April 2004 - openSUSE Security - openSUSE Mailing Lists

Kernel source not matching kernel update
by Keith Roberts 19 Apr '04

19 Apr '04

Hi everyone. I have now installed the latest kernel update for SuSE 8.1. The two packages are: k_deflt-2.4.21-203.i586.rpm kernel-source-2.4.21-201.i586.rpm I have run # make cloneconfig && make dep in /usr/src/linux. I get the following error when doing make install in the nv source directory: # make install Unable to determine kernel version. make: *** [select_makefile] Error 1 Can anyone help me with this please as I cannot use X11 now? Kind Regards - Keith Roberts

6 12

Configuring SuSEfirewall2 for FTP access
by remote 19 Apr '04

19 Apr '04

Hi ! I seem to have a problem regarding my firewall configuration. I want to allow my users FTP access to Internet FTP servers. However, for this to work it seems I have to allow communication over the higher ports (1024:65000) via a forwarding rule like : FW_FORWARD =" XXX.YYY.ZZZ.0/6,0./0,tcp,1024:65000" XXX.YYY.ZZZ.0/6 stands for my IP-range, these are official static IPs. I am not happy with this at all because it would leave my domain wide open, but how can I handle this differently ? I use SuSE 8.0 Pro. Thanks for the help, Jörg

2 3

Re: Limits in /etc/group and useradd infinity loop
by Vyacheslav S.Kulchitskee 19 Apr '04

19 Apr '04

Yesterday i'm found the same problem - useradd stop working. This is small workaround, which help me to solve problem: 1. delete string with "GROUPS=" from /etc/default/useradd (i'm found, that all new accounts belong to additional groups "uucp, dialout, audio, video", but i don't need this) After that all created users well be belong to default group "users" 2. create new "fake" group - /usr/sbin/groupadd fake 3. move existing users from additional groups "uucp, dialout, audio, video" to new group - /usr/sbin/usermod -G fake $username (i wrote small perl-script, which make this operation) 4. remove "fake" group - /usr/sbin/groupdel fake 5. play with /usr/sbin/useradd many-many times! :) PS. Sorry for my english... ------------ Vyacheslav S. Kulchitskee --- а?таматычна Ваш легкий поиск ТУТ! http://go.tut.by

2 1

Re: [suse-security] Kernel source not matching kernel update
by Keith Roberts 18 Apr '04

18 Apr '04

On Sun, 18 Apr 2004, Anders Johansson wrote: > To: suse-security(a)suse.com > From: Anders Johansson <andjoh(a)rydsbo.net> > Subject: Re: [suse-security] Kernel source not matching kernel update > > On Sunday 18 April 2004 21:19, Keith Roberts wrote: > > When I use the nvidia-installer it always compiles the > > nvidia kernel-driver interface for me, as no other options > > are found, even though I use the standard SuSE 8.1 k_deflt > > kernel. > > Right, according to the README, for suse versions 8.1 and below, they are > supposed to provide RPMs. And there is one for the 2.4.19 kernel at > ftp://download.nvidia.com/XFree86/Linux-x86/1.0-5336/ > > although there doesn't seem to be one for the new 2.4.21 kernel > > but the advise seems a bit confused, since they seem to say both to install > the rpm *and* run the installer, which seems a bit redundant. > > Anyways, note that the README suggests that the nvidia installer isn't > intended to work with 8.1, which is as you discovered yourself Perhaps that's where I went wrong. I got most of the install done with nvidia-installer. then had to finish it off by hand myself. Keith Roberts

1 0

Kernel source not matching kernel update
by Keith Roberts 18 Apr '04

18 Apr '04

Hi everyone. I have just downloaded the latest kernel update for SuSE 8.1. The two packages are: k_deflt-2.4.21-203.i586.rpm kernel-source-2.4.21-201.i586.rpm Surely the source should be patch 203 as well? Will this cause problems with compiling the nvidia driver, ie unresolved kernel symbols? Kind Regards - Keith Roberts

2 1

RE: [suse-security] Kernel source not matching kernel update
by GarUlbricht7＠netscape.net 17 Apr '04

