Bug#810093: Patch
New option with grsecurity-3.1-4.4.2-201602182048.patch, you can add: # Disallow unprivileged use of command injection kernel.grsecurity.harden_tty = 1 -- Best regards, HacKurx (Loic)
Bug#810093: Patch
2016-02-01 16:00 GMT+01:00 HacKurx:
>>> 3] Consider adding in postinst "usermod -aG grsec-tpe root ||true" for
>>> avoid many problems (systemd).
>>
>> That doesn't look like a good idea at first sight. First, I'm unsure if TPE
>> restriction apply to uid 0 (and if adding it to grsec-tpe will change
>> anything). Second, if it's actually useful, that's something which should be
>> done on a per-system basis, I think.
>
> If I believe the TPE reverse restriction also applies to the uid 0.
Quick Test, only the user switch can be a problem (this is normal uid 1000):
root@jessie:/home/user# find /bin -type d -exec chmod 775 {} \;
root@jessie:/home/user# su user
Impossible d'exécuter /bin/bash: Permission non accordée
root@jessie:/home/user# tail /var/log/syslog
Feb 2 10:52:34 jessie kernel: [ 207.096131] grsec: denied untrusted
exec (due to file in group-writable directory) of /bin/bash by
/bin/bash[su:3967] uid/euid:1000/1000 gid/egid:1000/1000, parent
/bin/su[su:3966] uid/euid:0/0 gid/egid:1000/1000
Feb 2 10:52:34 jessie kernel: [ 207.096202] grsec: denied untrusted
exec (due to file in group-writable directory) of /bin/bash by
/bin/bash[su:3967] uid/euid:1000/1000 gid/egid:1000/1000, parent
/bin/su[su:3966] uid/euid:0/0 gid/egid:1000/1000
So I add root in this group for nothing :)
So the only thing that might be useful for people to use steam or other:
read -p "Ajouter l'utilisateur courant dans les groupes
grsec-allow-tpe et grsec-allow-proc [O/n] " repvar
if [ "$repvar" = "N" ] || [ "$repvar" = "n" ] ; then
echo -n "OK, seul root sera privilégié."
else
usermod -aG grsec-allow-tpe `cat /etc/group | grep 'x:1000' |
awk -F: '{ print $1 }'` ||true
usermod -aG grsec-allow-proc `cat /etc/group | grep 'x:1000' |
awk -F: '{ print $1 }'` ||true
fi
--
Best regards,
HacKurx (Loic)
Bug#810093: Patch
I just saw the changes in your recent release. I still have a few remarks: 1] Recommendation from compatibility with ubuntu system: Rename grsec.conf to 10-grsec.conf or 30-grsec.conf view /etc/sysctl.d/README (ubuntu procps). 2] chmod 600 if possible! if an attacker access in system (system without RBAC), this file indicate the grsecurity options which are deactivated... Practice to try to become root. 3] Consider adding in postinst "usermod -aG grsec-tpe root ||true" for avoid many problems (systemd). -- Best regards, HacKurx (Loic)
Bug#810093: Patch
2016-02-01 15:32 GMT+01:00 Yves-Alexis Perez <cor...@debian.org>: > On lun., 2016-02-01 at 15:08 +0100, HacKurx wrote: >> I just saw the changes in your recent release. I still have a few remarks: >> >> 1] Recommendation from compatibility with ubuntu system: Rename >> grsec.conf to 10-grsec.conf or 30-grsec.conf view /etc/sysctl.d/README >> (ubuntu procps). > > Can you provide it? I'm not against it but as it's a config file it needs to > be handled properly so honestly I'm all in favor of doing nothing :) cat /etc/sysctl.d/README This directory contains settings similar to those found in /etc/sysctl.conf. In general, files in the 10-*.conf range come from the procps package and serve as system defaults. Other packages install their files in the 30-*.conf range, to override system defaults. End-users can use 60-*.conf and above, or use /etc/sysctl.conf directly, which overrides anything in this directory. ... > >> 2] chmod 600 if possible! if an attacker access in system (system >> without RBAC), this file indicate the grsecurity options which are >> deactivated... Practice to try to become root. > > Yeah, I guess so. > >> 3] Consider adding in postinst "usermod -aG grsec-tpe root ||true" for >> avoid many problems (systemd). > > That doesn't look like a good idea at first sight. First, I'm unsure if TPE > restriction apply to uid 0 (and if adding it to grsec-tpe will change > anything). Second, if it's actually useful, that's something which should be > done on a per-system basis, I think. If I believe the TPE reverse restriction also applies to the uid 0. > > Regards, > -- > Yves-Alexis > -- Best regards, HacKurx (Loic)
Bug#810093: linux-grsec-base: The sysctl options missing for grsecurity.
Package: linux-grsec-base Version: 4 Severity: normal Dear Maintainer, It lacks some configuration options for sysctl with grsecurity. To know: kernel.grsecurity.audit_gid kernel.grsecurity.audit_group kernel.grsecurity.enforce_symlinksifowner kernel.grsecurity.symlinkown_gid I'll send you a patch. Thank you for your work. -- System Information: Debian Release: 8.2 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.3.3-grsec (SMP w/2 CPU cores; PREEMPT) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#810093: linux-grsec-base: The sysctl options missing for grsecurity.
