Re: Coding Practice [was Re: Serious OpenSSL vulnerability]

On 9 April 2014 18:05, Liam Proven wrote: > On 9 April 2014 17:19, Tim wrote: >> Only the other day I was thinking similarly: That almost every exploit >> that I read about, over the last umpteen years, was a buffer overflow; >> and why is it so? Are programmers such morons that they accept all

Re: nvidia driver on fedora 20 / GTX460M

On 9 April 2014 15:23, Rafnews wrote: > Hi, > > after i followed the tutorial from > http://www.if-not-true-then-false.com/2014/fedora-20-nvidia-guide/ about > installing nVidia driver for my ASUS G73SW laptop (with a GTX460M nvidia > card), i'm getting blocked at boot time of fedora 20. > i used

udev rules fails with last fedora update

Hi all, I'm running Fedora 20 and I have a rules in 70-persistent-net.rules to have eth0 to my ethernet card. Today I updated and so I installed the new kernel-3.13.9-200.fc20.x86_64. With this kernel the udev do a rename from eth0 to p3p1. In the messages I see Apr 10 09:28:07 pc-delo systemd-ud

Re: Serious OpenSSL vulnerability

On 04/09/2014 08:14 PM, Patrick O'Callaghan wrote: On Wed, 2014-04-09 at 18:30 -0400, eoconno...@gmail.com wrote: I gotta sayI'm so impressed with the way this issue has been handled by the developers here @ FedoraI've updated all three of my Fedora boxesand will sleep soundly knowi

Clamav tell's me rkhunter is a worm!

/usr/bin/rkhunter: Osx.Worm.Inqtana-3 FOUND /usr/bin/rkhunter: moved to '/var/cache/clam/rkhunter.001' rkhunter-1.4.2-2.fc20.noarch Rkhunter was updated to this during the week, ___ Regards Frank frankly3d.com -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscri

Re: Serious OpenSSL vulnerability

On 04/09/2014 02:52 PM, Dan Thurman wrote: On 04/08/2014 02:55 AM, Patrick O'Callaghan wrote: https://www.openssl.org/news/secadv_20140407.txt See also http://heartbleed.com/ and http://arstechnica.com/security/2014/04/critical-crypto-bug-in-openssl-opens-two-thirds-of-the-web-to-eavesdropping/

Re: Serious OpenSSL vulnerability

On 04/10/14 17:18, EGO.II-1 wrote: > I noticed that when I updated, that the "latest" version is 1.0.1e? I cannot > seem to find a "g" in the repos...is there some specific place I should look? > Or will the version that got updated be sufficient?... [egreshko@meimei addresses]$ rpm -q --change

Re: Serious OpenSSL vulnerability

On Thu, 2014-04-10 at 04:48 -0400, EGO.II-1 wrote: > My apologies for the top post, but when that was sent it was from my > Android phone and there's no real way to tell when I'm replying to a > message as to whether it's top posting or not. If you use the Gmail app on the phone, after hitting R

Re: Serious OpenSSL vulnerability

Btw, NPR reports that https://lastpass.com/heartbleed/ will inform you whether the site uses OpenSSL and whether it has been updated with the patched version. Not all the sites that I use appear to have been patched:-( HTH, Ranjan FRE

Re: fedup 19=>20 hangs: selinux

Strange, if selinux-policy-targeted is not installed SELinux is disabled. On 04/09/2014 08:31 PM, Sean Darcy wrote: > On 04/09/2014 06:01 PM, Daniel J Walsh wrote: >> So this looks like selinux-policy-targeted got removed during the >> update? >> >> On 04/09/2014 04:21 PM, Sean Darcy wrote: >>> On

Re: Serious OpenSSL vulnerability

On Thu, Apr 10, 2014 at 13:33:29 +0100, Patrick O'Callaghan wrote: On Thu, 2014-04-10 at 04:48 -0400, EGO.II-1 wrote: My apologies for the top post, but when that was sent it was from my Android phone and there's no real way to tell when I'm replying to a message as to whether it's top postin

