Carolina - 1.3

For talk and support relating specifically to Puppy derivatives
Message
Author
User avatar
0xdawg
Posts: 38
Joined: Fri 18 Sep 2015, 20:12
Location: .de/

#1756 Post by 0xdawg »

Mike7 wrote:Oxdawg-

What's the difference between openssl-1.0.1p-i586 and openssl-1.0.1p-i486? -x86 suffixes describe the chipset architecture the software was compiled upon. In your case an -i586 does match for your Atom N270.

Is anything besides openssl dependent on the openssl solibs? No. Dependency checker didn't report of missing dependencies.

(I really don't understand how openssl works and am just trying to make my system as secure as possible. I especially don't want to do anything that's going to screw up my OS or that isn't easily reversible.)

From my understanding the latest OpenSSL-version is rather a little more important when running a server. Clientwise it's also important but an up-to-date browser prevents from compromising your system.
Besides I have my PupSaveConfig set to +0 (ask at shutdown), this way I can test whatever I've installed on-the-fly before saving it. If anything doesn't work properly (last time it was OscarTalks Tor-browser package) I just don't save it.

M.
In your initial post you've asked for OpenSSL-1.0.1p

Mebbe you're waiting to be on the safe side and let Geoffrey or any other dev deliver

Could be I'm wrong with any-/everything I've posted so I am not gonna answer on this specific topic anymore .. 'cause I'm a novice user nor hacker // guru
./kthxbai

User avatar
Geoffrey
Posts: 2355
Joined: Sun 30 May 2010, 08:42
Location: Queensland

#1757 Post by Geoffrey »

I've compiled openssl-1.0.2d and openssh-7.1p1 packages, you will need to install the both for ssh to work.

Please try these and report if this fixes any problems you have and I will then add them to the PPM, would pay to test this in a new savefile.

Thanks,

Geoff
[b]Carolina:[/b] [url=http://smokey01.com/carolina/pages/recent-repo.html]Recent Repository Additions[/url]
[img]https://dl.dropboxusercontent.com/s/ahfade8q4def1lq/signbot.gif[/img]

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1758 Post by Mike7 »

Thanks, Oxdawg.

I haven't decided what to do about opensssl yet. I'm at a disadvantage because I don't understand these systems and because I'm using Carolite-1.2 rather than Carolina-1.3.

Every bit of info (like i586 being good on Atom N270) helps, though.

Cheers.

Mike
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1759 Post by Mike7 »

Hi, Geoffrey.
I've compiled openssl-1.0.2d and openssh-7.1p1 packages, you will need to install the both for ssh to work.
-- Can I assume, then, that if all I want is openssl I can ignore openssh-7.1p1-i486?

-- Oxdawg said the i586 versions are compatible with my Atom N270 processor. Will this i486 version work also?
Please try these and report if this fixes any problems you have and I will then add them to the PPM, would pay to test this in a new savefile.
My security problems have so far all been browser-related, and they are intermittent. That makes testing difficult. What I would ideally need for testing would be openssl that I could load and run on-the-fly, when the problems arise. Any suggestions?

M.
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
0xdawg
Posts: 38
Joined: Fri 18 Sep 2015, 20:12
Location: .de/

#1760 Post by 0xdawg »

Mike7 wrote: -- Oxdawg said the i586 versions are compatible with my Atom N270 processor. Will this i486 version work also?
Never mind, but that compatibility is given on any not too old x86 machine.
-> http://mindspill.net/computing/cross-pl ... i586-i686/

User avatar
Geoffrey
Posts: 2355
Joined: Sun 30 May 2010, 08:42
Location: Queensland

#1761 Post by Geoffrey »

Mike7 wrote: -- Can I assume, then, that if all I want is openssl I can ignore openssh-7.1p1-i486?
The current SSH doesn't work in Carolina as it was compile against a different version of SSL which wasn't added, my bad.