Sincerely sorry, I haven't even looked unconfigured options into your kernel. CONFIG_GRKERNSEC_AUDIT_GROUP ok I can understand the fact of not using it. CONFIG_GRKERNSEC_SYMLINKOWN why not have activated? Ideally "CONFIG_PAX_SOFTMODE=y" should be replaced by "# CONFIG_PAX_SOFTMODE is not set" to ensure that PAX cannot be disabled in a hardened kernel (Can be possible with Kernel Parameters at startup.) 2016-01-06 18:36 GMT+01:00 Yves-Alexis Perez <cor...@debian.org>: > On mer., 2016-01-06 at 13:28 +0100, HacKurx wrote: >> It lacks some configuration options for sysctl with grsecurity. To know: >> kernel.grsecurity.audit_gid >> kernel.grsecurity.audit_group > > CONFIG_GRKERNSEC_AUDIT_GROUP is not set, so the sysctl doesn't exist. > >> kernel.grsecurity.enforce_symlinksifowner >> kernel.grsecurity.symlinkown_gid > > Likewise, CONFIG_GRKERNSEC_SYMLINKOWN is not set, so there's no sysctl either. > > Regards, > -- > Yves-Alexis > -- Best regards, HacKurx (Loic) blog.opensec.fr
Bug#605090:
There are 52 variables sysctl with grsecurity but 42 are used in grsec.conf (linux-grsec-base-0.1). To know the list : cat /usr/src/linux-4.3.3/grsecurity/grsec_sysctl.c | grep "\.procname" kernel.grsecurity.disable_priv_io kernel.grsecurity.linking_restrictions kernel.grsecurity.enforce_symlinksifowner kernel.grsecurity.symlinkown_gid kernel.grsecurity.deter_bruteforce kernel.grsecurity.fifo_restrictions kernel.grsecurity.ptrace_readexec kernel.grsecurity.consistent_setxid kernel.grsecurity.ip_blackhole kernel.grsecurity.lastack_retries kernel.grsecurity.exec_logging kernel.grsecurity.rwxmap_logging kernel.grsecurity.signal_logging kernel.grsecurity.forkfail_logging kernel.grsecurity.timechange_logging kernel.grsecurity.chroot_deny_shmat kernel.grsecurity.chroot_deny_unix kernel.grsecurity.chroot_deny_mount kernel.grsecurity.chroot_deny_fchdir kernel.grsecurity.chroot_deny_chroot kernel.grsecurity.chroot_deny_pivot kernel.grsecurity.chroot_enforce_chdir kernel.grsecurity.chroot_deny_chmod kernel.grsecurity.chroot_deny_mknod kernel.grsecurity.chroot_restrict_nice kernel.grsecurity.chroot_execlog kernel.grsecurity.chroot_caps kernel.grsecurity.chroot_deny_bad_rename kernel.grsecurity.chroot_deny_sysctl kernel.grsecurity.tpe kernel.grsecurity.tpe_gid kernel.grsecurity.tpe_invert kernel.grsecurity.tpe_restrict_all kernel.grsecurity.socket_all kernel.grsecurity.socket_all_gid kernel.grsecurity.socket_client kernel.grsecurity.socket_client_gid kernel.grsecurity.socket_server kernel.grsecurity.socket_server_gid kernel.grsecurity.audit_group kernel.grsecurity.audit_gid kernel.grsecurity.audit_chdir kernel.grsecurity.audit_mount kernel.grsecurity.dmesg kernel.grsecurity.chroot_findtask kernel.grsecurity.resource_logging kernel.grsecurity.audit_ptrace kernel.grsecurity.harden_ptrace kernel.grsecurity.harden_ipc kernel.grsecurity.grsec_lock kernel.grsecurity.romount_protect kernel.grsecurity.deny_new_usb "kernel.pax.softmode" is not listed in that. -- Best regards, HacKurx (Loic) blog.opensec.fr
Bug#605090:
Hi, Add and use "paxctld" in Debian for configure PaX flags (equivalent to paxd from arch linux): https://grsecurity.net/download.php And if you want inspiration for the making available of all: https://projects.archlinux.org/svntogit/community.git/tree/trunk?h=packages/grsec-common And one you know: https://projects.archlinux.org/svntogit/community.git/tree/trunk?h=packages/paxd For nvidia : https://aur.archlinux.org/cgit/aur.git/tree/PKGBUILD?h=nvidia-grsec and to test the set: https://github.com/slimm609/checksec.sh -- Best regards, HacKurx (Loic) blog.opensec.fr
Bug#605090:
On Tue, 05 Jan 2016 15:40:50 +0100 Yves-Alexis Perez <cor...@debian.org> wrote: > On mar., 2016-01-05 at 15:33 +0100, HacKurx wrote: > > There are 52 variables sysctl with grsecurity but 42 are used in > > grsec.conf (linux-grsec-base-0.1). > > To know the list : > > cat /usr/src/linux-4.3.3/grsecurity/grsec_sysctl.c | grep "\.procname" > > Please report bugs like these against linux-grsec-base package. grsec.conf > still needs love, don't hesitate to provide patches. > > Regards, > --Â > Yves-Alexis > Ok no problem, I will do a patch :)
Bug#744040: Blu-Ray libraries update