Re: Serious OpenSSL vulnerability

On Thu, 10 Apr 2014 08:16:19 -0500 Bruno Wolff III wrote: > On Thu, Apr 10, 2014 at 13:33:29 +0100, >Patrick O'Callaghan wrote: > >On Thu, 2014-04-10 at 04:48 -0400, EGO.II-1 wrote: > >> My apologies for the top post, but when that was sent it was from my > >> Android phone and there's no re

Re: Serious OpenSSL vulnerability

Allegedly, on or about 10 April 2014, Patrick O'Callaghan sent: > Did you also change your passwords on every vulnerable site which has > since been fixed? That will be a major pain. The one address offered to check whether a service was patched was overloaded when I tried it, and probably alway

Re: F20 Where's my system mail?

On Tue, 2014-04-08 at 22:22 +0100, Arthur Dent wrote: > Hello all, > > I have read this page: > https://fedoraproject.org/wiki/Changes/NoDefaultSendmail > > Having upgraded to F20 the new lack of an MTA caused me no end of > trouble with my fetchmail->procmail->dovecot setup, but I think I have >

Re: F20 Where's my system mail?

2014-04-10 17:08 GMT+03:00 Arthur Dent : > Does everyone here now do without email alerts, or does everyone just > install postfix or some such? > > I would really like to know if there is a workaround for me... > > Thanks again > > Mark > My impression is that an MTA is currently not installed by

Re: Serious OpenSSL vulnerability

On Thu, 2014-04-10 at 23:27 +0930, Tim wrote: > Allegedly, on or about 10 April 2014, Patrick O'Callaghan sent: > > Did you also change your passwords on every vulnerable site which has > > since been fixed? > > That will be a major pain. The one address offered to check whether a > service was

Re: Serious OpenSSL vulnerability

On Thu, 2014-04-10 at 08:16 -0500, Bruno Wolff III wrote: > On Thu, Apr 10, 2014 at 13:33:29 +0100, >Patrick O'Callaghan wrote: > >On Thu, 2014-04-10 at 04:48 -0400, EGO.II-1 wrote: > >> My apologies for the top post, but when that was sent it was from my > >> Android phone and there's no real

Re: F20 Where's my system mail?

On Thu, 2014-04-10 at 17:13 +0300, Joonas Sarajärvi wrote: > 2014-04-10 17:08 GMT+03:00 Arthur Dent : > > > My impression is that an MTA is currently not installed by default > because it was thought that most users do not use the things it > provides. However, since you seem to actually use funct

Re: Flock proposal voting now open

On Thu, Apr 10, 2014 at 10:24:15AM -0400, Ruth Suehle wrote: > Vote on the proposals for talks you'd like to see at Flock: > https://admin.fedoraproject.org/voting > > Votes are not the only criterion for selection, but they're the most > important, so your opinion matters! Voting will be up for t

Re: Flock proposal voting now open

On Thu, Apr 10, 2014 at 10:38:23AM -0400, Matthew Miller wrote: > Thanks very much all for the improved voting app. Much easier than last > year. Can you clarify the meaning of the numbers, though? Is 0 "no interest" > and 15 "definitely want"? Err. 128, I mean. Wow. That's a lot of numbers. --

Tiering FS

Hi, Has anyone tried a tiering filesystem like one of these? https://bbs.archlinux.org/viewtopic.php?id=113529 http://www.lessfs.com/wordpress/?p=776 I've read that btrfs can do it also but is that stable enough for production yet? If you have used any of the above, did it perform well? As a

Re: Serious OpenSSL vulnerability

On 10 April 2014 15:13, Patrick O'Callaghan wrote: > Agreed. Unfortunately the app doesn't support the "quote only the > selected text" trick. True, it doesn't. You can block-select stuff to delete, though. -- Liam Proven * Profile: http://lproven.livejournal.com/profile Email: lpro...@cix.co.

Re: F20 Where's my system mail?

