Welcome to LinuxSecure
I found some scripts on my workstation that have not been
published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can
contact me, if you are interested in one or more of them.
- A tool for the backup of network components. The script runs as a daemon and can be configured via config files.
It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage.
There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
- Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a
status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the
mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send,
mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem
(deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before,
dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
- A logscanner and a scanner for the checkpoint objects file.
- A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
- A ftp-script for the honeynet.
- Various backupscripts in Perl and Bash.
- Various iptables scrips.
- A script called minilinux to create a small linux out of a huge running system.
- Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
- A snort admin interface in php.
- A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.
back to top
| Whats New|
|[2005-02-18] mp3riot version 1.3 released|
|[2004-10-08] mp3riot version 1.2 is out.|
|[2004-04-30] Added section Bridging|
|[2004-01-09] working progress on mp3riot version 1.2|
|Security updates have been issued by Arch Linux(bitcoin-daemon and bitcoin-qt), Debian(firefox-esr, hylafax, libarchive-zip-perl, mediawiki, okular, openafs, strongswan, and texlive-bin), Fedora(gitolite3, kernel-headers, and lcms2), Mageia(dropbear, kernel, lcms2, libcgroup, libextratcor, mailman, mpg123, okular, php, soundtouch, unixODBC, webkit2, and xml-security-c), openSUSE(aubio, bouncycastle, chromium, ffmpeg-4, firefox, gdm, GraphicsMagick, hylafax+, ImageMagick, jhead, liblouis, nemo-extensions, nextcloud, nodejs6, obs-service-refresh_patches, okular, openslp, pango, phpMyAdmin, python-Django, python-Django1, and seamonkey), Oracle(spice and spice-gtk), Slackware(firefox and kernel), and SUSE(ant, apache2, gnutls, libzypp, zypper, nodejs6, nodejs8, and xorg-x11-libs).
|Security updates for Monday|
|The 4.19-rc5kernel prepatch has been
released by Greg Kroah-Hartman. "As almost everyone knows, it's been
an 'interesting' week from a social point-of-view. But from the technical
side, -rc5 looks totally normal."|
|Kernel prepatch 4.19-rc5|
|The kernel's namespaceabstraction allows
different groups of processes to have different views of the system. This
feature is most often used with containers; it allows each container to
have its own view of the set of running processes, the network environment,
the filesystem hierarchy, and more. One aspect of the system that remains
universal, though, is the concept of the system time. The recently posted
namespace patch set(from Dmitry Safonov with a lot of work by Andrei
Vagin) seeks to change that.
|[$] Time namespaces|
|The Ubuntu blog has announcedthe release of version 1.0.0 of the Mir display server. "Whether for building a device or for writing a shell for the desktop, Mir can give you a graphics stack that is fast, light, and secure. The Mir graphical stack works across different graphics platforms and driver models and is easy to integrate into your kiosk, digital signage, or purpose built graphical solution. It was first conceived over 6 years ago as part of an initiative by Canonical to unify the graphical environment across all devices, including desktop, TV, and mobile devices and continues to be developed with new features and modern standards."|
|Mir 1.0 released|
|Security updates have been issued by Debian(hylafax, sympa, and texlive-bin), Fedora(curl and gitolite3), Mageia(bouncycastle, ghostscript, and libx11), openSUSE(webkit2gtk3), Oracle(spice and spice-gtk and spice-gtk and spice-server), Red Hat(rubygem-smart_proxy_dynflow, spice and spice-gtk, and spice-gtk and spice-server), Scientific Linux(spice and spice-gtk and spice-gtk and spice-server), and SUSE(ImageMagick, kernel, liblouis, openslp, and python-paramiko).
|Security updates for Friday|
|Security updates have been issued by Debian(glusterfs, php5, reportbug, and suricata), openSUSE(chromium and exempi), Red Hat(openstack-rabbitmq-container), SUSE(couchdb, crowbar, crowbar-core, crowbar-ha, crowbar-init, crowbar-openstack, crowbar-ui, gdm, OpenStack, pango, and webkit2gtk3), and Ubuntu(bind9, lcms, lcms2, and lcms2).