Hi, New release of: _libbluray 0.6.0 _libaacs 0.7.1 _libbdplus 0.1.1 For more information, please look this: http://www.jbkempf.com/blog/post/2014/Blu-Ray-libraries-update The RFP for libbdplus will evolve it to debian jessie? Thanks -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#744040: libbdplus: Needs-packaging libbdplus
Package: libbdplus Version: 0.1.0 Severity: normal Dear Maintainer, libbdplus is a research project to implement the BD+ System Specifications. This research project provides, through an open-source library, a way to understand how the BD+ works. NB: this project doesn't offer any key, configuration file or certificate that could be used to decode encrypted copyrighted material. license: LPGL Latest release is libbdplus 0.1.0 Website : http://www.videolan.org/developers/libbdplus.html Bugs in launchpad.net : https://bugs.lauchpad.net/ubuntu/+bug/1291353 Thanks in advance. -- System Information: Debian Release: jessie/sid APT prefers testing-updates APT policy: (500, 'testing-updates'), (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.13-1-amd64 (SMP w/2 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#662850: vlc problem witch option bluray
Hi, The update of vlc, libbluray, libaacs and libbdplus (which is not available in debian) works fine. Regards, Le 2014-02-09 23:02, Sebastian Ramacher a écrit : Control: tags -1 + moreinfo On 2012-03-06 20:36:39, HacKurx wrote: Package: vlc Version: 2.0.0-6 Severity: normal Hi, The option open blu-ray in vlc 2.0 not running : bluray:///dev/dvd but it works in command line: vlc bluray:///media/FASTER Could you please test if this is still an issue? More recent versions are available: 1:0.4.0-1 is available in jessie and 1:0.5.0-2 in sid. Regards -- Best regards, hackurx.wordpress.com -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#727708: OpenRC
If notice of a systems administrator interests you: upstart systemd /dev/null Now please go look OpenRC: http://en.wikipedia.org/wiki/OpenRC I put the link to wikipedia :) Lightweight, easily editable and portable. What more? Best regards, -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#665800: paxtest: Please update package to the latest version
Package: paxtest Followup-For: Bug #665800 Dear Maintainer, Please update package to the latest version : http://grsecurity.net/~spender/paxtest-0.9.11.tar.gz And adding the amd64 version (Because run the 32 version on amd64 gives distorted results.). New changelog: paxtest (0.9.11-1) stable; urgency=low * Added display of exhaustion tests paxtest (0.9.10-1) stable; urgency=low * Fixed compilation problem reported on forums * Added display of argv/env randomization paxtest (0.9.9-1) stable; urgency=low * added SPARC/64 support * added PPC/64 support (return to function tests should be ignored for PPC64) * added 32/64bit target support * added shellode.h to easily support additional architectures * made paxctl generate the PT_PAX_FLAGS header for binaries that didn't have one Thank you for your work, Best regards, HacKurx www.hackurx.info -- System Information: Debian Release: 7.2 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'proposed-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.11.6-hardened (SMP w/4 CPU cores; PREEMPT) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages paxtest depends on: ii libc6 2.13-38 paxtest recommends no packages. paxtest suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#691593: grub-pc can not start windows 8
Hi, sorry for my late reply. An update grub has corrected the problem. Note that windows 8 install AHCI does not seem to be able to boot in IDE mode thereafter. Best regards -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#691593: grub-pc can not start windows 8
Package: grub-pc
Version: 1.99-23
Severity: important
Dear Maintainer,
I have 2 hard drive. One for debian wheezy and one for test windows 8.
My bios boot on first hard drive (debian) with grub-pc, but it can not boot
windows 8.
After an update-grub the file /boot/grub/grub.cfg looks like this:
### BEGIN /etc/grub.d/30_os-prober ###
menuentry Windows 8 (loader) (on /dev/sdb1) --class windows --class os {
insmod part_msdos
insmod ntfs
set root='(/dev/sdb,msdos1)'
