LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Weekly Edition

Return to the Distributions page

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

LWN.net Weekly Edition for September 4, 2008

The Kernel Hacker's Bookshelf: UNIX Internals

DRI, BSD, and Linux

SCHED_FIFO and realtime throttling

LWN.net Weekly Edition for August 28, 2008

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

Trustix Secure Linux bug fix advisory

[Posted March 9, 2005 by ris]

From:  Trustix Security Advisor <tsl-AT-trustix.org>
To:  tsl-announce-AT-lists.trustix.org
Subject:  TSL-2005-0008 - multi
Date:  Fri, 4 Mar 2005 14:57:03 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Bigfix Advisory #2005-0008

Package name:      apache etcskel gdbm rootfiles samba squid sudo
Summary:           Package improvements
Date:              2005-03-04
Affected versions: Trustix Secure Linux 2.2

- --------------------------------------------------------------------------
Package description:
  apache:
  Apache is a full featured web server that is freely available, and also
  happens to be the most widely used.
  
  etcskel:
  The etcskel package is part of the basic Trustix system.  Etcskel
  provides the /etc/skel directory's files.  These files (.bash_logout,
  .bash_profile, .bashrc) are then placed in every new user's home
  directory when new accounts are created.
  
  gdbm:
  Gdbm is a GNU database indexing library, including routines
  which use extensible hashing.  Gdbm works in a similar way to standard UNIX
  dbm routines.  Gdbm is useful for developers who write C applications and
  need access to a simple and efficient database or who are building C
  applications which will use such a database.
  
  rootfiles:
  The rootfiles package contains basic required files that are placed
  in the root user's account.  These files are basically the same
  as the files found in the etcskel package, which are placed in regular
  users' home directories.
  
  samba:
  Samba provides an SMB server which can be used to provide network
  services to SMB (sometimes called "Lan Manager") clients, including
  various versions of MS Windows, OS/2, and other Linux machines. Samba
  uses NetBIOS over TCP/IP (NetBT) protocols and does NOT need NetBEUI
  (Microsoft Raw NetBIOS frame) protocol.
  
  squid:
  Squid is a high-performance proxy caching server for Web clients,
  supporting FTP, gopher, and HTTP data objects. Unlike traditional
  caching software, Squid handles all requests in a single,
  non-blocking, I/O-driven process. Squid keeps meta data and especially
  hot objects cached in RAM, caches DNS lookups, supports non-blocking
  DNS lookups, and implements negative caching of failed requests.
  
  sudo:
  Sudo (superuser do) allows a system administrator to give certain
  users (or groups of users) the ability to run some (or all) commands
  as root while logging all commands and arguments. Sudo operates on a
  per-command basis.  It is not a replacement for the shell.  Features
  include: the ability to restrict what commands a user may run on a
  per-host basis, copious logging of each command (providing a clear
  audit trail of who did what), a configurable timeout of the sudo
  command, and the ability to use the same configuration file (sudoers)
  on many different machines.


Problem description:
  apache:
  - Change SSL config section.  Bug #30.
  - New upstream.
  - Added LDAP support.  Bug #51.
  
  etcskel:
  - Cleanup of spec file.
  - Add .gnupg directory.
  
  gdbm:
  - Now include compat libs.  Bug #57.
  
  rootfiles:
  - Cleanup of spec file.
  - Add inputrc.  Bug #105.
  
  samba:
  - Now stop only on uninstalling.  Take II.  Bug #88.
  - Fix start/stop/restart/status in init script.
  
  squid:
  - Fix algorithm to find cache_dir in init script.  Bug #60.  Take II.

  sudo:
  - LDAP support.  Bug #51.
  - New upstream.


Action:
  We recommend that all systems with this package installed be upgraded.
  Please note that if you do not need the functionality provided by this
  package, you may want to remove it from your system.


Location:
  All Trustix Secure Linux updates are available from
  <URI:http://http.trustix.org/pub/trustix/updates/>>
  <URI:ftp://ftp.trustix.org/pub/trustix/updates/>>


About Trustix Secure Linux:
  Trustix Secure Linux is a small Linux distribution for servers. With focus
  on security and stability, the system is painlessly kept safe and up to
  date from day one using swup, the automated software updater.


Automatic updates:
  Users of the SWUP tool can enjoy having updates automatically
  installed using 'swup --upgrade'.


Questions?
  Check out our mailing lists:
  <URI:http://www.trustix.org/support/>>


Verification:
  This advisory along with all Trustix packages are signed with the
  TSL sign key.
  This key is available from:
  <URI:http://www.trustix.org/TSL-SIGN-KEY>>

  The advisory itself is available from the errata pages at
  <URI:http://www.trustix.org/errata/trustix-2.2/>>
  or directly at
  <URI:http://www.trustix.org/errata/2005/0008/>>


MD5sums of the packages:
- --------------------------------------------------------------------------
cd38b0736dbea450d61807883f5dbe37  2.2/rpms/apache-2.0.53-2tr.i586.rpm
f6e3f5f243d2404f86bd09b3bb2563a0  2.2/rpms/apache-dbm-2.0.53-2tr.i586.rpm
2a32baf5bc96a67c88e7fe21d486596b  2.2/rpms/apache-devel-2.0.53-2tr.i586.rpm
00e04a283289fd481a82d2fc920c018b  2.2/rpms/apache-html-2.0.53-2tr.i586.rpm
9faa58616dfdbc7f22e577391e17c31c  2.2/rpms/apache-manual-2.0.53-2tr.i586.rpm
4f6c1e4dec91b00676311d548e8cf761  2.2/rpms/etcskel-2.2-1tr.i586.rpm
005234baa4aa89749c6c37bdf294be42  2.2/rpms/gdbm-1.8.3-5tr.i586.rpm
d460fbb248f21ef5f751ffa70c5c959a  2.2/rpms/gdbm-devel-1.8.3-5tr.i586.rpm
3c9f7e9f131afa20dfd96f5dbe272d5e  2.2/rpms/rootfiles-5.5-1tr.i586.rpm
b19e7c02f7394bb0d1255acd6b4a2cc1  2.2/rpms/samba-3.0.11-2tr.i586.rpm
84c0242eda489390f1d5b8a3872d6274  2.2/rpms/samba-client-3.0.11-2tr.i586.rpm
2a8fff98d7ebf175a86d62159f1018a2  2.2/rpms/samba-common-3.0.11-2tr.i586.rpm
111b9ed36eaa4d488f3f665a5d828926  2.2/rpms/samba-mysql-3.0.11-2tr.i586.rpm
6939f4f5ea83d800f2e06260252d14fe  2.2/rpms/squid-2.5.STABLE9-2tr.i586.rpm
c8da292f78707e65ef63078439985868  2.2/rpms/sudo-1.6.8p7-1tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFCKGj9i8CEzsK9IksRArt5AKCAKpzWEufkqOSmZc+4Y90VWsT0YQCfR+Cv
Db9Ukk4zTyOHKIv3selbPs0=
=aRL3
-----END PGP SIGNATURE-----
_______________________________________________
tsl-announce mailing list
tsl-announce@lists.trustix.org
http://lists.trustix.org/mailman/listinfo/tsl-announce
(Log in to post comments)

Copyright © 2005, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds