Issues on Linux and Security
button Home

Welcome to LinuxSecure

I found some scripts on my workstation that have not been published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can contact me, if you are interested in one or more of them.

  • A tool for the backup of network components. The script runs as a daemon and can be configured via config files. It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage. There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
  • Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send, mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem (deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before, dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
  • A logscanner and a scanner for the checkpoint objects file.
  • A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
  • A ftp-script for the honeynet.
  • Various backupscripts in Perl and Bash.
  • Various iptables scrips.
  • A script called minilinux to create a small linux out of a huge running system.
  • Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
  • A snort admin interface in php.
  • A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.

back to top

button Whats New
[2005-02-18] mp3riot version 1.3 released
[2004-10-08] mp3riot version 1.2 is out.
[2004-04-30] Added section Bridging
[2004-01-09] working progress on mp3riot version 1.2
Here's the second partof Daniel Stone's series on recent improvements in low-level graphics support. "The end result of all this work is that we have been able to eliminate the magic side channels which used to proliferate, and lay the groundwork for properly communicating this information across multiple devices as well. Devices supporting ARM's AFBC compression format are just beginning to hit the market, which share a single compression format between video decoder, GPU, and display controller. We are also beginning to see GPUs from different vendors share tiling formats, in order to squeeze the most performance possible from hybrid GPU systems."
Stone: A new era for Linux's low-level graphics - Part 2

Security updates have been issued by Debian(adminer, isc-dhcp, kamailio, libvorbisidec, plexus-utils2, and simplesamlphp), Fedora(exim and glibc-arm-linux-gnu), Mageia(sqlite3), openSUSE(Chromium, kernel, and qemu), SUSE(memcached), and Ubuntu(sharutils).
Security updates for Friday

Energy-aware scheduling ? running a system's workload in a way that minimizes the amount of energy consumed ? has been a topic of active discussion and development for some time; LWN first covered the issueat the beginning of 2012. Many approaches have been tried during the intervening years, but little in the way of generalized energy-aware scheduling work has made it into the mainline. Recently, a new patch setwas posted by Dietmar Eggemann that only tries to address one aspect of the problem; perhaps the problem domain has now been simplified enough that this support can finally be merged.
[$] Energy-aware scheduling on asymmetric systems

Yet another new crop of stable kernels has been released: 4.9.89, 4.4.123, and 3.18.101. Each contains a rather large set of changes all over the kernel tree; users of those series should upgrade.
Stable kernels 4.9.89, 4.4.123, and 3.18.101

Version 4.0of the Krita drawing tool has been released; see this articlefor a summary of the new features in this release. "Krita 4.0 will use SVG on vector layers by default, instead of the prior reliance on ODG. SVG is the most widely used open format for vector graphics out there. Used by 'pure' vector design applications, SVG on Krita currently supports gradients and transparencies, with more effects coming soon."
Krita 4.0 released

Security updates have been issued by Arch Linux(lib32-libvorbis), Debian(exempi and polarssl), Gentoo(collectd and webkit-gtk), openSUSE(postgresql96), SUSE(qemu), and Ubuntu(libvorbis).
Security updates for Thursday

The Weekly Edition for March 22, 2018 is available.
[$] Weekly Edition for March 22, 2018

"Syzbot"is an automated system that runs the syzkaller fuzzer on the kernel and reports the resulting crashes. Dmitry Vyukov has announced the availability of a web sitedisplaying the outstanding reports. "The dashboard shows info about active bugs reported by syzbot. There are ~130 active bugs and I think ~2/3 of them are actionable (still happen and have a reproducer or are simple enough to debug)."
Introducing the syzbot dashboard

While updating kernels frequently is generally considered a security best practice, there are many installations that are unable to do so for a variety of reasons. That means running with some number of known vulnerabilities (along with an unknown number of unknown vulnerabilities, of course), so some way to detect and stop exploits for those flaws may be desired. That is exactly what the Linux Kernel Runtime Guard(LKRG) is meant to do.
[$] A "runtime guard"for the kernel

It is an increasingly poorly kept secret that, underneath the hood of the components that most of us view as "hardware", there is a great deal of proprietary software. This code, written by anonymous developers, rarely sees the light of day; as a result, it tends to have all of the pathologies associated with software that nobody can either review or fix. The 2018 Embedded Linux Conference saw an announcement for a new project that, with luck, will change that situation, at least for one variety of hardware: audio devices.
[$] The Sound Open Firmware project launches

Version 5.4of the RawTherapee image-processing tool is out. New features include a new histogram-matching tool, a new HDR tone-mapping tool, a number of user-interface and performance improvements, and quite a bit more.
RawTherapee 5.4 released

Greg Kroah-Hartman has released stable kernels 4.15.12and 4.14.29. As usual, they contain important fixes and users of those series should upgrade.
Stable kernels 4.15.12 and 4.14.29

Security updates have been issued by CentOS(firefox), Debian(plexus-utils), Fedora(calibre, cryptopp, curl, dolphin-emu, firefox, golang, jhead, kernel, libcdio, libgit2, libvorbis, ming, net-snmp, patch, samba, xen, and zsh), Red Hat(collectd and rh-mariadb101-mariadb and rh-mariadb101-galera), and Ubuntu(paramiko and tiff).
Security updates for Wednesday

Daniel Stone begins a serieson how the Linux graphic stack has improved in recent times. "This has made mainline Linux much more attractive: the exact same generic codebases of GNOME and Weston that I'm using to write this blog post on an Intel laptop run equally well on AMD workstations, low-power NXP boards destined for in-flight entertainment, and high-end Renesas SoCs which might well be in your car. Now that the drivers are easy to write, and applications are portable, we've seen over ten new DRM drivers merged to the upstream kernel since atomic modesetting was merged."
Stone: A new era for Linux's low-level graphics - Part 1

Developers and maintainers of free-software projects are drawn from the same pool of people, and maintainers in one project are often developers in another, but there is still a certain amount of friction between the two groups. Maintainers depend on developers to contribute changes, but the two groups have a different set of incentives when it comes to reviewing and accepting those changes. Two talks at the 2018 Embedded Linux Conference shed some light on this relationship and how it can be made to work more smoothly.
[$] Two perspectives on the maintainer relationship

Multiple AMD Processors Multiple Remote Security Vulnerabilities
Vuln: Multiple AMD Processors Multiple Remote Security Vulnerabilities

ARM mbed TLS CVE-2017-18187 Integer Overflow Vulnerability
Vuln: ARM mbed TLS CVE-2017-18187 Integer Overflow Vulnerability

ARM mbed TLS CVE-2018-0488 Remote Code Execution Vulnerability
Vuln: ARM mbed TLS CVE-2018-0488 Remote Code Execution Vulnerability

ARM mbed TLS CVE-2018-0487 Remote Code Execution Vulnerability
Vuln: ARM mbed TLS CVE-2018-0487 Remote Code Execution Vulnerability

[SECURITY] [DSA 4149-1] plexus-utils2 security update
Bugtraq: [SECURITY] [DSA 4149-1] plexus-utils2 security update

[SECURITY] [DSA 4148-1] kamailio security update
Bugtraq: [SECURITY] [DSA 4148-1] kamailio security update

ModSecurity WAF 3.0 for Nginx - Denial of Service
Bugtraq: ModSecurity WAF 3.0 for Nginx - Denial of Service

Bomgar Remote Support Portal JavaStart Applet <= 52970 - Path Traversal
Bugtraq: Bomgar Remote Support Portal JavaStart Applet

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
More rss feeds from SecurityFocus