CentOS Errata and Bugfix Advisory 2014:1304
Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-1304.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
CentOS Errata and Bugfix Advisory 2014:1302
Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-1302.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
x86_64:
CentOS Errata and Bugfix Advisory 2014:1303
Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-1303.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
x86_64:
CentOS Errata and Bugfix Advisory 2014:1305
Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-1305.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
CentOS Errata and Bugfix Advisory 2014:1301
Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-1301.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
x86_64:
CentOS Errata and Security Advisory 2014:1306 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2014-1306.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
x86_64:
CentOS Errata and Security Advisory 2014:1306 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2014-1306.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
On 09/25/2014 09:16 PM, Johnny Hughes wrote:
CentOS Errata and Security Advisory 2014:1306 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2014-1306.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
On 25/09/14 04:01, Luke S. Crawford wrote:
So... it is theorized that XSA-108 is why amazon is rebooting. Is
there any way for me to know when this update hits CentOS5 or
xen4centos6?Do we know that it is *not* included in one of the
centos patches?
XSA-108 is under embargo until 1st
El 24/09/2014 21:58, Ar0cs3 aro...@gmail.com escribió:
Grave #vulnerabilidad en #bash y otros interpretes de comandos ~#☢
http://t.co/GKHJTzDyKl;
Esto es serio: Vulnerabilidad en #bash http://t.co/530T5XV35j
https://t.co/fKrYxA15Kw https://t.co/KQs75XFBTy
Peor que #Heartbleed ?
Conozcan a
Muchas Gracias Ernesto, efectivamente tenía presente el problema de
seguridad, paquete actualizado.
saludos
El 25 de septiembre de 2014, 1:02, Ernesto Pérez Estévez
ernesto.pe...@cedia.org.ec escribió:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
hola
El día de hoy fue hecho público un
Gracias por el dato Epe
--
Saludos Cordiales
|César Martínez | Ingeniero de Sistemas | SERVICOM
|Tel: (593-2)554-271 2221-386 | Ext 4501
|Celular: 0999374317 |Skype servicomecuador
|Web www.servicomecuador.com Síguenos en:
|Twitter: @servicomecuador |Facebook: servicomec
|Zona Clientes:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 09/25/2014 01:37 PM, Carlos Tirado Elgueta wrote:
Leo comentarios que el parche entregado no seria 100% preciso para
detener esta vulnerabilidad y que dentro de pocos deberemos
nuevamente actualizar a la brevedad.
en efect, pero al menos
Saludos,
Tal vez este enlace te pueda ayudar: Cómo instalar y utilizar ClamAV en
CentOS
http://www.alcancelibre.org/staticpages/index.php/como-clamav-centos.
El 24 de septiembre de 2014, 13:18, William Alexander Brito Vinas
wilian05...@hotmail.com escribió:
Por cierto las dificultades no
Saludos,
El comando: *at* (*man at*) te puede ser de gran ayuda para implementar la
solución.
Luego creas un sript que se ejecute solo al iniciar el sistema (*o
manualmente la primera vez*) y que contenga los *at*'s correspondientes a
las horas y fechas apropiadas.
*at hh:mm mm:dd:aa comando*
good morning,
You should 'yum update' as soon as possible to resolve this issue.
I installed the update on C5 and C6 machines, but I do not see any
difference in the output of bash --version. Is that the expected
behaviour?
C5 returns
---8---
GNU bash, version 3.2.25(1)-release
Hi,
For the last few updates I'm having a yum problem.
# yum update
gives the following error for e.g.
Running transaction
Updating : bash-4.2.45-5.el7_0.2.x86_64 1/10
Error unpacking rpm package bash-4.2.45-5.el7_0.2.x86_64
error: unpacking of archive failed on file
op 25-09-14 02:46, Tom Bishop schreef:
On Wed, Sep 24, 2014 at 7:41 PM, mark m.r...@5-cent.us wrote:
I just updated firefox, here at home... and when I fired it back up, *all*
of my tabs were gone. Every one (all couple dozen...)
mark, CentOS 6.5
op 25-09-14 09:01, Johan Vermeulen schreef:
op 25-09-14 02:46, Tom Bishop schreef:
On Wed, Sep 24, 2014 at 7:41 PM, mark m.r...@5-cent.us wrote:
I just updated firefox, here at home... and when I fired it back up,
*all*
of my tabs were gone. Every one (all couple dozen...)
mark,
On 09/25/14 03:09, Johan Vermeulen wrote:
op 25-09-14 09:01, Johan Vermeulen schreef:
op 25-09-14 02:46, Tom Bishop schreef:
On Wed, Sep 24, 2014 at 7:41 PM, mark m.r...@5-cent.us wrote:
I just updated firefox, here at home... and when I fired it back up, *all*
of my tabs were gone. Every one
op 25-09-14 13:46, mark schreef:
On 09/25/14 03:09, Johan Vermeulen wrote:
op 25-09-14 09:01, Johan Vermeulen schreef:
op 25-09-14 02:46, Tom Bishop schreef:
On Wed, Sep 24, 2014 at 7:41 PM, mark m.r...@5-cent.us wrote:
I just updated firefox, here at home... and when I fired it back
up,
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
On 09/25/2014 01:07 AM, Michael Schumacher wrote:
good morning,
You should 'yum update' as soon as possible to resolve this issue.