|Security updates for Thursday|
|A storyin The New Yorkermagazine may help explain some of the timing of the recent upheavals in kernel-land. Longtime followers of kernel development will find the article to be a mixed bag?over the top in spots, fairly accurate elsewhere. "Torvalds?s decision to step aside came after The New Yorkerasked him a series of questions about his conduct for a story on complaints about his abusive behavior discouraging women from working as Linux-kernel programmers. In a response to The New Yorker, Torvalds said, 'I am very proud of the Linux code that I invented and the impact it has had on the world. I am not, however, always proud of my inability to communicate well with others?this is a lifelong struggle for me. To anyone whose feelings I have hurt, I am deeply sorry.'"|
|After Years of Abusive E-mails, the Creator of Linux Steps Aside (The New Yorker)|
|The LWN.net Weekly Edition for September 20, 2018 is available.
|[$] LWN.net Weekly Edition for September 20, 2018|
|Stable kernels 4.18.9, 4.14.71, 4.9.128, and 4.4.157have been released. They all contain
the usual set of important fixes and users should upgrade.
|Stable kernel updates|
Trebleis meant as a way to reduce the fragmentation in the Android
ecosystem. It also makes porting Android 8 ("Oreo"?the first version
to mandate Treble) more difficult, according to Fedor Tcymbal. He
described the project and what it means for silicon and device vendors in a
Source Summit North America 2018in Vancouver, Canada.
|[$] Project Treble|
|Facebook runs a lot of programs and it tries to pack as many as it can onto
each machine. That means running close to?and sometimes beyond?the
resource limits on any given machine. How the system reacts when, for example,
memory is exhausted, makes a big difference in Facebook getting its work
done. Tejun Heo came to 2018
Open Source Summit North Americato describe the resource control
work that has been done by the team he works on at Facebook.
|[$] Resource control at Facebook|
|Security updates have been issued by Debian(chromium-browser and libapache2-mod-perl2), Oracle(kernel), and Ubuntu(ghostscript, glib2.0, and php5).
|Security updates for Wednesday|
|Version 7.0.0 of the LLVM compiler suite is out.
"It is the result of the community's work
over the past six months, including: function multiversioning in Clang
with the 'target' attribute for ELF-based x86/x86_64 targets, improved
PCH support in clang-cl, preliminary DWARF v5 support, basic support
for OpenMP 4.5 offloading to NVPTX, OpenCL C++ support, MSan, X-Ray
and libFuzzer support for FreeBSD, early UBSan, X-Ray and libFuzzer
support for OpenBSD, UBSan checks for implicit conversions, many
long-tail compatibility issues fixed in lld which is now production
ready for ELF, COFF and MinGW, new tools llvm-exegesis, llvm-mca and
The list of new features
is long; see
overall release notes,
Clang release notes,
Clang tools release notes, and
LLD linker release notesfor more information.
|LLVM 7.0.0 released|
|A couple of surprising things happened in the kernel community on
September 16: Linus Torvalds announcedthat he was taking a break from kernel development to focus on improving
his own behavior, and the longstanding "code of conflict"was replacedwith a code of conduct based on the Contributor
Covenant. Those two things did not quite come packaged as a set, but
they are clearly not unrelated. It is a
time of change for the kernel project; there will be challenges to overcome
but, in the end, less may change than many expect or fear.
|[$] Code, conflict, and conduct|
|Security updates have been issued by Fedora(ghostscript, icu, nspr, nss, nss-softokn, nss-util, and okular), Red Hat(java-1.7.1-ibm, java-1.8.0-ibm, OpenStack Platform, openstack-neutron, and openstack-nova), and Ubuntu(clamav and php5, php7.0, php7.2).
|Security updates for Tuesday|