubuntu is important to the KDE community as well. Therefore we have a basis to work together on putting out a lovely Wily release. We recognize that there are honest and strong feelings about both the things that led up to the current controversy and the way that resolution of it was handled. Despite that, we would all like to move forward as best we can for the betterment of the Ubuntu project, including Kubuntu."LWN coveredthe controversy in late May.
Joint Statement from the UCC and KC

CentOShas updated nss(C7; C6: cipher downgrade) and nss-util(C7; C6: cipher downgrade). Debianhas updated cacti(three vulnerabilities). Fedorahas updated xen(F20: multiple vulnerabilities). Oraclehas updated kernel 2.6.39(OL6; OL5: two vulnerabilities), kernel 3.8.13(OL7; OL6: two vulnerabilities), and kernel 2.6.32(OL6; OL5: two vulnerabilities) Red Hathas updated chromium-browser(RHEL6: multiple vulnerabilities), flash-plugin(RHEL5&6: code execution), nss(RHEL6&7: cipher downgrade), php55-php(RHSC2: multiple vulnerabilities), and rh-php56-php(RHSC2: multiple vulnerabilities). Scientific Linuxhas updated libreswan(SL7: denial of service) and php(SL7: multiple vulnerabilities). SUSEhas updated IBM Java(SLE10SP4: multiple vulnerabilities) and Java(SLE11SP2: multiple vulnerabilities). Ubuntuhas updated python2.7, python3.2, python3.4(14.10, 14.04, 12.04: multiple vulnerabilities, some from 2013), tomcat6(12.04: three vulnerabilities), and tomcat7(15.04, 14.10, 14.04: multiple vulnerabilities).
Thursday's security updates

The Weekly Edition for June 25, 2015 is available.
[$] Weekly Edition for June 25, 2015

PGCon 2015, the PostgreSQL international developer conference, took place in Ottawa, Canada from June 16 to 20. This PGCon involved a change in format from prior editions, with a "developer unconference"in the two days before the main conference program. Both the conference and the unconference covered a wide range of topics, many of them related to horizontal or vertical scaling, or to new PostgreSQL features. Subscribers can click below for a report from the conference from guest author Josh Berkus.
[$] A report from PGCon 2015

Arch Linuxhas updated flashplugin(code execution). CentOShas updated kernel(C7: multiple vulnerabilities), libreswan(C7: denial of service), mailman(C7: path traversal attack), and php(C7: multiple vulnerabilities). Debianhas updated wireshark(denial of service). Debian-LTShas updated zendframework(regression in previous update). Fedorahas updated curl(F22: information disclosure), libwmf(F21: code execution), openssl(F21: multiple vulnerabilities), and xen(F22; F21: multiple vulnerabilities). Mageiahas updated flash-player-plugin(multiple vulnerabilities). openSUSEhas updated cacti(13.2, 13.1: SQL injection), curl(13.2, 13.1: information disclosure), and libwmf(13.2; 13.1: code execution). Oraclehas updated kernel(OL7: multiple vulnerabilities), libreswan(OL7: denial of service), mailman(OL7: path traversal attack), and php(OL7: multiple vulnerabilities). SUSEhas updated flash-player(SLED12: code execution).
Security updates for Wednesday

Red Hat has announced the winnersof its Women in Open Source Awards. The Academic Award goes to Kesha Shah, a student at Dhirubhai Ambani Institute of Information and Communication Technology, and the Community Award goes to Sarah Sharp, embedded software architect at Intel. has interviews with both women. Kesha Shah: "Last year, I was a mentor in Season of KDE and GCI again, with BRLCAD and KDE. Now, I am currently working on testing automation of Ushahidi with Systers, an Anita Borg community, as a part of GSoC. During my journey, I had seen several of my peers enter the domain, succeed, and fail in equal measure. So, I took up the challenge of mentoring newbies. One of my biggest achievements is that I have personally guided about 20-22 newbies into the world of open source through mentoring programs like GCI, SoK, Learn IT girls, and through conducting hands-on workshops and enlightening talks on open source. Those efforts converted them to regular contributors."Sarah Sharp: "My second proudest moment is the very first round when the Linux kernel participated in the Outreach Program for Women (now called Outreachy). A lot of kernel maintainers complained about how newcomers would send them mangled patches, and grump about how the newcomers should really just RTFM and look at our patch submission guidelines. Of course, it turned out the manual was lacking or out of date, and there were a lot of steps to set up tools for Linux kernel development, so I spent a week and created a step-by-step tutorial. It was really gratifying to see those first applicants go through my tutorial and send well-formed patches. I've loved watching those interns move onto bigger projects, and even get hired to work on the Linux kernel, and I'm really proud I was able to help people get involved in Linux kernel development."
Red Hat Announces Winners of Women in Open Source Awards

Greg Kroah-Hartman has released stable kernels 4.0.6, 3.14.45, and 3.10.81. All of them contain important fixes throughout the tree.
Stable kernel updates

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
Vuln: Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
Vuln: OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2015-0469 Remote Security Vulnerability

Oracle Java SE CVE-2015-0486 Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2015-0486 Remote Security Vulnerability

APPLE-SA-2015-06-30-4 Safari 8.0.7, Safari 7.1.7, and Safari 6.2.7
Bugtraq: APPLE-SA-2015-06-30-4 Safari 8.0.7, Safari 7.1.7, and Safari 6.2.7

APPLE-SA-2015-06-30-3 Mac EFI Security Update 2015-001
Bugtraq: APPLE-SA-2015-06-30-3 Mac EFI Security Update 2015-001

APPLE-SA-2015-06-30-2 OS X Yosemite v10.10.4 and Security Update 2015-005
Bugtraq: APPLE-SA-2015-06-30-2 OS X Yosemite v10.10.4 and Security Update 2015-005

APPLE-SA-2015-06-30-1 iOS 8.4
Bugtraq: APPLE-SA-2015-06-30-1 iOS 8.4

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
More rss feeds from SecurityFocus