I installed the update on C5 and C6 machines, but I do not see any
difference in the output of bash --version. Is that the expected
behaviour?
C5 returns
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup, forgot that: no tool bar at all, no menus
mark
Then maybe you are stuck in full-screen mode? Press f11 to exit that.
grts, Johan
You can press the Alt key to show the menu.
JD
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup, forgot that: no tool bar at all, no menus
mark
Then maybe you are stuck in full-screen mode? Press f11 to exit that.
grts, Johan
You can
Valeri Galtsev wrote:
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup, forgot that: no tool bar at all, no menus
Then maybe you are stuck in full-screen mode? Press f11 to exit that.
No. 99.44% of
On Thu, Sep 25, 2014 at 09:09:15AM -0500, Valeri Galtsev wrote:
developers to follow this:
Don't change anything unless it is absolutely necessary.
(it was excellent attitude to programming I was doing once: this way you
diminish the chance to break something that works...)
Probably
On 9/25/2014 8:13 AM, m.r...@5-cent.us wrote:
Valeri Galtsev wrote:
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup, forgot that: no tool bar at all, no menus
Then maybe you are stuck in
On Thu, September 25, 2014 9:13 am, m.r...@5-cent.us wrote:
Valeri Galtsev wrote:
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup, forgot that: no tool bar at all, no menus
Then maybe you are
Steve Lindemann wrote:
On 9/25/2014 8:13 AM, m.r...@5-cent.us wrote:
Valeri Galtsev wrote:
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup, forgot that: no tool bar at all, no menus
snip
It is
If I understood correctly, the current fix is incomplete and another fix is
planned?
Also, in the advisory, RH says that after the update, servers need to be
rebooted... Really?
Aside from cgi/php, just closing all shells isn't enough?
Thx,
JD
___
On Thu, September 25, 2014 9:42 am, m.r...@5-cent.us wrote:
Steve Lindemann wrote:
On 9/25/2014 8:13 AM, m.r...@5-cent.us wrote:
Valeri Galtsev wrote:
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup,
I'm in the same fix... But. When I will find open source, acceptable
browser which I can predict will last and will have the same great
attitude late netscape or mozilla had, I will start installing it
simultaneously with firefox, yet will make it default browser, which users
can switch to
On 9/25/2014 8:42 AM, m.r...@5-cent.us wrote:
Steve Lindemann wrote:
On 9/25/2014 8:13 AM, m.r...@5-cent.us wrote:
Valeri Galtsev wrote:
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op 25-09-14 13:46, mark schreef:
Yup, forgot that:
m.r...@5-cent.us wrote:
palemoon looks nice
My concern with Pale Moon is that it's based on the Firefox 24 extended
support release, which is no longer supported. Don't know how that'll
play out.
In the meantime I've added exclude=firefox to my yum configuration and
am sticking with Firefox 24.
John Doe wrote:
If I understood correctly, the current fix is incomplete and another fix is
planned?
Yes. More info here - https://access.redhat.com/security/cve/CVE-2014-7169
Also, in the advisory, RH says that after the update, servers need to be
rebooted... Really?
No. From
On Thu, September 25, 2014 10:10 am, Ron Yorston wrote:
m.r...@5-cent.us wrote:
palemoon looks nice
My concern with Pale Moon is that it's based on the Firefox 24 extended
support release,
Sad. If there is no own developers team behind that, it hardly will
survive enterprise level length of
Tom Bishop wrote:
I'm in the same fix... But. When I will find open source, acceptable
browser which I can predict will last and will have the same great
attitude late netscape or mozilla had, I will start installing it
simultaneously with firefox, yet will make it default browser, which
Maybe we can get it into extras? I mentioned something from his repo to my
manager, who understandably balked at a Russian server (this is a US gov't
agency (non-DoD) that we work at
mark
___
CentOS mailing list
CentOS@centos.org
On 09/25/2014 05:49 PM, m.r...@5-cent.us wrote:
Tom Bishop wrote:
I like the look of palemoon, I am going to drop an email to Nux and
see if we can get it added to his repo.
