Aidan Gauland writes:
> I have a user service for running xautolock that does not start on login
> reliably, and I have no idea why, because there is no error message,
> just an exit code of 1. (Unit file and output of systemctl status
> attached.) Any suggestions on what to do next to troublesho
On Lu, 15 apr 19, 12:27:39, Francisco M Neto wrote:
>
> Also, I'm sorry for the noobish question, but it's been a really long
> time since I've done any kind of kernel work. How do I perform a security
> check?
Review the patches :)
Kind regards,
Andrei
--
http://wiki.debian.org/FAQsFrom
Hi.
On Fri, Jun 21, 2019 at 06:36:20AM +1000, Andrew McGlashan wrote:
> On 21/6/19 5:52 am, Reco wrote:
> > Plain old grep is more than enough here. This one:
> >
> > grep 'run{' /var/log/exim4/reject*
> >
> > finds things like these:
> >
> > 2019-06-19 18:54:43 H=(service.com) [107.182
On Thu 20 Jun 2019 at 20:01:39 (+0200), Pascal Hambourg wrote:
> Le 18/06/2019 à 18:15, David Wright a écrit :
> >
> > It's long been a disappointment that there's no
> > GRUB_DISABLE_LINUX_LABEL=true parameter in /etc/default/grub.
>
> What for ? grub-mkconfig does not use LABELs by defaut, so t
I have a user service for running xautolock that does not start on login
reliably, and I have no idea why, because there is no error message,
just an exit code of 1. (Unit file and output of systemctl status
attached.) Any suggestions on what to do next to troubleshoot this?
Regards,
Aidan Gaula
On Thu, Jun 20, 2019 at 10:50:08PM +0100, Brian wrote:
So? Looks like a normal day. Announcing exim as version 4.92 (or any
other value) is most unlikely to reduce the number of these attempts.
I'm seeing the same attempts on postfix servers...
> Oh, and please excuse me for my poor use of these mailing
> lists, I'm new here.
I apologize myself if I've make you feel a bit uncomfortable.
I'm not a native English speaker, and sometimes my wording may
happen to be a little bit stronger than first intended, but I
try to watch my tongue. Bla
> Thank you for your note. I do /not/ speak for the Debian kernel
> team, but an upgrade of Linux fixing these TCP SACK
> vulnerabilities are in the pipeline in Debian Sid, in Linux
> version 4.19.37-5. There is an unconditional ten days delay for
> introduction of upgrades from Sid to Testing,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
On 21/6/19 4:49 am, Reco wrote:
>> Thank you, I've changed the banner for now let's hope that
>> lessens the problem.
>
> Please share the results if possible.
>
> On this particular MTA I've counted whopping 4 attempts to exploit
> CVE-2
On Fri 21 Jun 2019 at 04:15:35 +1000, Andrew McGlashan wrote:
> On 20/6/19 11:57 pm, Brian wrote:
> > On Thu 20 Jun 2019 at 23:26:08 +1000, Andrew McGlashan wrote:
> >
> >> # dpkg-query -l|grep \ exim|awk '{print $2,$3}'|column -t exim4
> >> 4.89-2+deb9u4 exim4-base 4.89-2+deb9u4 exim4-c
On 2019-06-20 14:48 -0400, Greg Wooledge wrote:
> On Thu, Jun 20, 2019 at 08:45:51PM +0200, Étienne Mollier wrote:
>> There is an unconditional ten days delay for
>> introduction of upgrades from Sid to Testing, hence the missing
>> security upgrade into Debian Buster at t time. Hopefully it
>> s
Hi.
On Thu, Jun 20, 2019 at 08:33:07PM +0200, Pascal Hambourg wrote:
> Le 18/06/2019 à 18:19, Reco a écrit :
> > On Tue, Jun 18, 2019 at 04:45:59PM +0200, Pascal Hambourg wrote:
> > > Le 18/06/2019 à 16:11, Reco a écrit :
> > > >
> > > > The problem can be 'solved' by announcing specific
On Thu, Jun 20, 2019 at 1:44 PM Erwan David wrote:
>
> When you know that classless routing is older than classes were when
> CIDR appeared...
>
...then you stop worrying whether or not you can grok IPV6 :-D
Or you post questions about esoteric protocols just to stump the
younger whippersnapper
Hans writes:
> I am running denbian/testing and dicovered, that /var/log/auth.log is got
> spammed with the message, that /lib/security/pam_ck_connector.so is missing.
>
> And yes, it is really missing. However, libpam-ck-connector can not be
> installed (due to dependencies of systemd).
pam_ck_
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 6/20/19 8:48 PM, Greg Wooledge wrote:
> On Thu, Jun 20, 2019 at 08:45:51PM +0200, Étienne Mollier wrote:
>> There is an unconditional ten days delay for introduction of upgrades from
>> Sid to Testing, hence the missing security upgrade into Debi
Hi.