search --no-floppy --fs-uuid --set=root 90AAFD55AAFD37F4
drivemap -s (hd0) ${root}
chainloader +1
}
I had to change that part for that windows 8 boot with grub-pc:
### BEGIN /etc/grub.d/30_os-prober ###
menuentry Windows 8 (loader) (on /dev/sdb1) --class windows --class os {
insmod part_msdos
insmod ntfs
set root=(hd1)
chainloader +1
}
Best regards,
HacKurx
www.hackurx.info
-- Package-specific info:
*** BEGIN /proc/mounts
/dev/disk/by-uuid/14414f4c-ac17-4ab4-b916-3341cf4136b6 / ext4
rw,noatime,errors=remount-ro,data=ordered 0 0
/dev/sda7 /home ext4 rw,relatime,data=ordered 0 0
/dev/sda5 /tmp ext4 rw,nosuid,nodev,noexec,noatime,data=ordered 0 0
/dev/sda6 /var ext4 rw,relatime,data=ordered 0 0
*** END /proc/mounts
*** BEGIN /proc/mdstat
Personalities :
unused devices: none
*** END /proc/mdstat
*** BEGIN /dev/disk/by-id
total 0
lrwxrwxrwx 1 root root 9 Oct 27 13:37 ata-HL-DT-ST_BD-RE_GGW-H20L_K5589N52212
- ../../sr0
lrwxrwxrwx 1 root root 9 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90BA33822 -
../../sda
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90BA33822-part1
- ../../sda1
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90BA33822-part2
- ../../sda2
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90BA33822-part5
- ../../sda5
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90BA33822-part6
- ../../sda6
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90BA33822-part7
- ../../sda7
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90BA33822-part8
- ../../sda8
lrwxrwxrwx 1 root root 9 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90Z554773 -
../../sdb
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90Z554773-part1
- ../../sdb1
lrwxrwxrwx 1 root root 10 Oct 27 13:36 ata-SAMSUNG_HD322GJ_S2BJJ90Z554773-part2
- ../../sdb2
lrwxrwxrwx 1 root root 9 Oct 27 13:36 scsi-SATA_SAMSUNG_HD322GJS2BJJ90BA33822
- ../../sda
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90BA33822-part1 - ../../sda1
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90BA33822-part2 - ../../sda2
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90BA33822-part5 - ../../sda5
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90BA33822-part6 - ../../sda6
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90BA33822-part7 - ../../sda7
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90BA33822-part8 - ../../sda8
lrwxrwxrwx 1 root root 9 Oct 27 13:36 scsi-SATA_SAMSUNG_HD322GJS2BJJ90Z554773
- ../../sdb
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90Z554773-part1 - ../../sdb1
lrwxrwxrwx 1 root root 10 Oct 27 13:36
scsi-SATA_SAMSUNG_HD322GJS2BJJ90Z554773-part2 - ../../sdb2
lrwxrwxrwx 1 root root 9 Oct 27 13:36 wwn-0x50024e9202972bb2 - ../../sdb
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e9202972bb2-part1 -
../../sdb1
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e9202972bb2-part2 -
../../sdb2
lrwxrwxrwx 1 root root 9 Oct 27 13:36 wwn-0x50024e92065edf05 - ../../sda
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e92065edf05-part1 -
../../sda1
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e92065edf05-part2 -
../../sda2
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e92065edf05-part5 -
../../sda5
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e92065edf05-part6 -
../../sda6
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e92065edf05-part7 -
../../sda7
lrwxrwxrwx 1 root root 10 Oct 27 13:36 wwn-0x50024e92065edf05-part8 -
../../sda8
*** END /dev/disk/by-id
*** BEGIN /dev/disk/by-uuid
total 0
lrwxrwxrwx 1 root root 10 Oct 27 13:36 14414f4c-ac17-4ab4-b916-3341cf4136b6 -
../../sda1
lrwxrwxrwx 1 root root 10 Oct 27 13:36 1c67d334-b7d0-4830-9eee-da6c3612f7e6 -
../../sda6
lrwxrwxrwx 1 root root 10 Oct 27 13:36 26c30899-ec24-40e9-990d-2bf16bdbc0e8 -
../../sda5
lrwxrwxrwx 1 root root 10 Oct 27 13:36 90AAFD55AAFD37F4 - ../../sdb1
lrwxrwxrwx 1 root root 10 Oct 27 13:36 DE70F93270F9124F - ../../sdb2
lrwxrwxrwx 1 root root 10 Oct 27 13:36 af924282-9ec5-4fef-85b9-ae73875209e2 -
../../sda7
lrwxrwxrwx 1 root root 10 Oct 27 13:36 b1b3bdf8-42ab-473c-a15a-5f568c9fd0ba -
../../sda8
Bug#682159: linux-patch-grsecurity2: The templates files in grsecurity2 is exceeded
