Hi
Have you got this line of your sources.list?
deb http://security.debian.org/ jessie/updates main contrib non-free
You find file from /etc/apt directory.
Further reading from here
https://www.debian.org/security/
Regards, Riku
On 11/22/2016 09:10 PM, Richard Waterbeek wrote:
> Hello
On 08.09.2014 07:33, David Prévot wrote:
Le 07/09/2014 10:54, Paul Wise a écrit :
On Sun, Sep 7, 2014 at 9:30 PM, David Prévot wrote:
How does it work if the upgrade run in the background? Will all
needed service be restarted without asking? (If so, the gdm3
restart issue may be a blocker).
On 16.05.2014 22:38, herzogbrigit...@t-online.de wrote:
Hello there,
Hi
There is some info
https://www.debian.org/releases/stable/amd64/release-notes/ch-whats-new.en.html#hardening
http://www.ubuntu.com/about/about-ubuntu/ubuntu-and-debian
https://wiki.ubuntu.com/DebianImportFreeze
On 12/08/2013 04:13 AM, Jérémie Marguerie wrote:
On Sat, Dec 7, 2013 at 4:03 PM, Anatoli Lichii anat...@lanixx.com wrote:
I use ufw/gufw
A simple firewall configuration is to allow what goes out and only
accept what comes in if it was initiated from your laptop
(established
connection).
On 12/08/2013 02:44 PM, Volker Birk wrote:
On Sun, Dec 08, 2013 at 01:36:36PM +0100, Frédéric CORNU wrote:
What about the possibility of a malicious piece of software
beeing installed and starting listening to incomming connections
without the knownledge of the system user ?
What about
On 12/08/2013 07:05 PM, Jordon Bedwell wrote:
On Sun, Dec 8, 2013 at 11:01 AM, Riku Valli riku.va...@vallit.fi wrote:
On 12/08/2013 02:44 PM, Volker Birk wrote:
On Sun, Dec 08, 2013 at 01:36:36PM +0100, Frédéric CORNU wrote:
What about the possibility of a malicious piece of software
beeing
On 10/03/2013 05:44 PM, Marko Randjelovic wrote:
On Thu, 03 Oct 2013 14:37:22 +0200
Paul van der Vlis p...@vandervlis.nl wrote:
Hello,
In some cases security updates for packages in main are realized by
new releases, e.g. Iceweasel and Wordpress. Such packages can give
problems, e.g. in
On 08/04/2013 11:51 AM, Volker Birk wrote:
To make that clear: I don't think this is a matter of security of
the procedure what we're discussing. It is a matter of trusting
the involved people.
Yours, VB.
Exactly, problem is similar as trusted certificate authors were for
ssl
On 05/15/2013 01:50 PM, Kees de Jong wrote:
Gavin, did you use the right exploit? The output looks like it's
designed for a 2.6.37 kernel. I don't have a computer near me to check
the exploit myself. Could you please verify you used the right exploit?
Thanks!
Bug is in 2.6.37-3.8.8, fixed in
On 02/02/2013 11:24 AM, Bart Martens wrote:
Who knows---it
might even be possible to distribute the plugin files directly in a non-
free package, so we don't have to worry about downloading them at all.
That would be a huge improvement. Still, new Adobe Flash Player versions with
security
On 04/03/2011 10:54 PM, Kete wrote:
On Sunday April 3, 2011 4:28:06 am Riku Valli wrote:
After i upgrade my system from Lenny to Squeeze. Aptitudes packet states
were messed and i must made lot of work to sync it again and apt-get
shows states right a way.
By the way, if you didn't tell
right a way. So this strenghten my opion at apt-get is
better than aptitude, may be false way.
Regards, Riku
Where can we find source info about this recomendation?
Joseph.
Enviado desde mi dispositivo movil BlackBerry® de Digitel.
-Original Message-
From: Riku Valli
On 03/31/2011 04:23 PM, Benedikt Hallinger wrote:
Hi,
i noticed that too and switched back to apt-get for that reason.
Hi
apt-get is now preferred method over aptitude at Squeeze. However at
Lenny aptitude is preferred over apt-get.