Maybe we can get it into extras? I mentioned something from his repo to my
manager, who understandably balked at a
On 9/25/2014 9:07 AM, Steve Lindemann wrote:
On 9/25/2014 8:42 AM, m.r...@5-cent.us wrote:
Steve Lindemann wrote:
On 9/25/2014 8:13 AM, m.r...@5-cent.us wrote:
Valeri Galtsev wrote:
On Thu, September 25, 2014 8:59 am, John Doe wrote:
From: Johan Vermeulen jvermeu...@cawdekempen.be
op
On Thu, September 25, 2014 11:16 am, Nicolas Thierry-Mieg wrote:
On 09/25/2014 05:49 PM, m.r...@5-cent.us wrote:
Tom Bishop wrote:
I like the look of palemoon, I am going to drop an email to Nux and
see if we can get it added to his repo.
Maybe we can get it into extras? I mentioned
On 09/25/2014 04:38 PM, Valeri Galtsev wrote:
Yes, I still didn't find replacement for firefox... so, anyone who has a
any suggestions of decent open source browser, please, let me know.
maybe try seamonkey, I've been using it for ages (basically since
firefox split from mozilla suite ;-) )
Nicolas Thierry-Mieg wrote:
On 09/25/2014 05:49 PM, m.r...@5-cent.us wrote:
Tom Bishop wrote:
I like the look of palemoon, I am going to drop an email to Nux and
see if we can get it added to his repo.
Maybe we can get it into extras? I mentioned something from his repo to
my manager, who
Maybe we can get it into extras? I mentioned something from his repo
to
my manager, who understandably balked at a Russian server (this is a
US
gov't agency (non-DoD) that we work at
li.nux.ro, that's Romania not Russia.
Thanks, I sit (and type) corrected. There was something nagging at
On 25/09/14 17:42, m.r...@5-cent.us wrote:
Nicolas Thierry-Mieg wrote:
On 09/25/2014 05:49 PM, m.r...@5-cent.us wrote:
Tom Bishop wrote:
I like the look of palemoon, I am going to drop an email to
Nux and see if we can get it added to his repo.
Maybe we can get it into extras? I mentioned
Jake Shipton wrote:
On 25/09/14 17:42, m.r...@5-cent.us wrote:
Nicolas Thierry-Mieg wrote:
On 09/25/2014 05:49 PM, m.r...@5-cent.us wrote:
Tom Bishop wrote:
I like the look of palemoon, I am going to drop an email to
Nux and see if we can get it added to his repo.
Maybe we can get it into
On Thu, Sep 25, 2014 at 12:18 PM, m.r...@5-cent.us wrote:
Guess it's the old if it ain't American, it ain't right attitude? :-).
Don't be absurd. How 'bout can we be sure that no one's inserted nasties
into the code? How 'bout who else has looked at and compared the code to
the project
Sorry, missing footnotes to last email:
1] you'll notice I never mention the organization name - I really am not
allowed to speak for my organization, or my company.
2] Partly because I work for a federal contractor
mark
___
CentOS mailing
There is a README file on CentOS 7 in /etc/init.d
that says
Note that traditional init scripts continue to function on a systemd
system. An init script /etc/rc.d/init.d/foobar is implicitly mapped
into a service unit foobar.service during system initilization
So I dropped my file in the above
On 9/25/2014 11:39 AM, Jerry Geis wrote:
There is a README file on CentOS 7 in /etc/init.d
that says
Note that traditional init scripts continue to function on a systemd
system. An init script /etc/rc.d/init.d/foobar is implicitly mapped
into a service unit foobar.service during system
Well, I've set up one of our new JetStors. xfs took *seconds* to put a
filesystem on it.
We're talking what df -h shows as 66TB.
(Pardon me, my mind just SEGV'd on that statement)
Using bonnie++, I found that
a) GPT and partitioning gave was insignificantly different than
creating an
is your init.d script chmod +x ?
just putting something in init.d isn't sufficient, it has to be linked
in rc?.d as a S##name ... which chkconfig on (or systemctl) are
supposed to do
Yes the script is executable... forgot to mention that.
From the comment in the README file, I thought that
On 9/25/2014 12:41 PM, m.r...@5-cent.us wrote:
I do have a question for the group mind, though: mounting these monstrous
partitions... should I, or, in fact, do I*need* to give, as a mount
option inode64? There will be a*lot* of files on this sucker What are
the pros and cons of that?
Jerry Geis wrote:
is your init.d script chmod +x ?
just putting something in init.d isn't sufficient, it has to be linked
in rc?.d as a S##name ... which chkconfig on (or systemctl) are
supposed to do
Yes the script is executable... forgot to mention that.
From the comment in the README
On 09/24/2014 12:11 PM, Johnny Hughes wrote:
On 09/24/2014 10:26 AM, Jim Perrin wrote:
You should 'yum update' as soon as possible to resolve this issue.
