Posts

Showing posts from May, 2008

Security Fix: Samba

A new security fix has been released by Slackware Security Team. This time, it affects Samba 3.0.0 through 3.0.29. Here's the latest Changelog entry:
Wed May 28 19:48:34 CDT 2008
n/samba-3.0.30-i486-1.tgz:
Upgraded to samba-3.0.30.
This is a security release in order to address CVE-2008-1105 ("Boundary failure when parsing SMB responses can result in a buffer overrun").
For more information on the security issue, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105
(* Security fix *)

Security Fix: RDesktop

One security fix and two updated packages get it's way through -Current and also -Stable today. The security fix was released for rdesktop application, while mkinitrd and ktorrent gets a updated version.
Tue May 27 22:12:01 CDT 2008
a/mkinitrd-1.3.2-i486-3.tgz: Initialize RAID earlier so that the combination of RAID+LUKS+LVM works. Thanks to Eric Hameleers.

xap/rdesktop-1.6.0-i486-1.tgz: Upgraded to rdesktop-1.6.0.
According to the rdesktop ChangeLog, this contains a: "* Fix for potential vulnerability against compromised/malicious servers (reported by iDefense)"
This package build also includes the new alsa driver (--with-sound=alsa), though I couldn't get local sound redirection. Perhaps it was just my command line error though, so the driver remains included for testing.
For more information on the security issue, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1801
(* Security fix *)

extra/ktorrent/ktorrent-2.2.7-i486-1.tgz: Upgraded to ktorrent-2.2.7.

A Little Hack on Pidgin SlackBuild Script

Image
Newer Pidgin has been released. Since Slackware-Current is in idle state (it's not really idle, but the development was not publicized yet), you won't see many updated version unless it's related to security. So if you want to use PV's Slackbuild to build a new Pidgin, you will be surprised to see that it won't work. Why? The reason is already mentioned on the Pidgin 2.4.2's Changelog:
The configure script now dies on more absent dependencies. The --disable-xxx arguments to configure can be used to bypass unneeded dependencies. This will also cause the configure script to die if an --enable-xxx option is used and the dependencies it requires are missing.If you use default Slackware 12.1 installation, you will not have gtkspell, avahi, NetworkManager, and meanwhile libraries, so this four requirement are not met. In order to make the SlackBuild works again, you will need to add this four lines in the configuration parameters:
--disable-gtkspell \
--disable-meanwhi…

Slackpkg Updates

Another update comes through -Current tree. Slackpkg is now updated to build -4 to fix a bug where the "x86" ARCH was not recognized in a package name, leading to the kernel-headers package not getting properly upgraded.
Wed May 14 17:22:14 CDT 2008
extra/slackpkg/slackpkg-2.70.4-noarch-1.tgz:
Upgraded to slackpkg 2.70.4-noarch-1. This fixes a bug where the "x86" ARCH was not recognized in a package name, leading to the kernel-headers package not getting properly upgraded. Thanks to Piter Punk! -:)

Growing Community

Image
It has been ten months since i created id-slackware mailing list using a free service from GoogleGroups. Currently, it has around 200 members from all around Indonesia. They came from different background and we all share about Slackware in our daily activities. Some of the members are using Slackware for servers, but others used it for primary desktop operating system (including me).

I never thought that we would grow this big, but thanks to the members, we are able to gather in one place to discuss about Slackware and give support to those who have just migrated to Slackware (whether it's from Windows or any Linux distribution). We welcome all of you

I would also say thank you PV for his dedication building and maintaining Slackware for more than 10 years up to now. It has evolved from a "scary" Linux distribution (well, it's not that scary, but for most people in Indonesia, they thought so in the early version of Slackware) into a user-friendly Linux distribution, …

First Update For 12.1

First updates for Slackware 12.1 (and also for other Slackware releases) are now available through Slackware mirrors. It contains two updated packages, PHP and Mozilla Thunderbird. Here's the latest -Current changelog (it's quite strange, since usually updated packages are only available in -Stable changelog after -Stable has been released):
Wed May 7 16:13:31 CDT 2008
n/php-5.2.6-i486-1.tgz:
Upgraded to PHP 5.2.6.
This version of PHP contains many fixes and enhancements. Some of the fixes are security related, and the PHP release announcement provides this list:
* Fixed possible stack buffer overflow in the FastCGI SAPI identified by Andrei Nigmatulin.
* Fixed integer overflow in printf() identified by Maksymilian Aciemowicz.
* Fixed security issue detailed in CVE-2008-0599 identified by Ryan Permeh.
* Fixed a safe_mode bypass in cURL identified by Maksymilian Arciemowicz.
* Properly address incomplete multibyte chars inside escapeshellcmd() identified by Stefan Esser.
* Upgraded bundl…

Indonesian Mirror For Slackware 12.1

Image
Good news for Indonesian Slackers!!!

