Posts

Showing posts from July, 2008

Small Updates

Small updates due to openSSL and Poppler being updated are being released today. It only happened in -Current and none of the updates are security related. Here's the -Current changelog:
Wed Jul 30 02:49:09 CDT 2008
a/hdparm-8.9-i486-1.tgz: Upgraded to hdparm-8.9.

kde/kdegraphics-3.5.9-i486-4.tgz: Recompiled against poppler-0.8.5.

kde/koffice-1.6.3-i486-4.tgz: Recompiled against poppler-0.8.5.

l/poppler-0.8.5-i486-1.tgz: Upgraded to poppler-0.8.5.

xap/gimp-2.4.6-i486-2.tgz: Recompiled against poppler-0.8.5.

xap/gxine-0.5.903-i486-1.tgz: Upgraded to gxine-0.5.903.

xap/imagemagick-6.4.2_5-i486-1.tgz: Upgraded to ImageMagick 6.4.2-5.

xap/windowmaker-20060427cvs-i486-1.tgz: Switched to a patched CVS snapshot to get this compiling again with gcc 4.x (against ImageMagick 6.4.2-5).

xap/xine-lib-1.1.14-i686-1.tgz: Upgraded to xine-lib-1.1.14.

Tue Jul 29 13:22:03 CDT 2008
n/proftpd-1.3.1-i486-2.tgz: Recompiled against new OpenSSL, since this evidently checks the OpenSSL version and will only run again…

Pile of Security Updates

Image
WOW!!!! Bunch of security updates just come out of -Current and also -Stable tree. I was suprised to see lots of incoming email messages with slackware-security on the subject. Here they are:
Mon Jul 28 22:45:58 CDT 2008
a/openssl-solibs-0.9.8h-i486-1.tgz:
Upgraded to OpenSSL 0.9.8h shared libraries (see below).
(* Security fix *)

a/sysvinit-scripts-1.2-noarch-21.tgz: For now, quiet error output from update-mime-database, since KDE4 causes some "noise".

ap/vim-7.1.330-i486-1.tgz:
Upgraded to vim-7.1.330. This fixes several security issues related to the automatic processing of untrusted files.
For more information, see:
http://www.rdancer.org/vulnerablevim.html
(* Security fix *)

l/libxml2-2.6.32-i486-1.tgz: Upgraded to libxml2-2.6.32.

l/libxslt-1.1.24-i486-1.tgz: Upgraded to libxslt-1.1.24.
A buffer overflow when processing XSL stylesheets could result in the execution of arbitrary code.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1767
(* Security fix…

Order Arrived

Image
About two months ago, i ordered a Serious Slackware T-shirt on Slackware Store. I had some trouble convincing the officer about my credit card because Indonesia was well known of high credit card fraud in the past (it's still is right now). Finally she (Theresa) was convinced after i showed her my CC number taken from my credit card issuer web site. So she confirmed that my order was shipped in 28 May 2008.

The normal delivery time should be about two weeks, but it arrived just know, meaning it arrived after two months. Actually, i was kinda pessimistic about the order, since it was over than one month. Perhaps it was lost or it didn't make it into my house. Well, i didn't expect this, but thank God it arrived safely

Security Update: dnsmasq

New security update has been released. This time is dnsmasq package. Along with that, beta version of JDK and JRE has been re-added and placed on /testing because the new version (update 7) does not fix the CUPS printing problem described earlier.
Wed Jul 23 16:39:43 CDT 2008
n/dnsmasq-2.45-i486-1.tgz:
Upgraded to dnsmasq-2.45.
It was discovered that earlier versions of dnsmasq have DNS cache weaknesses that are similar to the ones recently discovered in BIND.
This new release minimizes the risk of cache poisoning.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447
(* Security fix *)

testing/packages/jdk-6u10_beta-i586-1.tgz: Added Java(TM) 2 Platform Standard Edition Runtime Environment Version 6.0 update 10 beta. Evidently the version 6.0 update 7 (stable) packages did not fix the CUPS printing issue, but these beta packages should (but remember, they are BETA releases).

testing/packages/jre-6u10_beta-i586-1.tgz: Added Java(TM) 2 Platform Standard Edition D…

Security Update: Firefox

It's quite late, but it's already out anyways, so get the latest Firefox 3 update on -Current (this package is only provided in -Current for now). Also, it consist of new configuration to allow allow
mailto: links to open in Thunderbird (or other mailers). See the changelog entries below for more detail:
Mon Jul 21 11:15:47 CDT 2008
xap/mozilla-firefox-3.0.1-i686-1.tgz:
Upgraded to Firefox 3.0.1.
This fixes some security issues:
For more information, see:http://www.mozilla.org/security/known-vulnerabilities/firefox30.html
Also, thanks to Phillip Warner for providing a configuration fix to allow mailto: links to open in Thunderbird (or other mailers). To use this, you may need to copy /usr/lib/firefox-3.0.1/defaults/profile/mimeTypes.rdf over your own mimeTypes.rdf under $HOME/.mozilla/firefox/{something}.default, or merge in the changes to your own mimeTypes.rdf.
( -current only )
(* Security fix *)

Java Updates

Final version of JRE and JDK has been released by Sun Microsystem, so without any ADO, Pat has just included them in -Current because it can fix the printing problem caused by previous version. The changelog says that both version is compatible for Slackware 12.1 and earlier release.