On Fri, Jun 21, 2019 at 04:40:11AM +1000, Andrew McGlashan wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
>
>
> On 20/6/19 11:45 pm, Reco wrote:
> > Hi.
> >
> > On Thu, Jun 20, 2019 at 11:26:08PM +1000, Andrew McGlashan wrote:
> >> Is there a way to provide version of
On Thu, Jun 20, 2019 at 08:45:51PM +0200, Étienne Mollier wrote:
> There is an unconditional ten days delay for
> introduction of upgrades from Sid to Testing, hence the missing
> security upgrade into Debian Buster at t time. Hopefully it
> should land on time for July, the 6th.
The delay period
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 6/20/19 6:40 PM, Lazar Tadić wrote:
> Likewise, linux package in Buster lack recent fixes for SACKs Panic
> vulnerabilities. I hope it will also be uploaded soon.
Good Day Lazar,
Thank you for your note. I do /not/ speak for the Debian kernel
Le 20/06/2019 à 20:33, Pascal Hambourg a écrit :
> Le 18/06/2019 à 18:19, Reco a écrit :
>> On Tue, Jun 18, 2019 at 04:45:59PM +0200, Pascal Hambourg wrote:
>>> Le 18/06/2019 à 16:11, Reco a écrit :
The problem can be 'solved' by announcing specific IP routes to
each and
every
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 20/6/19 11:45 pm, Reco wrote:
> Hi.
>
> On Thu, Jun 20, 2019 at 11:26:08PM +1000, Andrew McGlashan wrote:
>> Is there a way to provide version of "4.92" easily or some other
>> text to stop the likelihood of outsiders trying to pound on and
>>
Please remove me from this email chain.
On Thu, Jun 20, 2019 at 2:33 PM Pascal Hambourg
wrote:
> Le 18/06/2019 à 18:19, Reco a écrit :
> > On Tue, Jun 18, 2019 at 04:45:59PM +0200, Pascal Hambourg wrote:
> >> Le 18/06/2019 à 16:11, Reco a écrit :
> >>>
> >>> The problem can be 'solved' by announ
Le 18/06/2019 à 18:19, Reco a écrit :
On Tue, Jun 18, 2019 at 04:45:59PM +0200, Pascal Hambourg wrote:
Le 18/06/2019 à 16:11, Reco a écrit :
The problem can be 'solved' by announcing specific IP routes to each and
every host on both sites. Yes, it's gross.
Not all hosts accept route announce
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 20/6/19 11:57 pm, Brian wrote:
> On Thu 20 Jun 2019 at 23:26:08 +1000, Andrew McGlashan wrote:
>
>> # dpkg-query -l|grep \ exim|awk '{print $2,$3}'|column -t exim4
>> 4.89-2+deb9u4 exim4-base 4.89-2+deb9u4 exim4-config
>> 4.89-2+deb9u4
Le 18/06/2019 à 18:15, David Wright a écrit :
It's long been a disappointment that there's no
GRUB_DISABLE_LINUX_LABEL=true parameter in /etc/default/grub.
What for ? grub-mkconfig does not use LABELs by defaut, so there is no
need to disable them. I wish there was a way to tell grub-mkconfig
On 2019-06-20, Bob Bernstein wrote:
>
>> ...detain these droids and bring them before the emporer
>
> What's an "emporer?"
It must be an emperor suffering from a metathesis.
> Thank you
>
Chromium is currently 2 major and 3 minor versions behind upstream in
both Stretch and Buster. Please consider uploading a recent version to
address 34 open security issues, before the complete freeze on 25th of
June.
Likewise, linux package in Buster lack recent fixes for SACKs
Panic vulnerabilit
On Wed, 19 Jun 2019, bw wrote:
https://wiki.archlinux.org/index.php/Cursor_Themes#X_resources
This link was the catalyst needed to propel me into solving my
problem, which involved commands such as:
# apt-get install xcursor-themes
# update-alternatives --config x-cursor-theme
Is it really
On Thursday 20 June 2019 08:30:57 Bagas Sanjaya wrote:
> Carl (ca...@panix.com) said:
> > OK, which meaning of "program" are you using here? In American (and
> > UK) English, it can mean either "set of instructions that run on a
> > computer" or "television entertainment item." You seem to be usin
On Thu 20 Jun 2019 at 23:26:08 +1000, Andrew McGlashan wrote:
> # dpkg-query -l|grep \ exim|awk '{print $2,$3}'|column -t
> exim4 4.89-2+deb9u4
> exim4-base 4.89-2+deb9u4
> exim4-config4.89-2+deb9u4
> exim4-daemon-heavy 4.89-2+deb9u4
> exim4-doc-html 4.89-1
>
On Thu, Jun 20, 2019 at 11:26:08PM +1000, Andrew McGlashan wrote:
> Shodan [1] reports loads of vulnerable [2] servers running pre 4.92
> versions of Exim, those include Debian Exim variants reporting 4.89
> even for fully patched servers.