Slackware 12.1 ISOs have arrived in several local mirrors, including Kambing, Slackware-ID, VIP, Indonesian Slackware Linux Community and UGM. I hope other mirrors will mirror this mirror and spread the Slackware ISOs like other ISO as well. Please note that some mirror doesn't provide Source CD (CD 4 - 6) and also DVD ISOs (yet, but i don't know whether they would provide it in the future or not). If you are looking for a DVD ISOs, i suggest that should wait for international mirror which has bigger bandwidth

I also have provided a local mirror on my office computer that serves several popular Linux distribution besides Slackware (this is a MUST). It can help students to get Linux distribution ISOs easily without having to download them directly. I can use my campus bandwidth at night, since i can access my computer remotely from anywhere.

Too bad i couldn't get rsync get through the proxy server, so i couldn't provide SlackBuilds re…

HTTP/FTP Installation Support

Image
Just in case you haven't noticed yet, Slackware 12.1 has been released and it brings lots of new improvements compared to 12.0 and any other releases. It's still being developed with KISS mindset, meaning that most of the components won't have big changes (like GUI installer and fancy desktop, even though LILO has a new fancy splash screen now), but it focused on the stability, security, and huge control access on your own system.

While most of the big changes are already noted in the Release Notes or in CHANGES_AND_HINTS, there's one addition that it very handy to make Slackware installation easier, which is the new support of HTTP/FTP during installation process. It's documented in the Slackware-Howto in the Slackware mirrors site:
For the network options, you'll need to have a network card that's supported by one of the installer's modules, and preferably a DHCP server running to make the network setup easy. The network install options are to use as y…

New Poll

Image
Since Slackware 12.1 has been released, it's time for a new poll again and this time, the duration for you to vote has been extended for two months (it will be ended in June, 30). The question is related to release of Slackware 12.1 : Slackware 12.1 Released. What would you do? I have several options for you:
Run fresh installationManually upgrade (using upgradepkg)Automatic upgrade (using tools, such as slackpkg)Wait for public review and testingRunning test in other test systemRunning in virtualization systemStick with the old version for nowStick with the Linux distribution i used currentlyMigrating to SlackwareI hope the options represents all available options out there. Enjoy the poll and also the new shiny Slackware 12.1

Slackware 12.1 Released

Image
Finally, the waiting time is over. Slackware 12.1 has been released by Patrick Volkerding with only one changes from the last batch of updates. I would like to thank you to Patrick Volkerding for his dedication this time maintaining Slackware, thus giving us a wonderful Linux distribution.

The official announcement will tell you everything you should know about this version, but it would be nice to see the CHANGES_AND_HINTS which describes changes made from previous 12.0 release. It may also give you hints to solve several problem you *may* encountered while playing with Slackware 12.1 (believe me, you would see the magic of this file, don't matter whether you are doing manual upgrade or fresh installation).

For now, the ISO are only available on Torrents, so if you are interested, please download and seed as long as you can. It will helps many other people to get the ISO as fast as possible. Also, don't forget to support this project by donations or buying the official CD/DVD s…

Poll Results

Image
Another month has passed, so a poll has ended too. Last month's question is "Which New Features in Next Slackware 12.1 That You Like?" I gave several options for you to vote and here's the results:

Updated Toolchain (Glibc 2.7 and GCC 4.2.3) 47 (40%)
Kernel 2.6.24.x based 55 (47%)
Updated XOrg 7.3 50 (42%)
Updated Window Manager (KDE 3.5.9 and XFCE 4.2.2) 41 (35%)
Splash Screen in LILO 42 (35%)
Inclusion of New Fonts 27 (23%)
Inclusion of SCIM Packages 9 (7%)
Inclusion of Tango Icons 21 (17%)
Inclusion of Py* Packages 22 (18%)
Inclusion of Many Wireless Firmware 38 (32%)
NTFS Read/Write Support (via NTFS-3G, NTFSPROGS, and FUSE) 56 (47%)

We have two winners. People tends to like the inclusion of NTFS Read/Write Support via NTFS-3G, FUSE and NTFSPROGS and also a new kernel based on 2.6.24.x (currently it will be released using 2.6.24.5).

New kernel meaning new features and also more hardware support, so it's likely a great option for those who has just bought new hardware as …

Slackware 12.1 RC 4

Only two changes here on RC 4, which are kernel patches to fix security issue in fs/dnotify.c and also slackpkg updates from Piter Punk. PV thinks this should be the last one, so we are hoping Slackware 12.1 should be released this month
Wed Apr 30 20:36:48 CDT 2008
12.1 RC4. We think this should be the last one.
a/kernel-generic-2.6.24.5-i486-2.tgz: Patched to fix a security issue in fs/dnotify.c. The use of dnotify (largely replaced by inotify on 2.6.x systems) could lead to a local DoS, or possibly a local root hole. We said we wouldn't make changes now unless something was "critical" -- and it seems we got what we wished for. ;-) This flaw will also be addressed in the kernels for previous releases as soon as possible. The patch itself may be found in source/k/linux-2.6.24.5-CVE-2008-1375-patch/.
For additional information (when the CVE candidate is opened), see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1375
All the kernel packages below should also be consi…