You should use apt-get with Squeeze and aptitude with Lenny.
a dehqan wrote:
In The Name Of God
Thanks alot for your attentions ;
Yes ,service is inetd .How can port 113 be closed ?
You can example close all services with command update-inetd and when
all services were disabled restart openbsd-inetd. Service isn't start if
all services are diasbled.
Nikolay Yatsyshyn wrote:
Hello!
I often use lame as .mp3 media encoder in etch distro, but now I
update my laptops to lenny and can't found nothing about it. I try to
use ffmpeg for this, but it haven't compiled in .mp3 encoder.
Does lame exist in offical debian lenny repos? Maybe there are
Frédéric PICA wrote:
Ok, so the problem remains the same for me.
It's possible that a package get updated for a security reason while
being in the stable channel. This is contradictory with the security
FAQ.
Is there another way (for a program) to get the type of a package ? A
special way to
Alexander Golovin wrote:
How to create a security local mirror for Debian Etch i386 architecture?
Example apt-mirror package.
Description: APT sources mirroring tool
A small and efficient tool that lets you mirror a part of or the whole
Debian
GNU/Linux distribution or any other apt
yosh wrote:
W. Martin Borgert skrev:
On Wed, Jun 04, 2008 at 02:37:38PM -0500, James Miller wrote:
All I needed to do was run aptitude install
libssl0.9.8=0.9.8c-4etch3
...
I have to admit, I _really_ need to learn aptitude, I'm kinda stuck
in my ways using apt-get and dselect.
Rolf Kutz wrote:
On 23/01/08 08:29 -0700, Michael Loftis wrote:
It's better to leave the service disabled, or even better, completely
uninstalled from a security standpoint, and from a DoS standpoint as
well. The Linux kernel isn't very efficient at processing firewall
rules. Newer
I
William Twomey wrote:
Debian haven't any open services by default, except portmapper and
behind portmapper aren't any services. So no need for host firewall.
But isn't it reasonable to assume that most people will be installing
services? Even a desktop user is likely to enable SSH and maybe
William Twomey wrote:
If this is needed/wanted to Debian, no problems, but remember obscure
isn't security.
With fwbuilder, lokkit (Gnome), kmyfirewall (kde) etc is very easy
made and maintain firewall/s at Linux and all of these are regular
Debian packages. That is true at there should be
William Twomey wrote:
It's my understanding (and experience) that a Debian system by default
is vulnerable to SYN flooding (at least when running services) and
other such mischeif. I was curious as to why tcp_syncookies (and
similar things) are not enabled by default.
Sorry forgot that.
Steve Kemp wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-1376[EMAIL PROTECTED]
http://www.debian.org/security/ Steve Kemp
September
Noah Meyerhans wrote:
On Fri, Sep 21, 2007 at 04:48:34PM +0100, Adam D. Barratt wrote:
I'm guessing the people reporting problems are i386 users.
kdebase: Depends: kappfinder (= 4:3.5.5a.dfsg.1-6etch1) but
4:3.5.5a.dfsg.1-6 is installed.
kappfinder is a binary coming from
Steve Kemp wrote:
On Fri Sep 21, 2007 at 18:01:10 +0300, Riku Valli wrote:
For the stable distribution (etch), this problem has been fixed in version
4:3.5.5a.dfsg.1-6etch1.
It seems at kdebase and fetchmailconf depencies are broken.
I don't see what the source
Frédéric PICA wrote:
Greets,
I saw in 'man apt-get' that using apt-get upgrade does not install new
packages or remove an already installed package.
Is it possible that I did'nt get the latest security fixes using
apt-get upgade in a cron job ?
I think particularly about security fixes that
to be sure that dist-upgrade will not broke my server by removing
needed pacakges, for example mod_php for apache or things like that.