Around 03:24pm on Thursday, April 10, 2014 (UK time), Arthur Dent wrote: > 2) now that Fedora have removed the MTA as default, does it even > generate system messages and cron output messages anymore? Yes it does. I install and configure sendmail on both my Fedora workstations and do receive all

Re: Serious OpenSSL vulnerability

On 10 April 2014 14:57, Tim wrote: > Allegedly, on or about 10 April 2014, Patrick O'Callaghan sent: >> Did you also change your passwords on every vulnerable site which has >> since been fixed? > > That will be a major pain. The one address offered to check whether a > service was patched was ov

fedora20 vs gnome-software - no updates

Hello, When I start "Software" from gnome actions it shows no updates. But yum update shows me 261 pkgs to update. What could be the issue? Am I doing it right? -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mail

Re: F20 Where's my system mail?

On Thu, 2014-04-10 at 15:51 +0100, Steve Searle wrote: > Around 03:24pm on Thursday, April 10, 2014 (UK time), Arthur Dent wrote: > > > 2) now that Fedora have removed the MTA as default, does it even > > generate system messages and cron output messages anymore? > > Yes it does. I install and co

Re: Tiering FS

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/10/14 10:42, arag...@dcsnow.com wrote: > > I've read that btrfs can do it also but is that stable enough for > production yet? > > If you have used any of the above, did it perform well? > I've never used any Tiering FS's, but I've got three

Re: F20 Where's my system mail?

Around 04:47pm on Thursday, April 10, 2014 (UK time), Arthur Dent wrote: > OK - So if just do "yum install sendmail" will everything work as > before? Or will I have to spend a fortune on coffee and pizzas as I sit > up night after night trying to configure it? Not a fortune, but you need to tink

Re: F20 Where's my system mail?

On 10.04.2014 17:47, Arthur Dent wrote: > OK - So if just do "yum install sendmail" will everything work as > before? Or will I have to spend a fortune on coffee and pizzas as I sit > up night after night trying to configure it? > What is tomorrow's weather forecast para las Islas Canarias? po

Re: fedup 19=>20 hangs: selinux

On 10.04.2014 15:13, Daniel J Walsh wrote: > Strange, if selinux-policy-targeted is not installed SELinux is disabled. > On 04/09/2014 08:31 PM, Sean Darcy wrote: >> On 04/09/2014 06:01 PM, Daniel J Walsh wrote: >>> So this looks like selinux-policy-targeted got removed during the >>> update? >>>

Frustrating upgraded behaviour

Hi all, I'm a little frustrated. In Fedora 20, updated, with the new kernel my udev rule for eth0 is no more working. Booting with old kernel it's ok. As I have a lot of VM that point to eth0, I'm booting with the old kernel. But with the old kernel LibreOffice is hanging on start. It starts only

Re: Frustrating upgraded behaviour

On 10.04.2014 19:38, Ambrogio De Lorenzo wrote: > Hi all, > I'm a little frustrated. > > In Fedora 20, updated, with the new kernel my udev rule for eth0 is no > more working. Booting with old kernel it's ok. As I have a lot of VM > that point to eth0, I'm booting with the old kernel. > But with t

Re: Frustrating upgraded behaviour

On 04/10/2014 10:38 AM, Ambrogio De Lorenzo wrote: Hi all, I'm a little frustrated. In Fedora 20, updated, with the new kernel my udev rule for eth0 is no more working. Booting with old kernel it's ok. As I have a lot of VM that point to eth0, I'm booting with the old kernel. But with the old ke

Re: Frustrating upgraded behaviour

On Apr 10 20:12, poma wrote: > On 10.04.2014 19:38, Ambrogio De Lorenzo wrote: > > Hi all, > > I'm a little frustrated. > > > > In Fedora 20, updated, with the new kernel my udev rule for eth0 is no > > more working. Booting with old kernel it's ok. As I have a lot of VM > > that point to eth0, I'

Re: Serious OpenSSL vulnerability

On 04/09/2014 05:15 PM, Dan Thurman wrote: On 04/09/2014 03:57 PM, Dan Thurman wrote: On 04/09/2014 01:30 PM, Matthew Miller wrote: On Wed, Apr 09, 2014 at 03:05:28PM -0500, Bruno Wolff III wrote: You could try rebuilding from a src rpm from the fixed version in f19. I would expect that to hav

