Issues on Linux and Security
button Home

Welcome to LinuxSecure

I found some scripts on my workstation that have not been published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can contact me, if you are interested in one or more of them.

  • A tool for the backup of network components. The script runs as a daemon and can be configured via config files. It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage. There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
  • Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send, mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem (deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before, dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
  • A logscanner and a scanner for the checkpoint objects file.
  • A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
  • A ftp-script for the honeynet.
  • Various backupscripts in Perl and Bash.
  • Various iptables scrips.
  • A script called minilinux to create a small linux out of a huge running system.
  • Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
  • A snort admin interface in php.
  • A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.

back to top

button Whats New
[2005-02-18] mp3riot version 1.3 released
[2004-10-08] mp3riot version 1.2 is out.
[2004-04-30] Added section Bridging
[2004-01-09] working progress on mp3riot version 1.2
Security updates have been issued by Arch Linux(bitcoin-daemon and bitcoin-qt), Debian(firefox-esr, hylafax, libarchive-zip-perl, mediawiki, okular, openafs, strongswan, and texlive-bin), Fedora(gitolite3, kernel-headers, and lcms2), Mageia(dropbear, kernel, lcms2, libcgroup, libextratcor, mailman, mpg123, okular, php, soundtouch, unixODBC, webkit2, and xml-security-c), openSUSE(aubio, bouncycastle, chromium, ffmpeg-4, firefox, gdm, GraphicsMagick, hylafax+, ImageMagick, jhead, liblouis, nemo-extensions, nextcloud, nodejs6, obs-service-refresh_patches, okular, openslp, pango, phpMyAdmin, python-Django, python-Django1, and seamonkey), Oracle(spice and spice-gtk), Slackware(firefox and kernel), and SUSE(ant, apache2, gnutls, libzypp, zypper, nodejs6, nodejs8, and xorg-x11-libs).
Security updates for Monday

The 4.19-rc5kernel prepatch has been released by Greg Kroah-Hartman. "As almost everyone knows, it's been an 'interesting' week from a social point-of-view. But from the technical side, -rc5 looks totally normal."
Kernel prepatch 4.19-rc5

The kernel's namespaceabstraction allows different groups of processes to have different views of the system. This feature is most often used with containers; it allows each container to have its own view of the set of running processes, the network environment, the filesystem hierarchy, and more. One aspect of the system that remains universal, though, is the concept of the system time. The recently posted time namespace patch set(from Dmitry Safonov with a lot of work by Andrei Vagin) seeks to change that.
[$] Time namespaces

The Ubuntu blog has announcedthe release of version 1.0.0 of the Mir display server. "Whether for building a device or for writing a shell for the desktop, Mir can give you a graphics stack that is fast, light, and secure. The Mir graphical stack works across different graphics platforms and driver models and is easy to integrate into your kiosk, digital signage, or purpose built graphical solution. It was first conceived over 6 years ago as part of an initiative by Canonical to unify the graphical environment across all devices, including desktop, TV, and mobile devices and continues to be developed with new features and modern standards."
Mir 1.0 released

Security updates have been issued by Debian(hylafax, sympa, and texlive-bin), Fedora(curl and gitolite3), Mageia(bouncycastle, ghostscript, and libx11), openSUSE(webkit2gtk3), Oracle(spice and spice-gtk and spice-gtk and spice-server), Red Hat(rubygem-smart_proxy_dynflow, spice and spice-gtk, and spice-gtk and spice-server), Scientific Linux(spice and spice-gtk and spice-gtk and spice-server), and SUSE(ImageMagick, kernel, liblouis, openslp, and python-paramiko).
Security updates for Friday

Security updates have been issued by Debian(glusterfs, php5, reportbug, and suricata), openSUSE(chromium and exempi), Red Hat(openstack-rabbitmq-container), SUSE(couchdb, crowbar, crowbar-core, crowbar-ha, crowbar-init, crowbar-openstack, crowbar-ui, gdm, OpenStack, pango, and webkit2gtk3), and Ubuntu(bind9, lcms, lcms2, and lcms2).
Security updates for Thursday

A storyin The New Yorkermagazine may help explain some of the timing of the recent upheavals in kernel-land. Longtime followers of kernel development will find the article to be a mixed bag?over the top in spots, fairly accurate elsewhere. "Torvalds?s decision to step aside came after The New Yorkerasked him a series of questions about his conduct for a story on complaints about his abusive behavior discouraging women from working as Linux-kernel programmers. In a response to The New Yorker, Torvalds said, 'I am very proud of the Linux code that I invented and the impact it has had on the world. I am not, however, always proud of my inability to communicate well with others?this is a lifelong struggle for me. To anyone whose feelings I have hurt, I am deeply sorry.'"
After Years of Abusive E-mails, the Creator of Linux Steps Aside (The New Yorker)