FP
2007/6/7, Riku Valli [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]:
Frédéric PICA wrote:
Greets,
I saw in 'man apt-get' that using apt-get
Todd Troxell wrote:
It seems to me that it would be a good idea to notify root upon upgrade
to a security-fixed kernel so the admin knows to reboot the machine. It
could take place in the form of an email at the simplest. (or News.Debian)
It would then be simple to compare the date of the mail
- Original Message -
From: Matt Zimmerman [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, March 01, 2004 8:33 PM
Subject: Re: apt-get upgrade and kernel images
On Fri, Feb 27, 2004 at 12:42:16AM -0800, Andris Kalnozols wrote:
I am running Debian testing and seem to recall
- Original Message -
From: Matt Zimmerman [EMAIL PROTECTED]
To: debian-security@lists.debian.org
Sent: Monday, March 01, 2004 8:33 PM
Subject: Re: apt-get upgrade and kernel images
On Fri, Feb 27, 2004 at 12:42:16AM -0800, Andris Kalnozols wrote:
I am running Debian testing and
- Original Message -
From: Ruben Porras [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, December 05, 2003 12:21 AM
Subject: Re: extrange passwd behaviour
El jue, 04-12-2003 a las 22:05, Kevin escribi:
I've discovered that login, sudo, gdm only take care of the first 8
- Original Message -
From: Eric D Nielsen [EMAIL PROTECTED]
To: debian-security@lists.debian.org
Sent: Thursday, December 04, 2003 7:48 PM
Subject: Upgrading Kernels...
I'm a little confused as to how/when I should upgrade my kernel. I'm not
subscribed to this list a present, so
- Original Message -
From: Ruben Porras [EMAIL PROTECTED]
To: debian-security@lists.debian.org
Sent: Friday, December 05, 2003 12:21 AM
Subject: Re: extrange passwd behaviour
El jue, 04-12-2003 a las 22:05, Kevin escribió:
I've discovered that login, sudo, gdm only take care of the
- Original Message -
From: Eric D Nielsen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, December 04, 2003 7:48 PM
Subject: Upgrading Kernels...
I'm a little confused as to how/when I should upgrade my kernel. I'm not
subscribed to this list a present, so please include me
Hi
How about boot floppies kernel? Kernel-image-2.4.18-bf2.4 which is default
kernel for woody.
What is state of that kernel?
Regards
-- Riku
- Original Message -
From: peace bwitchu [EMAIL PROTECTED]
To: John Keimel [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Tuesday, December 02,
Hi
At my computers this normal stock kernel is enough... So i am too lazy to
compile kernel. I do it only if hardware or something need it and often i
used only kernel-headers for that job. i only used Linux to different jobs
and only goals are it work, it is safe and it is easy maintain.
One
Hi
How about boot floppies kernel? Kernel-image-2.4.18-bf2.4 which is default
kernel for woody.
What is state of that kernel?
Regards
-- Riku
- Original Message -
From: peace bwitchu [EMAIL PROTECTED]
To: John Keimel [EMAIL PROTECTED]; debian-security@lists.debian.org
Sent: Tuesday,
Hi
At my computers this normal stock kernel is enough... So i am too lazy to
compile kernel. I do it only if hardware or something need it and often i
used only kernel-headers for that job. i only used Linux to different jobs
and only goals are it work, it is safe and it is easy maintain.
One
Hi
Disable services. Edited /etc/inetd.conf and add # to unwanted service or
use update-inetd program to complete task. Restart inetd super daemon
/etc/init.d/inetd restart
stop service ex /etc/init.d/named stop
/etc/init.d/program_name add beginning of script 'exit 0' examble of named
(listen
variants for you...
If you see messages somethink database is over 8 days old..
updatedb ( You must do that root privileges)
Riku
- Original Message -
From: Zeno Davatz [EMAIL PROTECTED]
To: Riku Valli [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Monday, September 30, 2002 11:41 AM
Subject
Hi
Disable services. Edited /etc/inetd.conf and add # to unwanted service or
use update-inetd program to complete task. Restart inetd super daemon
/etc/init.d/inetd restart
stop service ex /etc/init.d/named stop
/etc/init.d/program_name add beginning of script 'exit 0' examble of named
(listen
variants for you...
If you see messages somethink database is over 8 days old..
updatedb ( You must do that root privileges)
Riku
- Original Message -
From: Zeno Davatz [EMAIL PROTECTED]
To: Riku Valli [EMAIL PROTECTED]; debian-security@lists.debian.org
Sent: Monday, September 30, 2002 11
42 matches
Mail list logo