General answer:
https://www.debian.org/security/faq
Hi.
On Thu, Jun 20, 2019 at 11:26:08PM +1000, Andrew McGlashan wrote:
> Is there a way to provide version of "4.92" easily or some other text
> to stop the likelihood of outsiders trying to pound on and exploit the
> server? Even though they won't be able to do successfully due to up to
>
On 6/20/2019 9:45 AM, didier gaumet wrote:
> Le 19/06/2019 à 20:29, john doe a écrit :
>> On 6/19/2019 8:10 PM, Ulf Volmer wrote:
>>> On 19.06.19 17:03, john doe wrote:
Hi, I'm trying to gpg sign rpms on Debian Buster but I'm getting the
following:
$ rpm --resign *.rpm
*.rp
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
Shodan [1] reports loads of vulnerable [2] servers running pre 4.92
versions of Exim, those include Debian Exim variants reporting 4.89
even for fully patched servers.
$ telnet mail.example.org 25
Trying ip_add_re_ss...
Connected to mail.
On Thu, Jun 20, 2019 at 09:24:29AM +0200, Hans wrote:
> I am running denbian/testing and dicovered, that /var/log/auth.log is got
> spammed with the message, that /lib/security/pam_ck_connector.so is missing.
>
> And yes, it is really missing. However, libpam-ck-connector can not be
> installed
On 19/06/2019 22:22, bw wrote:
> In-Reply-To:
>
Just so you know, this line has to be in the headers for it to work.
You're sending it as the first line of the body (after the blank line
that separates headers from the body). This only pollutes the message,
and still breaks the thread.
--
LILO,
Carl (ca...@panix.com) said:
OK, which meaning of "program" are you using here? In American (and
UK) English, it can mean either "set of instructions that run on a
computer" or "television entertainment item." You seem to be using it
both ways in this message or confusing the two.
In this c
On Thursday, June 20, 2019 02:57:18 AM Bagas Sanjaya wrote:
> > I think we (or at least I) must be missing some context here. For
> > starters, this must be some specific group of teenagers. And I'm sure
> > they're not given permission to take over running the whole TV station.
> >
> > Is this so
Quoting Seba Kerckhof (2019-06-20 10:55:19)
> I'm testing out Debian buster rc 1, and I have a problem that my usb camera
> (the very common logitech c930) is seen twice, so there are 2 devices
> (/dev/video0 & /dev/video1).
> Inspecting /dev/video1 with v4l-info throws some errors.
Whare are the
On 6/20/19 12:56 AM, Bagas Sanjaya wrote:
That is almost as bad as having no security restrictions at all. The
correct thing to do would be to set permissions on the programs to
allow them to be run by group remaja.
What I thought that the correct way is to configure sudoers so that
remaja g
Hello,
I'm testing out Debian buster rc 1, and I have a problem that my usb camera
(the very common logitech c930) is seen twice, so there are 2 devices
(/dev/video0 & /dev/video1).
Inspecting /dev/video1 with v4l-info throws some errors.
I believe this to be a bug in Buster that is not present i
On 2019-06-20, Bagas Sanjaya wrote:
>
>> I think we (or at least I) must be missing some context here. For
>> starters, this must be some specific group of teenagers. And I'm sure
>> they're not given permission to take over running the whole TV station.
>>
>> Is this some specific educational env
Le 19/06/2019 à 20:29, john doe a écrit :
> On 6/19/2019 8:10 PM, Ulf Volmer wrote:
>> On 19.06.19 17:03, john doe wrote:
>>> Hi, I'm trying to gpg sign rpms on Debian Buster but I'm getting the
>>> following:
>>>
>>> $ rpm --resign *.rpm
>>> *.rpm:
>>> error: Could not exec gpg: No such file or di
Quoting Erik Josefsson (2019-06-20 08:58:34)
> On 6/19/19 2:04 PM, Jonas Smedegaard wrote:
> >> Or, a better question, is it within reach to run a Debian Pure
> >> Blend on Teres-I without an external SD card? If so, is Dan Ritter
> >> right that it will be 2x to 8x faster?
> > Yes, it certainly
Hi folks,
I am running denbian/testing and dicovered, that /var/log/auth.log is got
spammed with the message, that /lib/security/pam_ck_connector.so is missing.
And yes, it is really missing. However, libpam-ck-connector can not be
installed (due to dependencies of systemd).
One of the source
On Wed, Jun 19, 2019 at 09:22:48PM -0400, bw wrote:
[...]
> Is it really necessary to hammer the list with questions about your
> stretch upgrade?
Yes. This is what this list is for. Not everyone has your skill level.
You don't like a question? You don't know the answer? You pressed?
Don't ans
I think we (or at least I) must be missing some context here. For
starters, this must be some specific group of teenagers. And I'm sure
they're not given permission to take over running the whole TV station.
Is this some specific educational environment? Or is it a TV station
specifically intende
46 matches
Mail list logo