Search found 34 matches
- Fri 31 Oct 2014, 02:21
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
Mentioned on the SSL Version control download page is that FF34, FF33 reset to TLS1.0 on restart. https://addons.mozilla.org/en-US/firefox/addon/ssl-version-control/reviews/ . I can set the Version Control preference in the dropdown to anything, restart Seamonkey, and the page at https://www.howsmy...
- Thu 30 Oct 2014, 18:04
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
- Tue 21 Oct 2014, 13:06
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
- Mon 20 Oct 2014, 16:33
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
@Bird Dog, You probably want to update your browser, and use an extension which disables SSLv3 to avoid the POODLE vulnerability . In firefox I use: https://addons.mozilla.org/it/firefox/addon/ssl-version-control/?src=api Thanks. I had to find an EN page: As of version 0.2, this add-on should work ...
- Mon 06 Oct 2014, 17:05
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
- Sat 04 Oct 2014, 22:53
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
Batch Patcher command line has been updated to v1.1. I got this script and devx_431.sfs on my Puppy 4.3.1 With cpu MHz : 300.632 and MemTotal: 250352 kB it took a little while but it worked, run from ssh cli. 8) The binary it produced is a little smaller than the one from mavrothal's 3.0.21 pet, wh...
- Sat 04 Oct 2014, 22:33
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
There is 'Pkg' - my package manager in Akita and Puppy Arcade.. It has a very extensive CLI interface, the only thing that would need changing is how it reads and writes to repo files.. Or maybe you could steal some functions from it... It's in the Akita thread.. Yes. I tried 0.9.5 but it got stuck...
- Sat 04 Oct 2014, 12:32
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
I've got a small, mostly unattended web server running on Puppy 4.31 on a thin client. I can temporarily connect a monitor and install the patched bash by clicking on them and running pet-get in the gui. It would be more convenient if I could install the pet from CLI in an ssh session, possibly inco...
- Fri 03 Oct 2014, 15:19
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
Your 3.0.20 still passes:
Code: Select all
curl --insecure https://shellshocker.net/shellshock_test.sh | bash
Thanks!
- Thu 02 Oct 2014, 11:52
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
# bash -version GNU bash, version 3.00.20(1)-release (i486-pc-linux-gnu) Copyright (C) 2004 Free Software Foundation, Inc. # curl --insecure https://shellshocker.net/shellshock_test.sh | bash % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 200...
- Wed 01 Oct 2014, 23:50
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
# curl --insecure https://shellshocker.net/shellshock_test.sh | bash .. CVE-2014-6271 (original shellshock): not vulnerable bash: shellshocker: command not found CVE-2014-6278 (Florian's patch): not vulnerable CVE-2014-7169 (taviso bug): not vulnerable CVE-2014-//// (exploit 3 on http://shellshocke...
- Mon 29 Sep 2014, 21:42
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
Just compiled bash-3.0.19.pet and is working properly :wink: (till the next vulnerability is discovered :roll: ) # bash -version GNU bash, version 3.00.19(1)-release (i486-pc-linux-gnu) Copyright (C) 2004 Free Software Foundation, Inc. # foo='() { echo not patched; }' bash -c foo bash: foo: command...
- Mon 29 Sep 2014, 20:22
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
Good. I get that on my ROSA 2012 computer but not on my Puppy 431.Leon wrote:It seems patched.Code: Select all
foo='() { echo not patched; }' bash -c foo bash: foo: command not found
- Mon 29 Sep 2014, 18:54
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
- Mon 29 Sep 2014, 16:52
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
- Sat 27 Sep 2014, 22:23
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
Re: Shellshock vulnerability affects majority of Internet serve
Shellshock vulnerability affects majority of Internet servers and devices; get technical information here Scan your servers........ http://www.trendmicro.com/us/security/shellshock-bash-bug-exploit/index.html Well, I followed instructions and got all Pass . I guess this is thanks to the patched bas...
- Sat 27 Sep 2014, 16:14
- Forum: Security
- Topic: BASH exposure expressed as bigger than Heartbleed<SOLUTIONS>
- Replies: 185
- Views: 125051
- Mon 20 May 2013, 23:10
- Forum: Beginners Help ( Start Here)
- Topic: Troubles with installed gwenview and k3b
- Replies: 10
- Views: 2299
Thanks. # pwd /root # ls / archive extlinux.conf initrd mnt pup_save_crypta.3fs tmp bin extlinux.sys initrd.gz opt root usr boot.msg fsckme.flg lib proc sbin var dev help2.msg logo.16 puppy_precise_5.4.3.sfs selinux vietnam etc help.msg lost+found pup_save_crypta.2fs sys vmlinuz # ls /root/Choices/ ...
- Mon 20 May 2013, 03:23
- Forum: Beginners Help ( Start Here)
- Topic: Troubles with installed gwenview and k3b
- Replies: 10
- Views: 2299
I did install the devx and that seems to be enough for gwenview and k3b to appear to be working. WRT other ideas, I had tried searching on mimes and installing such programs that I did run an update-mime command, before. I'm not inclined to fool more with it but do have some cli results to report, F...
- Sat 18 May 2013, 16:34
- Forum: Beginners Help ( Start Here)
- Topic: Troubles with installed gwenview and k3b
- Replies: 10
- Views: 2299