[opensuse] what does this updater message mean?
Hi, Opensuse updater wants to update "hal dbus configuration" to 6098-0 (on 10.3/KDE 3.5, up-to-date, except this one). The details about this update say: "The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well." I'm not sure if I understand what this wants to tell me: will I have to udate any configuration myself (manually?) after this update, or *is* this update already the new configuration? If I have to configure anything manually: what? how? Can this update break my WLAN/Knetworkmanager (which already is more than problematic on 10.3)? thanks for making this clear to me... Daniel -- Daniel Bauer photographer Basel Barcelona professional photography: http://www.daniel-bauer.com erotic art photos: http://www.bauer-nudes.com Madagascar special: http://www.fotograf-basel.ch/madagascar/ -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Sunday 22 March 2009 10:18:02 Daniel Bauer wrote:
If I have to configure anything manually: what? how? Can this update break my WLAN/Knetworkmanager (which already is more than problematic on 10.3)?
thanks for making this clear to me...
The release note of this patch has more info http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00003.html In particular "The updated DBus daemon now logs access violations via syslog. If you see log entries about rejected messages of type "method_call" during normal operation the application that caused it likely needs an updated DBus policy. Please contact the application vendor in this case." You shouldn't have to do anything manually. If you see log messages from dbus, file a bug. I haven't seen any so far Anders -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Thank you Anders, Due to my lack of english knowledge I was afraid of misinterpreting the info the updater gave me. Now update worked and survived some reboots, too :-) regards Daniel On Sunday 22 March 2009 10:25:02, Anders Johansson wrote:
On Sunday 22 March 2009 10:18:02 Daniel Bauer wrote:
If I have to configure anything manually: what? how? Can this update break my WLAN/Knetworkmanager (which already is more than problematic on 10.3)?
thanks for making this clear to me...
The release note of this patch has more info
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00003.html
In particular
"The updated DBus daemon now logs access violations via syslog. If you see log entries about rejected messages of type "method_call" during normal operation the application that caused it likely needs an updated DBus policy. Please contact the application vendor in this case."
You shouldn't have to do anything manually. If you see log messages from dbus, file a bug.
I haven't seen any so far
Anders
-- Daniel Bauer photographer Basel Barcelona professional photography: http://www.daniel-bauer.com erotic art photos: http://www.bauer-nudes.com Madagascar special: http://www.fotograf-basel.ch/madagascar/ -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (2)
-
Anders Johansson -
Daniel Bauer