Here's the latest -Current changelog:
Sat Jul 19 17:09:00 CDT 2008
l/jre-6u7-i586-1.tgz: Switched to Java(TM) 2 Platform Standard Edition Runtime Environment Version 6.0 update 7. This non-beta stable release should fix the printing issues with CUPS in the previous stable Java(TM) release.

extra/jdk-6/jdk-6u7-i586-1.tgz: Switched to Java(TM) 2 Platform Standard Edition Development Kit Version 6.0 update 7.
Both of these Java(TM) packages are suitable for use on Slackware 12.1 and probably on earlier releases as well.

NVIdia Works Again on 2.6.26

Well, few days after 2.6.26 released, finally NVidia released a new driver which restores the compatibility with the kernel. In fact, i was one of the victim who ran into a problem when i tried to upgrade my kernel and compile my NVidia driver. It won't compile, since the changes in the kernel broke the driver.

Well, at least they have fixed it now and it should work on 2.6.26 also. Here's the information page:

173.xx
71.xx (Legacy)
96.xx (Legacy)

Security Fix: Seamonkey, Firefox

Image
Two new security packages has been released: Firefox 2.0.0.16 and Seamonkey 1.1.11. It's been released to -Stable and also in -Current (Firefox in -Current will be upgraded to 3.0.1 soon as it has been released by Mozilla team).

In the -Current itself, several packages has been upgraded, like ntfs-3g, util-linux, mesa, and seamonkey itself. So far, the changes doesn't touch the toolchain, so it's still compatible with the patched-up 12.1 box. Pat will announce when they will break the compatibility againts 12.1. It's when the real -Current tree started

2.6.26: Not For Me Yet

Image
I have just upgraded to the latest 2.6.26 kernel. Too bad, my fun only last for few hours, since it's not for me. On my desktop at home, i couldn't compile the NVidia drivers, due to NVidia hasn't release any patch yet nor release new driver which is compatible with 2.6.26 series. No big problem though, as i can use the old nv driver, but with some consequences i will not be able to launch Compiz for a while until they shipped another driver. I'll be out for one or two days, and i hope they will have shipped that new driver when i came back home

On my office desktop, i didn't use Compiz, so it's not the big deal. The problem is that the new kernel caused my hard drive to make noisy sound when it accessed the data. I don't know what's the cause, but it won't happened when i used the old kernel (2.6.25.9). Well, rather than killing my hard drive, i would stay with 2.6.25.x for now, as i don't need too much new features from 2.6.26 for now. I will…

Migrate to Alpine?

Pine, a famous text-based email client has reached it's end of development cycle and now it's being replaced by it's successors, Alpine. It has been stated on it's official website:

Pine is no longer under active development. Consider evaluating its successor, Alpine, which supports all of Pine's functionality and more.

Alpine looks promising to me, as it's backward compatible with the old pine, meaning that your data will be saved when you migrate (even though it's still recommended to do full backups before you start migrating to Alpine). Not only compatible, but it's also support more feature than pine. Right now, their latest version is 1.10, which fixed quite a lot of problems found and also include some new features.

For those who loved using Pine Patches from Eduardo Chappa, you will be pleased that he also provides patches to Alpine now.

The problem is that Alpine is not yet included in -Current tree. Probably Pat is busy preparing for the next KDE…

One At A Time

Image
One by one, my colleagues are migrating to Linux. Today, i just helped another colleague of mine migrating to Slackware. He wanted to migrate to Linux for a long time, but in the past, whenever there's a temptation to use Windows again, he postponed his intention to use Linux until lately. He's very eager to try Linux and he wanted to do full migration, but he couldn't do it in one big step. For now, dual booting is the right choice, but he will try to use Linux as much as possible.

His first choice was Ubuntu. He tried using 7.04 (that's before he asked me to help him). It failed during partitioning phase. At this point, he asked me to look for it. I had Ubuntu 8.04 on my repository computer, so i tried to use it. The symptoms are the same, it failed during scanning the partition. I tried several ways, but i couldn't find the perfect solution for that.

Next trial is Mandriva 2008.1. Mandriva did detect the hard drive, but it couldn't find the correct driver for …

Bunch of X updates

Today, several packages in x/ directory gets updated along with two new packages. Here's the latest -Current changelog:
Thu Jul 10 18:40:34 CDT 2008
d/nasm-2.03.01-i486-1.tgz: Upgraded to nasm-2.03.01.

x/compiz-0.7.6-i486-1.tgz: Upgraded to compiz-0.7.6.

xf86-video-ati-6.9.0-i486-1.tgz: Upgraded to xf86-video-ati-6.9.0.

xf86-video-mach64-6.8.0-i486-1.tgz: Added xf86-video-mach64-6.8.0.
This can be used alone with driver type "mach64" in xorg.conf, or with type "ati" using both this package and the ati driver package as a wrapper.

xf86-video-r128-6.8.0-i486-1.tgz: Added xf86-video-r128-6.8.0.
This can be used alone with driver type "r128" in xorg.conf, or with type "ati" using both this package and the ati driver package as a wrapper.

xf86-video-intel-2.3.2-i486-1.tgz: Upgraded to xf86-video-intel-2.3.2.

xf86-video-nv-2.1.10-i486-1.tgz: Upgraded to xf86-video-nv-2.1.10.