Package: linux-patch-grsecurity2 Version: 2.9.1+3.2.21-201206221855-1 Severity: minor Dear Maintainer, During installation of the package there is a warning (which comes from the file templates). This vulnerability to 7 years and no longer seems valid with the current version. Thanks, Best regards HacKurx -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages linux-patch-grsecurity2 depends on: ii bash 4.2-2 ii dctrl-tools [grep-dctrl] 2.22.2 ii debconf [debconf-2.0] 1.5.44 ii patch 2.6.1-3 Versions of packages linux-patch-grsecurity2 recommends: ii gradm2 2.9.1~201206091838-1 ii kernel-package 12.036+nmu2 pn linux-patch-debian-3.2 none ii linux-source-3.23.2.21-3 linux-patch-grsecurity2 suggests no packages. -- debconf information: * linux-patch-grsecurity2/2.1.3-security: * linux-patch-grsecurity2/2.1.2-security: -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#666468: xorg-server: major text display problems in several apps
Hello, I encountered the same problem with debian wheezy, I solved it by installing the package xserver-xorg-video-nouveau_1.0.1-1 of debian sid. Please made a request to use this version in debian wheezy. Thanks for your work in Debian. Best regards, HacKurx www.hackurx.info -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#662850: vlc problem witch option bluray
Thank you very much for your work :) Best regards, HacKurx Le 17 mars 2012 09:08, Rémi Denis-Courmont r...@remlab.net a écrit : reassign 662850 libbluray1 thanks Hello, Le mardi 6 mars 2012 21:36:39 HacKurx, vous avez écrit : Package: vlc Version: 2.0.0-6 Severity: normal Hi, The option open blu-ray in vlc 2.0 not running : bluray:///dev/dvd but it works in command line: vlc bluray:///media/FASTER First libbluray does not support unmounted media. Second, some old version do not support translating the device node to the mount path, but this has been fixed recently. Reassigned to libbluray. -- Rémi Denis-Courmont http://www.remlab.net/ http://fi.linkedin.com/in/remidenis -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#662850: vlc problem witch option bluray
Package: vlc Version: 2.0.0-6 Severity: normal Hi, The option open blu-ray in vlc 2.0 not running : bluray:///dev/dvd but it works in command line: vlc bluray:///media/FASTER Thanks. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages vlc depends on: ii libaa11.4p5-39 ii libavcodec53 4:0.8-1+b1 ii libavutil51 4:0.8-1+b1 ii libc6 2.13-26 ii libfreetype6 2.4.8-1 ii libfribidi0 0.19.2-2 ii libgcc1 1:4.6.2-12 ii libgl1-mesa-glx [libgl1] 7.11.2-1 ii libice6 2:1.0.7-2 ii libqtcore44:4.7.4-2 ii libqtgui4 4:4.7.4-2 ii libsdl-image1.2 1.2.12-1 ii libsdl1.2debian 1.2.15-2 ii libsm62:1.2.0-2 ii libstdc++64.6.2-12 ii libtar0 1.2.11-8 ii libva-x11-1 1.0.14-1 ii libva11.0.14-1 ii libvlccore5 2.0.0-6 ii libx11-6 2:1.4.4-4 ii libxcb-composite0 1.8-2 ii libxcb-keysyms1 0.3.8-1 ii libxcb-randr0 1.8-2 ii libxcb-render01.8-2 ii libxcb-shape0 1.8-2 ii libxcb-shm0 1.8-2 ii libxcb-xfixes01.8-2 ii libxcb-xv01.8-2 ii libxcb1 1.8-2 ii libxext6 2:1.3.0-3 ii libxinerama1 2:1.1.1-3 ii libxpm4 1:3.5.9-4 ii ttf-freefont 20100919-1 ii vlc-nox 2.0.0-6 ii zlib1g1:1.2.6.dfsg-1 Versions of packages vlc recommends: ii vlc-plugin-notify 2.0.0-6 ii vlc-plugin-pulse 2.0.0-6 ii xdg-utils 1.1.0~rc1+git20111210-6 Versions of packages vlc suggests: pn videolan-doc none Versions of packages vlc-nox depends on: ii liba52-0.7.4 0.7.4-16 ii libasound2 1.0.25-2 ii libass40.10.0-3 ii libavahi-client3 0.6.30-6 ii libavahi-common3 0.6.30-6 ii libavc1394-0 0.5.4-1 ii libavcodec53 4:0.8-1+b1 ii libavformat53 4:0.8-1+b1 ii libavutil514:0.8-1+b1 ii libbluray1 1:0.2.1+git20111208.63e308d-3 ii libc6 2.13-26 ii libcaca0 0.99.beta17-2.1 ii libcddb2 1.3.2-3 ii libcdio10 0.81-5 ii libdbus-1-31.4.18-1 ii libdc1394-22 2.1.3-4 ii libdca00.0.5-5 ii libdirac-decoder0 1.0.2-6 ii libdirac-encoder0 1.0.2-6 ii libdvbpsi7 0.2.2-1 ii libdvdnav4 4.2.0-1 ii libdvdread44.2.0-1 ii libebml3 1.2.2-2 ii libfaad2 2.7-7 ii libflac8 1.2.1-6 ii libfontconfig1 2.8.0-3.1 ii libfreetype6 2.4.8-1 ii libfribidi00.19.2-2 ii libgcc11:4.6.2-12 ii libgcrypt111.5.0-3 ii libgnutls262.12.16-1 ii libgpg-error0 1.10-3 ii libiso9660-7 0.81-5 ii libkate1 0.4.1-1 ii liblircclient0 