17 Apr '04

Keith Roberts <lists(a)kar.eclipse.co.uk> wrote: > >Hi everyone. > > I have just downloaded the latest kernel update for SuSE 8.1. > > The two packages are: > > k_deflt-2.4.21-203.i586.rpm > > kernel-source-2.4.21-201.i586.rpm > > Surely the source should be patch 203 as well? > > Will this cause problems with compiling the nvidia driver, > ie unresolved kernel symbols? > > Kind Regards - Keith Roberts > Hi Keith, If You re-read Date the Wed, 14 Apr 2004 17:44:16 +0200 (CEST) From: Thomas Biege for Package: Linux Kernel Announcement-ID: SuSE-SA:2004:009 http://www.suse.com/de/security/2004_09_kernel.html You will notice that for SuSE 8.1 that k_deflt is labled: ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_deflt-2.4.21-203.i58… 0669fd902f68e9b788d2db1cc8eac71a Whereas: the kernel-source is labled: ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/kernel-source-2.4.21-2… ef72aafd7907a68c33efe1749d5a9569 This appears to match what you have downloaded. SuSE has done similar numbering changes. IIWY, I wouldn't worry about it. Friendly greetings, Gar -- In the Beginning was the Command Line ---Neal Stephenson -- __________________________________________________________________ Introducing the New Netscape Internet Service. Only $9.95 a month -- Sign up today at http://isp.netscape.com/register Netscape. Just the Net You Need. New! Netscape Toolbar for Internet Explorer Search from anywhere on the Web and block those annoying pop-ups. Download now at http://channels.netscape.com/ns/search/install.jsp

1 0

Re: [suse-security] Limits in /etc/group and useradd infinity loop
by Sebastian Krahmer 16 Apr '04

16 Apr '04

Hi, > Maxim Cherniavsky wrote: > > > > I've found strange problems with useradd program. Suddenly useradd stops > > to work and begins to eat memory till system crash. > > Sad but true that there's absolutely no response from SuSE. :-( Sorry for the delay, as you have probably seen, there have been a lot of updates yesterday; and especially kernel updates require two eyes per involved persons on it :-) We are investigating the useradd issue already. thanks a lot for the report, Sebastian -- ~ ~ perl self.pl ~ $_='print"\$_=\47$_\47;eval"';eval ~ krahmer(a)suse.de - SuSE Security Team ~

2 1

xinetd anonymous ftp
by John Charlton 16 Apr '04

16 Apr '04

I looked back through a few months of messages on this list and so far have not seen anything to address this anonymous ftp error: I am having the following error accessing SuSE 9.0 server from the internet after loging in as anonymous with jdc(a)CharltonCorp.com as password. ftp> ls 200 EPRT command successful. 435 Can't build data connection: Illegal seek. ftp> When I login from the local network as anonymous it works fine. The only problem I had with configuration is that in the xinetd configuration for ftpd, the user and group come up as --default--. I cannot change these and if I select 'accept' it gives me an error and I have to exit using the cancel button. The /etc/xinetd.d/ftpd file is: # default: off # description: The ftpd server serves FTP connections. It uses normal, \ # unencrypted usernames and passwords for authentication. This ftpd is \ # a port of the OpenBSD ftpd to Linux. service ftp { socket_type = stream protocol = tcp wait = no user = root server = /usr/sbin/in.ftpd server_args = -l -l -d disable = no } I added the -l -l -d to get more logging, but it doesn't have any affect on /var/log/xinetd.log ro /var/log/ftpd The /etc/hosts.allow is: in.ftpd : ALL : ALLOW in.ftpd : UNKNOWN : ALLOW As a part of testing I added the follow /etc/ftpaccess file: class local real,guest,anonymous 198.162.100.* class remote anonymous * autogroup ftp remote log transfers inbound,outbound

2 2

RE: [SPAM] - RE: [suse-security] System Update and Online Update - Email found in subject
by Gao, Ruidong 16 Apr '04

16 Apr '04

Thanks. I feel fou4s is better than YOU. My kernel is k_deflt-2.4.19-120 and YOU can not detect the new kernel patch for me by running system update. I have tried with SUSE site. The question is that the site is password protected. Is there workaround of it or how can I get the login info. Ben On Apr 16, Gao, Ruidong <Ruidong.Gao(a)landesk.com> wrote: > Where is patch description file in disk. Is that bundled with fou4s or > SUSE. Where can I find a template of it? The patch descriptions are on the FTP Server. You can use any of them as template, e.g. http://ftp.gwdg.de/pub/linux/suse/ftp.suse.com/suse/i386/update/8.2/patc hes/XFree86-51260 > I came to run fou4s and ended up with following error message: > ---------------------------- > linux:/home/ben # fou4s -u > You are using ftp.gwdg.de and a business product, this will probably not work. > [...] > What's wrong with it. You need to use sdb.suse.de as update server and supply SuSEUser and SuSEPassword in fou4s.conf, because updates for business products are on password protected servers. I'll make the error message more clear in the next version. Markus

2 1

Mozilla S/Mime buffer overflow security hole
by Bob Pearson 16 Apr '04

16 Apr '04

Does anyone know if Mozilla 1.6 is also vulnerable? I don't see patches for Mozilla 1.6 or Mozilla 1.7 beta as yet. Best Regards. -- _/_/_/ Bob Pearson gottadoit(a)mailsnare.net _/_/_/ i) Nil disputandum de gustibus. _/_/_/ ii) Dum spiro, spero!

2 1