Here's why you should care:
https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/
On 09/24/2014 12:11 PM, Johnny Hughes wrote:
On 09/24/2014 10:26 AM, Jim Perrin wrote:
You should 'yum update' as soon as possible to resolve this issue.
Here's why you should care:
https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/
On Thu, 25 Sep 2014, John R Pierce wrote:
yes, you need inode64, as without it, it will be unable to create directories
after the first 2TB(?) fills up.
I have recently found that with XFS and inode64, certain applications
won't work properly when the file system is exported w/NFS4 to a
In days of old, in Solaris there was a daemon for NFS Client, and NFS
server (actually several including portmap...).
I am unable to find reference to the daemon that runs NFS client
But the RedHat Documentation does not explain the NFS client daemon. Is
this a service or something else.
on
No it is not windows FS, this is a Hitachi Storage array managed by
RedHat storage nodes.
How do I clear client side NFS without a reboot
(sorry about the cross post)
For server side, it is simple service nfs restart.
But it looks like redhat/centos no longer has a nfs client service.
On
On 9/25/2014 2:01 PM, Steve Thompson wrote:
On Thu, 25 Sep 2014, John R Pierce wrote:
yes, you need inode64, as without it, it will be unable to create
directories after the first 2TB(?) fills up.
I have recently found that with XFS and inode64, certain applications
won't work properly when
Steve Thompson wrote:
On Thu, 25 Sep 2014, John R Pierce wrote:
yes, you need inode64, as without it, it will be unable to create
directories
after the first 2TB(?) fills up.
I have recently found that with XFS and inode64, certain applications
won't work properly when the file system is
Try this:
http://www.databook.bz/?page_id=246
On 09/25/2014 05:13 PM, Dan Hyatt wrote:
In days of old, in Solaris there was a daemon for NFS Client, and NFS server
(actually several including portmap...).
I am unable to find reference to the daemon that runs NFS client
But the RedHat
On Thu, 25 Sep 2014, John R Pierce wrote:
On 9/25/2014 2:01 PM, Steve Thompson wrote:
On Thu, 25 Sep 2014, John R Pierce wrote:
yes, you need inode64, as without it, it will be unable to create
directories after the first 2TB(?) fills up.
I have recently found that with XFS and
On 2014-09-25, Steve Thompson s...@vgersoft.com wrote:
On Thu, 25 Sep 2014, John R Pierce wrote:
yes, you need inode64, as without it, it will be unable to create
directories
after the first 2TB(?) fills up.
Close, it's 1TB. But you won't be able to create *any* new inodes,
directories or
On 25/09/14 18:18, m.r...@5-cent.us wrote:
Jake Shipton wrote:
Guess it's the old if it ain't American, it ain't right
attitude? :-).
Don't be absurd. How 'bout can we be sure that no one's inserted
nasties into the code? How 'bout who else has looked at and
compared the code to the
On Thu, 2014-09-25 at 09:09 -0500, Valeri Galtsev wrote:
Don't change anything unless it is absolutely necessary.
Extremely wise advice. Seems upstream do not always agree :-)
--
Regards,
Paul.
England, EU.
___
CentOS mailing list
On Thu, 2014-09-25 at 18:16 +0200, Nicolas Thierry-Mieg wrote:
On 09/25/2014 05:49 PM, m.r...@5-cent.us wrote:
Maybe we can get it into extras? I mentioned something from his repo to my
manager, who understandably balked at a Russian server (this is a US gov't
agency (non-DoD) that we
On Thu, September 25, 2014 7:32 pm, Always Learning wrote:
On Thu, 2014-09-25 at 18:16 +0200, Nicolas Thierry-Mieg wrote:
On 09/25/2014 05:49 PM, m.r...@5-cent.us wrote:
Maybe we can get it into extras? I mentioned something from his repo
to my
manager, who understandably balked at a
Take the case of an Apache Bash CGI. This will have been loaded when Apache
started, so Apache will have to be restarted to get the new one. There may
be other similar cases. So the best thing is to reboot.
Cheers,
Cliff
On Fri, Sep 26, 2014 at 2:39 AM, John Doe jd...@yahoo.com wrote:
If I
I didn't notice you had mentioned CGI. CGI (and PHP) is only one case where
a copy of bash is loaded. There are many other possibilities, eg wrapper
bash scripts, bash shell called from programs. I don't know whether or not
there are any such cases on my machines, or if the exploit can be executed
On 2014-09-26, Cliff Pratt enkiduonthe...@gmail.com wrote:
Take the case of an Apache Bash CGI. This will have been loaded when Apache
started, so Apache will have to be restarted to get the new one.
Based on my (admittedly limited) testing I do not believe this is the
case. Apache exec()'s
72 matches
Mail list logo