Re: Serious OpenSSL vulnerability

On 04/10/14 20:54, Ian Malone wrote: On 10 April 2014 14:57, Tim wrote: Allegedly, on or about 10 April 2014, Patrick O'Callaghan sent: Did you also change your passwords on every vulnerable site which has since been fixed? That will be a major pain. The one address offered to check wheth

Re: Serious OpenSSL vulnerability

Once upon a time, Dan Thurman said: > 2) I downloaded F18 SRPM file, changed the SPEC file by adding > -DOPENSSL_NO_HEARTBEATS to RPM_OPT_FLAGS variable, > then rebuild which compiled with no errors, then removed the > old openssl files (rpm --nodeps -e openssl*), installed the new fil

Re: Serious OpenSSL vulnerability

On 4/10/2014 3:07 PM, g wrote: > > > On 04/10/14 20:54, Ian Malone wrote: >> On 10 April 2014 14:57, Tim wrote: >>> Allegedly, on or about 10 April 2014, Patrick O'Callaghan sent: Did you also change your passwords on every vulnerable site which has since been fixed? >>> >>> That will

Forcing telnet to use IPv6

Many howtos I find for Telnet and IPv6 say to use the '-6' option. Well no such option exists in the Fedora telnet client. I know if the host is ONLY accessable via v6, Telnet will use v6. But how do I force the client when the server is listening on both stacks? -- users mailing list users@

Re: Forcing telnet to use IPv6

Once upon a time, Robert Moskowitz said: > Many howtos I find for Telnet and IPv6 say to use the '-6' option. > Well no such option exists in the Fedora telnet client. > > I know if the host is ONLY accessable via v6, Telnet will use v6. > But how do I force the client when the server is listenin

Re: Serious OpenSSL vulnerability

On 04/11/14 01:22, David wrote: On 4/10/2014 3:07 PM, g wrote: <<>> above link gave 2 test sites. 1st gave no response, 2nd gave a grade of 'B' and said site i was checking was not not vulnerable to heartbleed attack. all of which brings to question, if one does not store passwords for crit

Re: Serious OpenSSL vulnerability

On 04/10/2014 12:10 PM, Chris Adams wrote: Once upon a time, Dan Thurman said: 2) I downloaded F18 SRPM file, changed the SPEC file by adding -DOPENSSL_NO_HEARTBEATS to RPM_OPT_FLAGS variable, then rebuild which compiled with no errors, then removed the old openssl files (rpm --n

Re: Clamav tell's me rkhunter is a worm!

Hi On Thu, Apr 10, 2014 at 4:53 AM, Frank Murphy wrote: > /usr/bin/rkhunter: Osx.Worm.Inqtana-3 FOUND > /usr/bin/rkhunter: moved to '/var/cache/clam/rkhunter.001' > > rkhunter-1.4.2-2.fc20.noarch > Rkhunter was updated to this during the week, rkhunter is likely g

Re: Serious OpenSSL vulnerability

Once upon a time, Dan Thurman said: > So I was unable to rpm -Uvh *.rpm/yum localinstall *.rpm because > yum/rpm detected no difference. Perhaps I need to change the SPEC > file to a different version, say from 1:1.0.1e-37.fc18 to 1:1.0.1e-38.fc18? > If so, where do I change the version from 37

Re: Coding Practice [was Re: Serious OpenSSL vulnerability]

Hi On Thu, Apr 10, 2014 at 3:19 AM, Ian Malone wrote: > . > This bug was pretty bad, but the kind of mistakes that lead to > overflows and over-reads tend to be from not keeping track of the data > properly and will cause other problems anyway, memory protection > doesn't help with those. > In

Re: Frustrating upgraded behaviour

Oh no... Il giorno gio, 10/04/2014 alle 19.38 +0200, Ambrogio De Lorenzo ha scritto: > In Fedora 20, updated, with the new kernel my udev rule for eth0 is no > more working. Booting with old kernel it's ok. As I have a lot of VM > that point to eth0, I'm booting with the old kernel. > But with th

Re: Frustrating upgraded behaviour

On 10.04.2014 20:45, Corinna Vinschen wrote: > On Apr 10 20:12, poma wrote: >> On 10.04.2014 19:38, Ambrogio De Lorenzo wrote: >>> Hi all, >>> I'm a little frustrated. >>> >>> In Fedora 20, updated, with the new kernel my udev rule for eth0 is no >>> more working. Booting with old kernel it's ok. A