The Weekly Edition for September 20, 2018 is available.
[$] Weekly Edition for September 20, 2018

Stable kernels 4.18.9, 4.14.71, 4.9.128, and 4.4.157have been released. They all contain the usual set of important fixes and users should upgrade.
Stable kernel updates

Android's Project Trebleis meant as a way to reduce the fragmentation in the Android ecosystem. It also makes porting Android 8 ("Oreo"?the first version to mandate Treble) more difficult, according to Fedor Tcymbal. He described the project and what it means for silicon and device vendors in a talk at Open Source Summit North America 2018in Vancouver, Canada.
[$] Project Treble

Facebook runs a lot of programs and it tries to pack as many as it can onto each machine. That means running close to?and sometimes beyond?the resource limits on any given machine. How the system reacts when, for example, memory is exhausted, makes a big difference in Facebook getting its work done. Tejun Heo came to 2018 Open Source Summit North Americato describe the resource control work that has been done by the team he works on at Facebook.
[$] Resource control at Facebook

Security updates have been issued by Debian(chromium-browser and libapache2-mod-perl2), Oracle(kernel), and Ubuntu(ghostscript, glib2.0, and php5).
Security updates for Wednesday

Version 7.0.0 of the LLVM compiler suite is out. "It is the result of the community's work over the past six months, including: function multiversioning in Clang with the 'target' attribute for ELF-based x86/x86_64 targets, improved PCH support in clang-cl, preliminary DWARF v5 support, basic support for OpenMP 4.5 offloading to NVPTX, OpenCL C++ support, MSan, X-Ray and libFuzzer support for FreeBSD, early UBSan, X-Ray and libFuzzer support for OpenBSD, UBSan checks for implicit conversions, many long-tail compatibility issues fixed in lld which is now production ready for ELF, COFF and MinGW, new tools llvm-exegesis, llvm-mca and diagtool". The list of new features is long; see the overall release notes, the Clang release notes, the Clang tools release notes, and the LLD linker release notesfor more information.
LLVM 7.0.0 released

A couple of surprising things happened in the kernel community on September 16: Linus Torvalds announcedthat he was taking a break from kernel development to focus on improving his own behavior, and the longstanding "code of conflict"was replacedwith a code of conduct based on the Contributor Covenant. Those two things did not quite come packaged as a set, but they are clearly not unrelated. It is a time of change for the kernel project; there will be challenges to overcome but, in the end, less may change than many expect or fear.
[$] Code, conflict, and conduct

Security updates have been issued by Fedora(ghostscript, icu, nspr, nss, nss-softokn, nss-util, and okular), Red Hat(java-1.7.1-ibm, java-1.8.0-ibm, OpenStack Platform, openstack-neutron, and openstack-nova), and Ubuntu(clamav and php5, php7.0, php7.2).
Security updates for Tuesday

Apple Mac OS X Server APPLE-SA-2016-03-21-7 Multiple Security Vulnerabilities
Vuln: Apple Mac OS X Server APPLE-SA-2016-03-21-7 Multiple Security Vulnerabilities

IBM DB2 and DB2 Connect CVE-2013-5466 Remote Denial of Service Vulnerability
Vuln: IBM DB2 and DB2 Connect CVE-2013-5466 Remote Denial of Service Vulnerability

IBM DB2 and DB2 Connect Audit Facility Local Privilege Escalation Vulnerability
Vuln: IBM DB2 and DB2 Connect Audit Facility Local Privilege Escalation Vulnerability

Mozilla Firefox MFSA2018-20 Multiple Security Vulnerabilities
Vuln: Mozilla Firefox MFSA2018-20 Multiple Security Vulnerabilities

[SECURITY] [DSA 4269-1] postgresql-9.6 security update
Bugtraq: [SECURITY] [DSA 4269-1] postgresql-9.6 security update

[SECURITY] [DSA 4268-1] openjdk-8 security update
Bugtraq: [SECURITY] [DSA 4268-1] openjdk-8 security update

[SECURITY] [DSA 4267-1] kamailio security update
Bugtraq: [SECURITY] [DSA 4267-1] kamailio security update

[CVE-2018-12584] Heap overflow vulnerability in reSIProcate through 1.10.2
Bugtraq: [CVE-2018-12584] Heap overflow vulnerability in reSIProcate through 1.10.2

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
More rss feeds from SecurityFocus