| Autor |
Nachricht |
|
|
Titel: Debian Server restored after Compromise (from debian.or)
 Verfasst am: 14.07.2006, 02:16 Uhr
|
|
Anmeldung: 05. Jan 2006
Beiträge: 118
|
|
|
|
|
 |
|
|
|
Titel:
Verfasst am: 14.07.2006, 08:57 Uhr
|
|
Team Member
Anmeldung: 04. Apr 2006
Beiträge: 153
Wohnort: Melbourne, Australia
|
|
The safeguards are in Debians hands, and following the reports, they took the server off line very fast and got it back on line very quickly.
The effect on kanotix, is that while they were restoring the server, you may not have been able to update, get apps or dist-upgrade.
The breach to Debian is not a breach to you. |
_________________
Kanotix Easter RC4 on a dual boot P4 and a production box Desktop KDE::
Kanotix 2006 Easter RC4 on a P2 and Production Box , Desktop KDE::
Kanotix EasterRC4 on a MMX 199Mhz lappy
and a Production Box, Desktop ICEWM::
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 14.07.2006, 13:37 Uhr
|
|
Anmeldung: 05. Jan 2006
Beiträge: 118
|
|
I didn't think it was a breach to me... Just curious if I needed a kernel upgrade. (64 bit)
I should have asked in my original post....
Thanks for the info.
-Bryan |
_________________
What is, is
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 15.07.2006, 20:01 Uhr
|
|
Team Member
Anmeldung: 04. Apr 2006
Beiträge: 153
Wohnort: Melbourne, Australia
|
|
Hmmmmm , looks more than just a compromised password
http://www.debian-administration.org/articles/418
One comment seems to suggest the 2.6.17.5 fixes it
Guess a new kernel is due for install here, in the near future
PS About 64 bit.. you have to wait for a 64 bit guru or a dev to answer your query on that issue. |
_________________
Kanotix Easter RC4 on a dual boot P4 and a production box Desktop KDE::
Kanotix 2006 Easter RC4 on a P2 and Production Box , Desktop KDE::
Kanotix EasterRC4 on a MMX 199Mhz lappy
and a Production Box, Desktop ICEWM::
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 01:36 Uhr
|
|
Anmeldung: 05. Dez 2005
Beiträge: 414
Wohnort: Auckland, New Zealand
|
|
I googled and indeed it looks like both bugs (described in http://www.debian-administration.org/articles/418) are fixed in 2.6.17.5 and above ... with 2.6.17.6 having the better fix:
http://lwn.net/Articles/191512/
So yes it looks as though it does affect kanotix if you have a kernel <2.6.17.5 (which is probably why slh has come out with 2.6.17.6-slh-up-1 and 2.6.17.6-slh64-smp-1 ? .. can one of the developers comment?) |
_________________
Linux is evolution, not intelligent design - Linus Torvalds
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 07:09 Uhr
|
|
Anmeldung: 05. Dez 2005
Beiträge: 414
Wohnort: Auckland, New Zealand
|
|
| I asked Kano online and he said yes that's why slh came out with those kernels. |
_________________
Linux is evolution, not intelligent design - Linus Torvalds
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 13:47 Uhr
|
|
Anmeldung: 05. Jan 2006
Beiträge: 118
|
|
Thanks.. (including Kano and slh).
I'll upgrade the kernel, too.
-Bryan |
_________________
What is, is
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 13:58 Uhr
|
|
Anmeldung: 22. Jan 2006
Beiträge: 1296
Wohnort: Budapest
|
|
Just a question: can one use a 2.6.17.6-slh64-smp-1 on a 32bit x86 box? There is no "standard" kanotix kernel 2.6.17.6 with smp enabled.
hubi |
_________________
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 14:03 Uhr
|
|
Anmeldung: 05. Jan 2006
Beiträge: 118
|
|
I was going to install
2.6.17.6-slh64-smp-1, but I'll have to defer to more enlightened ones
abou the details.
I have a dual processor/dual core gx620 and I assumed this was the right kernel.
-Bryan |
_________________
What is, is
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 15:46 Uhr
|
|
Anmeldung: 17. Dez 2003
Beiträge: 16792
|
|
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 15:52 Uhr
|
|
Anmeldung: 05. Jan 2006
Beiträge: 118
|
|
yep...
I just did the kernel upgrade and the dist-upgrade... No problems
-Bryan |
_________________
What is, is
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 16:05 Uhr
|
|
Anmeldung: 22. Jan 2006
Beiträge: 1296
Wohnort: Budapest
|
|
Thx for this information,
hubi |
_________________
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 18:48 Uhr
|
|
Anmeldung: 12. Mar 2005
Beiträge: 1005
|
|
<<< There is no "standard" kanotix kernel 2.6.17.6 with smp enabled. >>>
There isn't the 2.6.17.6, but there is the earlier version, 2.6.17, they just aren't listing it for some reason:
http://debian.tu-bs.de/project/kanotix/kernel/
it's kernel-2.6.17-kanotix-1.zip
that should be what was previously kernel-kanotix-current.zip, the standard kernel, I assume anyway. Not sure why the previous default method was not used this time around. |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 19:35 Uhr
|
|
Anmeldung: 22. Jan 2006
Beiträge: 1296
Wohnort: Budapest
|
|
h2,
that's exactly my question, if I can use slh's 64-kernel for a 32bit hyperthreading P4, because the box runs faster with smp enabled, and I got the "old" kanotix one running on my HP.
hubi |
_________________
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 19:40 Uhr
|
|
Anmeldung: 12. Mar 2005
Beiträge: 1005
|
|
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 22:20 Uhr
|
|
Anmeldung: 09. Jan 2006
Beiträge: 1720
|
|
Is a P4 a 64 or 32Bit Processor?
@hubi I tend to 64Bit Processor, though you can use a 64Bit kernel within a 64Bit distro, but never with a 32-Bit-distro!
the -smp on a single Processor depends on the quality of the board. |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 22:29 Uhr
|
|
Anmeldung: 22. Jan 2006
Beiträge: 1296
Wohnort: Budapest
|
|
schnorrer,
it's a 32bit processor Pentium 4 3200 Mhz but capable of hyperthreading, and the smp kernel is faster by a good bit (just placebo?).
hubi |
_________________
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 22:46 Uhr
|
|
Anmeldung: 09. Jan 2006
Beiträge: 1720
|
|
on a single-core single-Cpu yes just placebo. a 64bit Kernel will stop with an error at boot-time. but you can use the 64Bit source and cook your own 32-Bit kernel.
Howto is spread arond. |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 17.07.2006, 23:07 Uhr
|
|
Anmeldung: 22. Jan 2006
Beiträge: 1296
Wohnort: Budapest
|
|
schnorrer,
thank you for that information. I might wait for the regular 32bit smp kernel then, my HP is no server and is sleeping most of the time, because I'm on holiday 
Greetings
hubi |
_________________
|
| |
|
|
|
|
|
|