Re: Serious OpenSSL vulnerability

On 4/10/2014 3:49 PM, g wrote: > > > On 04/11/14 01:22, David wrote: >> On 4/10/2014 3:07 PM, g wrote: > <<>> > >>> above link gave 2 test sites. 1st gave no response, 2nd gave a >>> grade of 'B' and said site i was checking was not not vulnerable >>> to heartbleed attack. >>> >>> all of which b

Re: Frustrating upgraded behaviour

Hi Joe Il giorno gio, 10/04/2014 alle 11.22 -0700, Joe Zeff ha scritto: > I'm not positive, but I don't think that the two situations are > connected. Unless you're trying to open files on another machine, > LibreOffice shouldn't be doing anything with your NIC, and even then, it > doesn't ne

[389-users] LDAP import

All, I'm attempting to import an LDAP schema (is that the correct term?) from one LDAP implementation to another and it appears that I may be doing it incorrectly. I created a ldif file for import as: ldapsearch -b "o=companyA" -D "dc=hq,dc=example,dc=com" -h original_system > output.ldif I the

Re: Forcing telnet to use IPv6

On 04/10/2014 03:43 PM, Chris Adams wrote: Once upon a time, Robert Moskowitz said: Many howtos I find for Telnet and IPv6 say to use the '-6' option. Well no such option exists in the Fedora telnet client. I know if the host is ONLY accessable via v6, Telnet will use v6. But how do I force t

Re: Frustrating upgraded behaviour

On 04/10/2014 01:16 PM, Ambrogio De Lorenzo wrote: But this is not the case. The hang happens everytime I start the programs, without errors (even if I start it by command line). Do you get any error messages when that happens? -- users mailing list users@lists.fedoraproject.org To unsubscribe

Re: Frustrating upgraded behaviour

Hi Poma, Il giorno gio, 10/04/2014 alle 22.13 +0200, poma ha scritto: > 1. Do not duplicate the thread - Ambrogio! I'm sorry for that, I didn't thought to the duplicating, because I thought that the problem was more complex, due to other issue on LibreOffice, after the same upgrade. > 2. # yum re

Re: Frustrating upgraded behaviour

On 10.04.2014 22:24, Ambrogio De Lorenzo wrote: > Hi Poma, > Il giorno gio, 10/04/2014 alle 22.13 +0200, poma ha scritto: > >> 1. Do not duplicate the thread - Ambrogio! > I'm sorry for that, I didn't thought to the duplicating, because I > thought that the problem was more complex, due to other i

Re: Frustrating upgraded behaviour

Il giorno gio, 10/04/2014 alle 13.20 -0700, Joe Zeff ha scritto: > On 04/10/2014 01:16 PM, Ambrogio De Lorenzo wrote: > > But this is not the case. The hang happens everytime I start the > > programs, without errors (even if I start it by command line). > > Do you get any error messages when that

Re: Frustrating upgraded behaviour

On 10.04.2014 22:38, Ambrogio De Lorenzo wrote: > Il giorno gio, 10/04/2014 alle 13.20 -0700, Joe Zeff ha scritto: >> On 04/10/2014 01:16 PM, Ambrogio De Lorenzo wrote: >>> But this is not the case. The hang happens everytime I start the >>> programs, without errors (even if I start it by command l

set NTP servers in Date & Time settings?

Hi all, Does anyone know if Gnome3 did away with the ability to set your NTP servers in the Date and Time control panel? I remember you used to be able to do this, but can't remember if it was on Gnome2xx or was a feature that originally existed in Gnome3 on fedora. Thanks! -- users mailing lis

Re: Serious OpenSSL vulnerability

On 04/11/14 02:14, David wrote: <<>> On 4/10/2014 3:49 PM, g wrote: would you have a suggestion of a link that give a good detailed description of what bug is all about and how some sites are effected while others are not? Sure. Explained as simply (non geeky) as i have seen. "The Heartblee

Re: fedup 19=>20 hangs: selinux

On 04/10/2014 12:59 PM, poma wrote: On 10.04.2014 15:13, Daniel J Walsh wrote: Strange, if selinux-policy-targeted is not installed SELinux is disabled. On 04/09/2014 08:31 PM, Sean Darcy wrote: On 04/09/2014 06:01 PM, Daniel J Walsh wrote: So this looks like selinux-policy-targeted got remove

Re: Clamav tell's me rkhunter is a worm!