0.9.0~pre1-1 ii liblua5.1-05.1.4-12 ii libmad00.15.1b-7 ii libmatroska5 1.3.0-2 ii libmodplug11:0.8.8.4-1 ii libmpcdec6 2:0.1~r459-2 ii libmpeg2-4 0.4.1-3 ii libmtp91.1.2-2 ii libncursesw5 5.9-4 ii libogg01.2.2~dfsg-1 ii libpng12-0 1.2.47-1 ii libpostproc52 4:0.8-1+b1 ii libproxy0 0.3.1-4+b3 ii libraw1394-11 2.0.8-1 ii libresid-builder0c2a 2.1.1-13 ii libsamplerate0 0.1.8-3 ii libschroedinger-1.0-0 1.0.11-1 ii libshout3 2.2.2-8 ii libsidplay22.1.1-13 ii libspeex1 1.2~rc1-3 ii libspeexdsp1 1.2~rc1-3 ii libstdc++6 4.6.2-12 ii libswscale24:0.8-1+b1 ii libtag1c2a 1.7-2 ii libtheora0 1.1.1+dfsg.1-3 ii libtinfo5 5.9-4 ii libtwolame00.3.13-1 ii libudev0 175-3.1 ii libupnp3 1:1.6.6-5.1 ii libusb-0.1-4 2:0.1.12-20 ii libv4l-0 0.8.6-1 ii libvcdinfo00.7.24-1 ii libvlc52.0.0-6 ii libvlccore52.0.0-6 ii libvorbis0a1.3.2-1.1 ii libvorbisenc2 1.3.2-1.1 ii libx264-1202:0.120.2151+gita3f4407-3 ii libxml22.7.8.dfsg-7 ii libzvbi0 0.2.33-4 ii zlib1g 1:1.2.6.dfsg-1 Versions of packages libvlc5 depends on: ii libc62.13-26 ii libvlccore5 2.0.0-6 Versions of packages libvlccore5 depends on: ii libc6
Bug#653166: gufw with gksu not run
Package: gufw Version: 9.10.2-1 Severity: normal Hi, GUFW in debian squeeze ot run because he configure to use gksu. The solution is run GUFW : su-to-root -X -c gufw Best regards. -- System Information: Debian Release: 6.0.3 APT prefers stable-updates APT policy: (990, 'stable-updates'), (990, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core) Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gufw depends on: ii gksu 2.0.2-5graphical frontend to su ii python2.6.6-3+squeeze6 interactive high-level object-orie ii python-glade2 2.17.0-4 GTK+ bindings: Glade support ii python-gnome2 2.28.1-1 Python bindings for the GNOME desk ii python-gobject2.21.4+is.2.21.3-1 Python bindings for the GObject li ii python-gtk2 2.17.0-4 Python bindings for the GTK+ widge ii python-support1.0.10 automated rebuilding support for P ii ufw 0.29.3-1 program for managing a Netfilter f gufw recommends no packages. gufw suggests no packages. -- Configuration Files: /etc/gufw/size_window.cfg [Errno 2] Aucun fichier ou dossier de ce type: u'/etc/gufw/size_window.cfg' -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#627704: kernel-fixed-upstream-v3.1
The new version of the driver (Linux 3.1) /sbin/modinfo r8169 filename: /lib/modules/3.1.0-2-generic/kernel/drivers/net/r8169.ko firmware: rtl_nic/rtl8105e-1.fw firmware: rtl_nic/rtl8168e-3.fw firmware: rtl_nic/rtl8168e-2.fw firmware: rtl_nic/rtl8168e-1.fw firmware: rtl_nic/rtl8168d-2.fw firmware: rtl_nic/rtl8168d-1.fw version:2.3LK-NAPI license:GPL description:RealTek RTL-8169 Gigabit Ethernet driver author: Realtek and the Linux r8169 crew net...@vger.kernel.org srcversion: 3E842CC3B34475192563328 alias: pci:v0001d8168sv*sd2410bc*sc*i* alias: pci:v1737d1032sv*sd0024bc*sc*i* alias: pci:v16ECd0116sv*sd*bc*sc*i* alias: pci:v1259dC107sv*sd*bc*sc*i* alias: pci:v1186d4302sv*sd*bc*sc*i* alias: pci:v1186d4300sv*sd*bc*sc*i* alias: pci:v10ECd8169sv*sd*bc*sc*i* alias: pci:v10ECd8168sv*sd*bc*sc*i* alias: pci:v10ECd8167sv*sd*bc*sc*i* alias: pci:v10ECd8136sv*sd*bc*sc*i* alias: pci:v10ECd8129sv*sd*bc*sc*i* depends: vermagic: 3.1.0-2-generic SMP mod_unload modversions parm: use_dac:Enable PCI DAC. Unsafe on 32 bit PCI slot. (int) parm: debug:Debug verbosity level (0=none, ..., 16=all) (int) -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#627704: kernel-fixed-upstream-v3.1
The R8169 driver in kernel 3.1 fixes the problem : https://bugs.launchpad.net/bugs/839393 Thanks -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#627704: kernel-fixed-upstream-v3.1
I use Debian Squeeze 6.0.3, my kernel is : Linux SRV-01 2.6.32-5-amd64 #1 SMP Mon Oct 3 03:59:20 UTC 2011 x86_64 GNU/Linux Currently I'm using the r8168 driver. I tested the new driver r8169 compiling a kernel 3.1rc4 and everything works perfectly: https://launchpadlibrarian.net/83450424/Capture-Linux-x86_64%203.1.0-rc4%20Kernel%20Configuration.png It's the same problem on launchpad, it's just that I never reported a bug here sorry. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#627704: Realtek Ethernet adapters (r8169 driver)