So it's best to install both if you intend to use SSH.
-- Oxdawg said the i586 versions are compatible with my Atom N270 processor. Will this i486 version work also?
Should be fine.
My security problems have so far all been browser-related, and they are intermittent. That makes testing difficult. What I would ideally need for testing would be openssl that I could load and run on-the-fly, when the problems arise. Any suggestions?
I don't feel I can help with that, not my forte.
[b]Carolina:[/b] [url=http://smokey01.com/carolina/pages/recent-repo.html]Recent Repository Additions[/url]
[img]https://dl.dropboxusercontent.com/s/ahfade8q4def1lq/signbot.gif[/img]

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1762 Post by Mike7 »

0xdawg wrote:Never mind, but that compatibility is given on any not too old x86 machine.
-> http://mindspill.net/computing/cross-pl ... i586-i686/
You've lost me, and that article isn't much help. I've googled this and come up with zilch. Can you point to some place where ixxx versions are correlated with CPUs?

M.
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1763 Post by Mike7 »

Geoffrey wrote: So it's best to install both if you intend to use SSH.
Uy. I repeat: if all I want is openssl, can I ignore the openssh download?
I don't feel I can help with that, not my forte.
I can't figure you out, Geoffrey. Didn't you write:
Please try these and report if this fixes any problems you have. . . would pay to test this in a new savefile.
Is there some sort of breakdown in communication between us, or are you just kidding me along or something?

M.
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
Geoffrey
Posts: 2355
Joined: Sun 30 May 2010, 08:42
Location: Queensland

#1764 Post by Geoffrey »

Mike7 wrote:
Geoffrey wrote: So it's best to install both if you intend to use SSH.
Uy. I repeat: if all I want is openssl, can I ignore the openssh download?
I said this as it wasn't just aimed at you, others might like to update and have a working SSH

Why wouldn't you want to fix a broken SSH :?
I can't figure you out
There's nothing to figure out
Please try these and report if this fixes any problems you have. . . would pay to test this in a new savefile.
Is there some sort of breakdown in communication between us, or are you just kidding me along or something?
There wasn't a intercommunication to begin with, in my initial post the packages were not aimed at any particular person,
I generally see that there are problems and try to remedy them.
I found that SSH was giving a SSL version error and wouldn't run, by compiling new versions of both SSL and SSH fixed the problem.
By me asking for it to be tested and suggesting on a new save is common practice.
I don't feel I can help with that, not my forte.
Is in reference to you having a security problem,
I personally don't run any firewalls or worry to much about security.
I make sure I don't go to any sites that could possibly be dangerous and don't save banking details or passwords.


To answer your question SSH is reliant on the version of SSL, so it should be ok if you want to only install the SSL package.

Cheers,

Geoff
[b]Carolina:[/b] [url=http://smokey01.com/carolina/pages/recent-repo.html]Recent Repository Additions[/url]
[img]https://dl.dropboxusercontent.com/s/ahfade8q4def1lq/signbot.gif[/img]

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1765 Post by Mike7 »

Geoffrey wrote:I said this as it wasn't just aimed at you, others might like to update and have a working SSH
Your reply was addressed to me, and it quite naturally confused me.
Why wouldn't you want to fix a broken SSH :?
I don't have openssh.
There wasn't a intercommunication to begin with
You replied to my post. I call that communication.
I don't feel I can help with that, not my forte.
Is in reference to you having a security problem
My query there was about testing and making a new savefile for an intermittent problem. Since you suggested doing these two things (testing and making a new savefile), I naturally thought you might have some suggestions about testing and savefile techniques for intermittent security problems.
I personally don't run any firewalls or worry to much about security.
I make sure I don't go to any sites that could possibly be dangerous and don't save banking details or passwords.
Openssl isn't related to security issues? You're putting me on, right?

M.
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
Geoffrey
Posts: 2355
Joined: Sun 30 May 2010, 08:42
Location: Queensland

#1766 Post by Geoffrey »

@Mike7

What ever, you were in communication with 0xdawg about ssl and couldn't find it in the PPM, I pointed that there was openssl-1.0.1j-i486.

At no point did I discuss with you anything to do with security, you mentioned that
My security problems have so far all been browser-related, and they are intermittent. That makes testing difficult. What I would ideally need for testing would be openssl that I could load and run on-the-fly, when the problems arise. Any suggestions?
Which I responded
I don't feel I can help with that, not my forte.
I don't have openssh.


If you running Carolite-1.2 then you have SSH, it should be working, it isn't working in Carolina 1.3, but if you only update SSL then SSH is not going to work.

I mentioned that any apps that require SSL would need to be recompiled, SSH wasn't working due to a version conflict, so I fixed the problem for 1.3.