On Thu, 2014-04-10 at 09:53 +0100, Frank Murphy wrote: > /usr/bin/rkhunter: Osx.Worm.Inqtana-3 FOUND > /usr/bin/rkhunter: moved to '/var/cache/clam/rkhunter.001' > The ClamAV Inqtana-3 check looks for a couple of phrases (actually parts of filenames) which also occur in rkhunter as part of its Inq

Re: Clamav tell's me rkhunter is a worm!

On Thu, 10 Apr 2014 22:46:56 +0100 John Horne wrote: > On Thu, 2014-04-10 at 09:53 +0100, Frank Murphy wrote: > > /usr/bin/rkhunter: Osx.Worm.Inqtana-3 FOUND > > /usr/bin/rkhunter: moved to '/var/cache/clam/rkhunter.001' > > > The ClamAV Inqtana-3 check looks for a couple of phrases (actually >

Re: Frustrating upgraded behaviour

On 04/11/14 04:10, Ambrogio De Lorenzo wrote: > LibreOffice is hanging also with the new Kernel. Saw this mentioned somewhere elsebut can't remember where. I just tried and verified that... yum erase libreoffice-kde will fix the hang. Also explains why I didn't see the hang since, even

Re: Libreoffice issues after last libreoffice update

CS_DBA wrote: > Running F20 and KDE, updated libre office. Now if I open by clicking on > libre office writer I get a window outline with the background from my > desktop in the window, it's not quite a transparent window cause if I > move it the portion of the desktop background moves with it...

Re: Serious OpenSSL vulnerability

On 04/10/2014 12:56 PM, Chris Adams wrote: Once upon a time, Dan Thurman said: So I was unable to rpm -Uvh *.rpm/yum localinstall *.rpm because yum/rpm detected no difference. Perhaps I need to change the SPEC file to a different version, say from 1:1.0.1e-37.fc18 to 1:1.0.1e-38.fc18? If so,

Re: Frustrating upgraded behaviour

On 04/11/14 06:09, Ed Greshko wrote: > On 04/11/14 04:10, Ambrogio De Lorenzo wrote: >> LibreOffice is hanging also with the new Kernel. > Saw this mentioned somewhere elsebut can't remember where. I just tried > and verified that... > > yum erase libreoffice-kde will fix the hang. Also e

Re: Serious OpenSSL vulnerability

On 10/04/14 14:59, Edward M wrote: On 4/9/2014 3:30 PM, eoconno...@gmail.com wrote: I gotta sayI'm so impressed with the way this issue has been handled by the developers here @ FedoraI've updated all three of my Fedora boxesand will sleep soundly knowing the vulnerability has been

Re: Serious OpenSSL vulnerability

On 4/10/2014 5:32 PM, g wrote: > > > On 04/11/14 02:14, David wrote: > <<>> On 4/10/2014 3:49 PM, g wrote: > >>> would you have a suggestion of a link that give a good detailed >>> description of what bug is all about and how some sites are effected >>> while others are not? >> >> Sure. Explaine

Re: Serious OpenSSL vulnerability

On 11 April 2014 00:55, David wrote: > > Sure. I would not really *greatly* care about tech sites password. I > would be (was) concerned about my 'money' sites. The sites had to used > openssl. Which would be any Apache and another one that I can not recall > at the moment. > > But? This time the

Re: Serious OpenSSL vulnerability

On 4/10/2014 8:28 PM, Ian Malone wrote: > On 11 April 2014 00:55, David wrote: > >> >> Sure. I would not really *greatly* care about tech sites password. I >> would be (was) concerned about my 'money' sites. The sites had to used >> openssl. Which would be any Apache and another one that I can no