Security Updates: Firefox, Seamonkey, Bind

Three security updates and one updated package has gone through -Stable and -Current. Bind and Seamonkey goes to -Current along with updated Pidgin package to make it work again with ICQ protocol which has been changed recently, while Firefox is also added in -Stable tree, because in -Current, Firefox 3 has been included to replace Firefox 2. Here's the latest -Current changelog:
Wed Jul 9 20:48:22 CDT 2008
n/bind-9.4.2_P1-i486-1.tgz:
Upgraded to bind-9.4.2-P1.
This upgrade addresses a security flaw known as the CERT VU#800113 DNS Cache Poisoning Issue. This is the summary of the problem from the BIND site: "A weakness in the DNS protocol may enable the poisoning of caching recurive resolvers with spoofed data. DNSSEC is the only full solution. New versions of BIND provide increased resilience to the attack." It is suggested that sites that run BIND upgrade to one of the new packages in order to reduce their exposure to DNS cache poisoning attacks.
For more information, see:

Linux Hater's Blog

Image
I was browsing through the net and i found this blog. What surprises me is the poll on the right side of this blog. The question of the blog at the time of writing this post (it could change anytime) is "Which community distro do you hate the most?" What's the answer? It surprises me, as Ubuntu community is the most hated and Slackware is the most loved community

The total voters are more than one thousand votes and Slackware only get voted for 74 voters. Ubuntu, the number one distro (according to DistroWatch) is voted for over than 250 times (278 for precise). Ubuntu is so popular, but still there are people who dislike it's communities. I don't know why, but it's just a poll. It doesn't represent the actual facts that Ubuntu communities probably is the biggest one (currently).

I'm just happy to see that Slackware communities are not among those top three or top five. It proves that Slackware communities are probably friendly Look for LinuxQuestions

New Poll

Image
Time to get new poll on the blog. This month's question is about KDE 4 in Slackware. We all know that KDE 4.1 will be shipped in the end of this month. Slackware didn't include it as the default window manager when 12.1 shipped like other Linux distro simply because it's not considered stable enough while stability is one of the key point for Slackware.

Robby Workman has tried to test this new KDE and provides the package (both source and binary) for you all to test in his web site. Some people has started to use KDE 4 and it's going bigger and bigger. The peak will be at the 4.1 release. Next Slackware release *might* include KDE 4.1. I say might because it's up to Patrick to decide. But from what i see in the Changelog, the next Slackware will targeting on KDE 4.1
Wed Jan 30 19:07:35 CST 2008
Great thanks are also due to the KDE team, not only for their tremendous accomplishments over the years, but for the gracious reception they gave to the members of the Slackwar…

Poll Results

Image
It's been a long two months since Slackware 12.1 is published and people have given their vote for the poll and it's time to show the result of the poll. The question was "Slackware 12.1 Released. What would you do?" We have a definite winner and here's the result:
Run fresh installation 131 (57%)
Manually upgrade (using upgradepkg) 39 (17%)
Automatic upgrade (using tools, such as slackpkg) 25 (10%)
Wait for public review and testing 3 (1%)
Running test in other test system 3 (1%)
Running in virtualization system 5 (2%)
Stick with the old version for now 11 (4%)
Stick with the Linux distribution i used currently 2 (0%)
Migrating to Slackware 10 (4%)

The majority of the voters chose to run fresh installation with more than half of the votes. Probably because they didn't want to go intro troubles for manual upgrades. The main reason is that you must do the proper ways unless you want to have a broken system (for example segfault condition all the time just because you fo…

Security Update: XOrg Server

Three security updates plus one update to fonts has been released on -Current version of Slackware. The security updates are related to XOrg packages. Soon, Slackware might migrate to XOrg 1.5 which has been released, but that would be in the next cycle of the -Current tree (it hasn't officially started yet).

Here's the latest -Current changelog:
Tue Jul 1 13:29:45 CDT 2008
x/wqy-zenhei-font-ttf-0.6.26_0-noarch-1.tgz:
Upgraded to wqy-zenhei-font-ttf-0.6.26-0.
Thanks to the WenQuanYi font authors for producing such a high-quality font.

x/xorg-server-1.4.2-i486-1.tgz:
Upgraded xorg-server to address denial of service and possible arbitrary code execution flaws reported in xorg-server 1.4 prior to 1.4.2.
For more information about the issues patched, please refer to:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1379
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2360
http://cve.mitre.org/cgi-bin/cvename.cgi?name=C…