Welcome to LinuxSecure
I found some scripts on my workstation that have not been
published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can
contact me, if you are interested in one or more of them.
- A tool for the backup of network components. The script runs as a daemon and can be configured via config files.
It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage.
There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
- Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a
status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the
mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send,
mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem
(deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before,
dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
- A logscanner and a scanner for the checkpoint objects file.
- A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
- A ftp-script for the honeynet.
- Various backupscripts in Perl and Bash.
- Various iptables scrips.
- A script called minilinux to create a small linux out of a huge running system.
- Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
- A snort admin interface in php.
- A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.
back to top
| Whats New|
|[2005-02-18] mp3riot version 1.3 released|
|[2004-10-08] mp3riot version 1.2 is out.|
|[2004-04-30] Added section Bridging|
|[2004-01-09] working progress on mp3riot version 1.2|
second partof Daniel Stone's series on recent improvements in
low-level graphics support. "The end result of all this work is that
we have been able to eliminate the magic side channels which used to
proliferate, and lay the groundwork for properly communicating this
information across multiple devices as well. Devices supporting ARM's AFBC
compression format are just beginning to hit the market, which share a
single compression format between video decoder, GPU, and display
controller. We are also beginning to see GPUs from different vendors share
tiling formats, in order to squeeze the most performance possible from
hybrid GPU systems."|
|Stone: A new era for Linux's low-level graphics - Part 2|
|Security updates have been issued by Debian(adminer, isc-dhcp, kamailio, libvorbisidec, plexus-utils2, and simplesamlphp), Fedora(exim and glibc-arm-linux-gnu), Mageia(sqlite3), openSUSE(Chromium, kernel, and qemu), SUSE(memcached), and Ubuntu(sharutils).
|Security updates for Friday|
|Energy-aware scheduling ? running a system's workload in a way that
minimizes the amount of energy consumed ? has been a topic of active
discussion and development for some time; LWN first covered the issueat the beginning of 2012.
Many approaches have been tried during the intervening years, but little in
the way of generalized energy-aware scheduling work has made it into the
mainline. Recently, a new patch setwas
posted by Dietmar Eggemann that
only tries to address one aspect of the problem; perhaps the problem domain
has now been simplified enough that this support can finally be merged.
|[$] Energy-aware scheduling on asymmetric systems|
|Yet another new crop of stable kernels has been released: 4.9.89, 4.4.123, and 3.18.101. Each contains a rather large set of
changes all over the kernel tree; users of those series should upgrade.
|Stable kernels 4.9.89, 4.4.123, and 3.18.101|
|Version 4.0of the Krita drawing tool has been released; see this
articlefor a summary of the new features in this release.
"Krita 4.0 will use SVG on vector layers by default, instead of the
prior reliance on ODG. SVG is the most widely used open format for vector
graphics out there. Used by 'pure' vector design applications, SVG on Krita
currently supports gradients and transparencies, with more effects coming
|Krita 4.0 released|
|Security updates have been issued by Arch Linux(lib32-libvorbis), Debian(exempi and polarssl), Gentoo(collectd and webkit-gtk), openSUSE(postgresql96), SUSE(qemu), and Ubuntu(libvorbis).
|Security updates for Thursday|
|The LWN.net Weekly Edition for March 22, 2018 is available.
|[$] LWN.net Weekly Edition for March 22, 2018|
|"Syzbot"is an automated system that runs the syzkaller fuzzer on the
kernel and reports the resulting crashes. Dmitry Vyukov has announced the
availability of a web sitedisplaying the outstanding reports. "The dashboard shows info about active bugs reported by syzbot. There
are ~130 active bugs and I think ~2/3 of them are actionable (still
happen and have a reproducer or are simple enough to debug)."|
|Introducing the syzbot dashboard|
|While updating kernels frequently is generally considered a security best
practice, there are many installations that are unable to do so for a
variety of reasons. That means running with some number of known
vulnerabilities (along with an unknown number of unknown vulnerabilities, of
course), so some way to detect and stop exploits for those flaws may be
desired. That is exactly what the Linux Kernel Runtime Guard(LKRG)
is meant to do.
|[$] A "runtime guard"for the kernel|
|It is an increasingly poorly kept secret that, underneath the hood of
the components that most of us view as "hardware", there is a great deal of
proprietary software. This code, written by anonymous developers, rarely
sees the light of day; as a result, it tends to have all of the pathologies
associated with software that nobody can either review or fix. The 2018
Embedded Linux Conference
saw an announcement for a new project that, with luck, will change that
situation, at least for one variety of hardware: audio devices.
|[$] The Sound Open Firmware project launches|
5.4of the RawTherapee image-processing tool is out. New features
include a new histogram-matching tool, a new HDR tone-mapping tool, a
number of user-interface and performance improvements, and quite a bit
|RawTherapee 5.4 released|
|Greg Kroah-Hartman has released stable kernels 4.15.12and 4.14.29. As usual, they contain important
fixes and users of those series should upgrade.
|Stable kernels 4.15.12 and 4.14.29|
|Security updates have been issued by CentOS(firefox), Debian(plexus-utils), Fedora(calibre, cryptopp, curl, dolphin-emu, firefox, golang, jhead, kernel, libcdio, libgit2, libvorbis, ming, net-snmp, patch, samba, xen, and zsh), Red Hat(collectd and rh-mariadb101-mariadb and rh-mariadb101-galera), and Ubuntu(paramiko and tiff).
|Security updates for Wednesday|
|Daniel Stone begins
a serieson how the Linux graphic stack has improved in recent times.
"This has made mainline Linux much more attractive: the exact same
generic codebases of GNOME and Weston that I'm using to write this blog
post on an Intel laptop run equally well on AMD workstations, low-power NXP
boards destined for in-flight entertainment, and high-end Renesas SoCs
which might well be in your car. Now that the drivers are easy to write,
and applications are portable, we've seen over ten new DRM drivers merged
to the upstream kernel since atomic modesetting was merged."|
|Stone: A new era for Linux's low-level graphics - Part 1|
|Developers and maintainers of free-software projects are drawn from
the same pool of people, and maintainers in one project are often developers
in another, but there is still a certain amount of friction between the
two groups. Maintainers depend on developers to contribute changes, but
the two groups have a different set of incentives when it comes to reviewing and
accepting those changes. Two talks at the 2018 Embedded Linux Conference
shed some light on this relationship and how it can be made to work more
|[$] Two perspectives on the maintainer relationship|