Openssl isn't related to security issues? You're putting me on, right?
I couldn't tell you, to repeat myself, I don't feel I can help with that, not my forte.

All I asked was for the packages to be tested by anyone that know how to use them, I'm no expert on the subject.

Cheers,

Geoff
[b]Carolina:[/b] [url=http://smokey01.com/carolina/pages/recent-repo.html]Recent Repository Additions[/url]
[img]https://dl.dropboxusercontent.com/s/ahfade8q4def1lq/signbot.gif[/img]

User avatar
0xdawg
Posts: 38
Joined: Fri 18 Sep 2015, 20:12
Location: .de/

#1767 Post by 0xdawg »

@Mike7,

open bash

Code: Select all

ssh -V
update those packages if your machine isn't up-to-date.
(http://www.openssh.com/ && http://openssl.org/ to see their latest version)

See if Firefox is updated: Help -> About Firefox
If this doesn't install the latest version automatically, download and install from here ->
https://www.mozilla.org/en-US/firefox/new/


For your security concerns you may want to have a look at this distro ->
http://distrowatch.com/chromixium

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1768 Post by Mike7 »

Geoffrey wrote:If you running Carolite-1.2 then you have SSH,
I didn't know that. How do I check for it? Is there a terminal command that will tell me if openssh is present, like the openssl command does? (I did a system search with Pfind and found no references to openssh anywhere, whereas Pfind did find openssl.)
it should be working
Likewise for whether it is working (a command?).
it isn't working in Carolina 1.3, but if you only update SSL then SSH is not going to work.
Does it matter? Do I need SSH?
I mentioned that any apps that require SSL would need to be recompiled,
So that alone precludes my updating openssl, since I am not competent to compile or recompile anything?

I am now thoroughly confused about openssl and openssh, what they do, if they are necessary, if they are present in my OS, if I need to update one or the other or both, etc.

And as usual, when I get this confused, I do nothing, which could be a mistake.

But in order for me to do the right thing, I need real help, geared to my level of understanding.

Mike7
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
Geoffrey
Posts: 2355
Joined: Sun 30 May 2010, 08:42
Location: Queensland

#1769 Post by Geoffrey »

Hi Mike,
Mike7 wrote:
Geoffrey wrote:If you running Carolite-1.2 then you have SSH,
I didn't know that. How do I check for it? Is there a terminal command that will tell me if openssh is present, like the openssl command does? (I did a system search with Pfind and found no references to openssh anywhere, whereas Pfind did find openssl.)
I had a look in Carolite, the command isn't openssh, they are "openssl " and " ssh ", the open refers to them being FREE versions.

Code: Select all

# ssh
usage: ssh [-1246AaCfgKkMNnqsTtVvXxYy] [-b bind_address] [-c cipher_spec]
           [-D [bind_address:]port] [-e escape_char] [-F configfile]
           [-I pkcs11] [-i identity_file]
           [-L [bind_address:]port:host:hostport]
           [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port]
           [-R [bind_address:]port:host:hostport] [-S ctl_path]
           [-W host:port] [-w local_tun[:remote_tun]]
           [user@]hostname [command]
#

Code: Select all

# openssl version
OpenSSL 1.0.d 8 Feb 2011
it isn't working in Carolina 1.3, but if you only update SSL then SSH is not going to work.
Does it matter? Do I need SSH?
If you intend on doing a secure login to a remote location then yes, you need it.

Code: Select all

# ssh user@hostname 
I mentioned that any apps that require SSL would need to be recompiled,
So that alone precludes my updating openssl, since I am not competent to compile or recompile anything?

I am now thoroughly confused about openssl and openssh, what they do, if they are necessary, if they are present in my OS, if I need to update one or the other or both, etc.

And as usual, when I get this confused, I do nothing, which could be a mistake.

But in order for me to do the right thing, I need real help, geared to my level of understanding.

Mike7
I'm none the wiser about it to, I have no idea what goes on under the hood other than both are needed to make secure connections.

There is nothing to compile, the pets I posted should work, but like I said try them with a new save file first to be sure they are functioning correctly.