Unfortunately it has not changed much, the connection was not stable : Debian 6.0.2 /sbin/modinfo r8169 filename: /lib/modules/2.6.32-5-amd64/kernel/drivers/net/r8169.ko firmware: rtl_nic/rtl8168d-2.fw firmware: rtl_nic/rtl8168d-1.fw version:2.3LK-NAPI license:GPL description:RealTek RTL-8169 Gigabit Ethernet driver author: Realtek and the Linux r8169 crew net...@vger.kernel.org srcversion: 555A980E2261148DB67882F alias: pci:v0001d8168sv*sd2410bc*sc*i* alias: pci:v1737d1032sv*sd0024bc*sc*i* alias: pci:v16ECd0116sv*sd*bc*sc*i* alias: pci:v1259dC107sv*sd*bc*sc*i* alias: pci:v1186d4300sv*sd*bc*sc*i* alias: pci:v10ECd8169sv*sd*bc*sc*i* alias: pci:v10ECd8168sv*sd*bc*sc*i* alias: pci:v10ECd8167sv*sd*bc*sc*i* alias: pci:v10ECd8136sv*sd*bc*sc*i* alias: pci:v10ECd8129sv*sd*bc*sc*i* depends:mii vermagic: 2.6.32-5-amd64 SMP mod_unload modversions parm: rx_copybreak:Copy breakpoint for copy-only-tiny-frames (int) parm: use_dac:Enable PCI DAC. Unsafe on 32 bit PCI slot. (int) parm: debug:Debug verbosity level (0=none, ..., 16=all) (int) Debian 6.0.2 /sbin/modinfo r8169 filename: /lib/modules/2.6.32-5-amd64/kernel/drivers/net/r8169.ko firmware: rtl_nic/rtl8105e-1.fw firmware: rtl_nic/rtl8168e-2.fw firmware: rtl_nic/rtl8168e-1.fw firmware: rtl_nic/rtl8168d-2.fw firmware: rtl_nic/rtl8168d-1.fw version:2.3LK-NAPI license:GPL description:RealTek RTL-8169 Gigabit Ethernet driver author: Realtek and the Linux r8169 crew net...@vger.kernel.org srcversion: 5CAA67108A468A93A3D3D29 alias: pci:v0001d8168sv*sd2410bc*sc*i* alias: pci:v1737d1032sv*sd0024bc*sc*i* alias: pci:v16ECd0116sv*sd*bc*sc*i* alias: pci:v1259dC107sv*sd*bc*sc*i* alias: pci:v1186d4302sv*sd*bc*sc*i* alias: pci:v1186d4300sv*sd*bc*sc*i* alias: pci:v10ECd8169sv*sd*bc*sc*i* alias: pci:v10ECd8168sv*sd*bc*sc*i* alias: pci:v10ECd8167sv*sd*bc*sc*i* alias: pci:v10ECd8136sv*sd*bc*sc*i* alias: pci:v10ECd8129sv*sd*bc*sc*i* depends:mii vermagic: 2.6.32-5-amd64 SMP mod_unload modversions parm: use_dac:Enable PCI DAC. Unsafe on 32 bit PCI slot. (int) parm: debug:Debug verbosity level (0=none, ..., 16=all) (int) Kernel failure details : Kernel failure message 1: [ cut here ] WARNING: at /build/buildd-linux-2.6_2.6.32-38-amd64-bk66e4/linux-2.6-2.6.32/debian/build/source_amd64_none/net/sched/sch_generic.c:261 dev_watchdog+0xe2/0x194() Hardware name: GA-990XA-UD3 NETDEV WATCHDOG: eth0 (r8169): transmit queue 0 timed out Modules linked in: parport_pc ppdev lp parport sco bridge stp bnep rfcomm l2cap bluetooth rfkill powernow_k8 cpufreq_userspace cpufreq_conservative cpufreq_powersave cpufreq_stats binfmt_misc uinput fuse loop firewire_sbp2 snd_hda_codec_atihdmi snd_hda_codec_realtek snd_hda_intel snd_hda_codec snd_hwdep radeon snd_pcm snd_seq ttm snd_timer snd_seq_device drm_kms_helper snd edac_core drm i2c_piix4 i2c_algo_bit k10temp soundcore snd_page_alloc edac_mce_amd i2c_core pcspkr wmi button evdev processor serio_raw ext4 mbcache jbd2 crc16 usbhid hid sg sr_mod cdrom sd_mod crc_t10dif ohci_hcd ahci libata firewire_ohci firewire_core crc_itu_t ehci_hcd scsi_mod xhci r8169 usbcore thermal nls_base mii thermal_sys [last unloaded: scsi_wait_scan] Pid: 0, comm: swapper Not tainted 2.6.32-5-amd64 #1 Call Trace: IRQ [81262ba6] ? dev_watchdog+0xe2/0x194 [81262ba6] ? dev_watchdog+0xe2/0x194 [8104df9c] ? warn_slowpath_common+0x77/0xa3 [81262ac4] ? dev_watchdog+0x0/0x194 [8104e024] ? warn_slowpath_fmt+0x51/0x59 [8101654b] ? sched_clock+0x5/0x8 [8104a4ba] ? try_to_wake_up+0x289/0x29b [810692df] ? sched_clock_local+0x13/0x74 [81262a98] ? netif_tx_lock+0x3d/0x69 [8124d8c6] ? netdev_drivername+0x3b/0x40 [81262ba6] ? dev_watchdog+0xe2/0x194 [8103fa2a] ? __wake_up+0x30/0x44 [810578a4] ? cascade+0x5f/0x77 [8105a67b] ? run_timer_softirq+0x1c9/0x268 [8106c5a9] ? ktime_get+0x5c/0xb7 [81053d2b] ? __do_softirq+0xdd/0x1a6 [81011cac] ? call_softirq+0x1c/0x30 [8101322b] ? do_softirq+0x3f/0x7c [81053b9b] ? irq_exit+0x36/0x76 [81012922] ? do_IRQ+0xa0/0xb6 [810114d3] ? ret_from_intr+0x0/0x11 EOI [8102c584] ? native_safe_halt+0x2/0x3 [81017201] ? default_idle+0x34/0x51 [8101756b] ? c1e_idle+0xd3/0xfb [8100fe97] ? cpu_idle+0xa2/0xda ---[ end trace
Bug#627704: Realtek Ethernet adapters (r8169 driver)