Like everything I do it comes with this warning, Use at your own peril :wink:
[b]Carolina:[/b] [url=http://smokey01.com/carolina/pages/recent-repo.html]Recent Repository Additions[/url]
[img]https://dl.dropboxusercontent.com/s/ahfade8q4def1lq/signbot.gif[/img]

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1770 Post by Mike7 »

Hi, Geoffrey.
I had a look in Carolite, the command isn't openssh, they are "openssl " and " ssh
Thanks. I knew to use openssl as a command, but not ssh. I get the same responses as you:

Code: Select all

# openssl version
OpenSSL 1.0.0d 8 Feb 2011

Code: Select all

# ssh
usage: ssh [-1246AaCfgKkMNnqsTtVvXxYy] [-b bind_address] [-c cipher_spec]
           [-D [bind_address:]port] [-e escape_char] [-F configfile]
           [-I pkcs11] [-i identity_file]
           [-L [bind_address:]port:host:hostport]
           [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port]
           [-R [bind_address:]port:host:hostport] [-S ctl_path]
           [-W host:port] [-w local_tun[:remote_tun]]
           [user@]hostname [command]
So I assume that the ssh is the same version as the openssl.

These are pretty ancient versions (from 2011). I wonder how important it is to update them, when, like me, you are not using any remote connections? Do you know if openssl is used frequently with many websites to interact? Perhaps it is imperative to update it.

What about apps that depend on ssl needing to be re-compiled when updating to 1.0.2? Do you know if there are some? Which ones? If not, maybe someone else here can help with this, please?

I will also post the query to another thread.

Mike7
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
Geoffrey
Posts: 2355
Joined: Sun 30 May 2010, 08:42
Location: Queensland

#1771 Post by Geoffrey »

Mike, I think you'd be better asking someone that knows something about openssl, I'm pretty clueless when it come to network stuff.

I only know enough to be dangerous, it's trial and error with me, though I can usually fix my problems given time and a lot of reading of post where others have a similar problems.

I really don't understand the problems your having so hopefully someone with the know how will shed some light on it for you.
[b]Carolina:[/b] [url=http://smokey01.com/carolina/pages/recent-repo.html]Recent Repository Additions[/url]
[img]https://dl.dropboxusercontent.com/s/ahfade8q4def1lq/signbot.gif[/img]

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1772 Post by Mike7 »

0xdawg-

Code: Select all

ssh -V
Thanks for the ssh -V command.
For your security concerns you may want to have a look at this distro ->
http://distrowatch.com/chromixium
Interesting, but this is a whole operating system, not just a browser. Won't it replace my Carolite-1.2 OS?

Does Chromixium really solve a bunch of security issues (like flash and openssl) that FF and other browsers seem unable to resolve?

Personally, I don't like the whole new world of OS/browser/apps integration that Chromebook has spawned. I feel it is against the concept of freeware.

M.
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
Mike7
Posts: 400
Joined: Tue 19 Feb 2013, 00:31

#1773 Post by Mike7 »

Geoffrey wrote:Mike, I think you'd be better asking someone that knows something about openssl, I'm pretty clueless when it come to network stuff.
Okay, thanks, Geoffrey. If I do end up trying out your openssl-1.0.2d, I'll post my results.

Cheers.

Mike
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.

User avatar
0xdawg
Posts: 38
Joined: Fri 18 Sep 2015, 20:12
Location: .de/

#1774 Post by 0xdawg »

Cheers to Geoff for updating the repositories =]

Happy to have found Qupzilla there which now replaces bloated Firefox 41.
Had no luck installing Pale Moon.
[size=75][b][url]https://theoatmeal.com/comics/believe[/url][/b][/size]

User avatar
Geoffrey
Posts: 2355
Joined: Sun 30 May 2010, 08:42
Location: Queensland

#1775 Post by Geoffrey »

Edit:
Updated repo with yad-0.31.2-i486-webkit-version, compiled with support for html browser, it requires the webkit to function.
For those that want the latest without the browser support download yad-0.31.2-i486
Attachments
yad-web-brower.png
(63.01 KiB) Downloaded 1806 times
Last edited by Geoffrey on Wed 14 Oct 2015, 02:28, edited 1 time in total.
[b]Carolina:[/b] [url=http://smokey01.com/carolina/pages/recent-repo.html]Recent Repository Additions[/url]
[img]https://dl.dropboxusercontent.com/s/ahfade8q4def1lq/signbot.gif[/img]

Post Reply