Here is what I have done to correct my problem : apt-get install make linux-headers-2.6-amd64 wget http://r8168.googlecode.com/files/r8168-8.025.00.tar.bz2 tar -xvf r8168-8.025.00.tar.bz2 cd r8168-8.025.00 ./autorun.sh rmmod r8169 modprobe r8168 vim /etc/modprobe.d/blacklist.conf blacklist r8169 update-initramfs -u /etc/init.d/networking restart /sbin/modinfo r8168 filename: /lib/modules/2.6.32-5-amd64/kernel/drivers/net/r8168.ko version:8.025.00-NAPI license:GPL description:RealTek RTL-8168 Gigabit Ethernet driver author: Realtek and the Linux r8168 crew net...@vger.kernel.org srcversion: 69C39C537749C29781AC0A8 alias: pci:v10ECd8168sv*sd*bc*sc*i* depends: vermagic: 2.6.32-5-amd64 SMP mod_unload modversions parm: eee_enable:int parm: speed:force phy operation. Deprecated by ethtool (8). (array of int) parm: duplex:force phy operation. Deprecated by ethtool (8). (array of int) parm: autoneg:force phy operation. Deprecated by ethtool (8). (array of int) parm: rx_copybreak:Copy breakpoint for copy-only-tiny-frames (int) parm: use_dac:Enable PCI DAC. Unsafe on 32 bit PCI slot. (int) parm: debug:Debug verbosity level (0=none, ..., 16=all) (int) 03:00.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet controller (rev 06) Subsystem: Giga-byte Technology GA-EP45-DS5 Motherboard Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- Stepping- SERR- FastB2B- DisINTx+ Status: Cap+ 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast TAbort- TAbort+ MAbort- SERR- PERR- INTx- Latency: 0, Cache Line Size: 64 bytes Interrupt: pin A routed to IRQ 30 Region 0: I/O ports at de00 [size=256] Region 2: Memory at fdcff000 (64-bit, prefetchable) [size=4K] Region 4: Memory at fdcf8000 (64-bit, prefetchable) [size=16K] Capabilities: [40] Power Management version 3 Flags: PMEClk- DSI- D1+ D2+ AuxCurrent=375mA PME(D0+,D1+,D2+,D3hot+,D3cold+) Status: D0 NoSoftRst+ PME-Enable- DSel=0 DScale=0 PME- Capabilities: [50] MSI: Enable+ Count=1/1 Maskable- 64bit+ Address: fee0f00c Data: 4191 Capabilities: [70] Express (v2) Endpoint, MSI 01 DevCap: MaxPayload 128 bytes, PhantFunc 0, Latency L0s 512ns, L1 64us ExtTag- AttnBtn- AttnInd- PwrInd- RBE+ FLReset- DevCtl: Report errors: Correctable- Non-Fatal- Fatal- Unsupported- RlxdOrd+ ExtTag- PhantFunc- AuxPwr- NoSnoop- MaxPayload 128 bytes, MaxReadReq 4096 bytes DevSta: CorrErr+ UncorrErr- FatalErr- UnsuppReq+ AuxPwr+ TransPend- LnkCap: Port #0, Speed 2.5GT/s, Width x1, ASPM L0s L1, Latency L0 unlimited, L1 64us ClockPM+ Surprise- LLActRep- BwNot- LnkCtl: ASPM Disabled; RCB 64 bytes Disabled- Retrain- CommClk+ ExtSynch- ClockPM- AutWidDis- BWInt- AutBWInt- LnkSta: Speed 2.5GT/s, Width x1, TrErr- Train- SlotClk+ DLActive- BWMgmt- ABWMgmt- DevCap2: Completion Timeout: Range ABCD, TimeoutDis+ DevCtl2: Completion Timeout: 50us to 50ms, TimeoutDis- LnkCtl2: Target Link Speed: 2.5GT/s, EnterCompliance- SpeedDis-, Selectable De-emphasis: -6dB Transmit Margin: Normal Operating Range, EnterModifiedCompliance- ComplianceSOS- Compliance De-emphasis: -6dB LnkSta2: Current De-emphasis Level: -6dB Capabilities: [b0] MSI-X: Enable- Count=4 Masked- Vector table: BAR=4 offset= PBA: BAR=4 offset=0800 Capabilities: [d0] Vital Product Data Unknown small resource type 00, will not decode more. Capabilities: [100 v1] Advanced Error Reporting UESta: DLP- SDES- TLP- FCP- CmpltTO- CmpltAbrt- UnxCmplt- RxOF- MalfTLP- ECRC- UnsupReq+ ACSViol- UEMsk: DLP- SDES- TLP- FCP- CmpltTO- CmpltAbrt- UnxCmplt- RxOF- MalfTLP- ECRC- UnsupReq- ACSViol- UESvrt: DLP+ SDES+ TLP- FCP+ CmpltTO- CmpltAbrt- UnxCmplt- RxOF+ MalfTLP+ ECRC- UnsupReq- ACSViol- CESta: RxErr- BadTLP- BadDLLP- Rollover- Timeout- NonFatalErr+ CEMsk: RxErr- BadTLP- BadDLLP- Rollover- Timeout- NonFatalErr+ AERCap: First Error Pointer: 14, GenCap+ CGenEn- ChkCap+ ChkEn- Capabilities: [140 v1] Virtual Channel Caps: LPEVC=0 RefClk=100ns PATEntryBits=1 Arb:Fixed- WRR32- WRR64- WRR128- Ctrl: ArbSelect=Fixed Status: InProgress- VC0:Caps: PATOffset=00 MaxTimeSlots=1 RejSnoopTrans- Arb:
Bug#627704: Realtek RTL8111E chip
Hi, Thank you for your work in debian, So normally this will fix the problem I had in several distributions? https://bugs.launchpad.net/ubuntu/+source/linux/+bug/839393 Best regards, HacKurx -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
