Puli 3.8.3 bark 6, released Nov 2014

For talk and support relating specifically to Puppy derivatives
Message
Author
User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Bark 3

#16 Post by gjuhasz »

gjuhasz wrote:I am actually working on the New Years Eve version of Puli. Among the bunch of new features, you will find a more comfortable Backup and its Restore counterpart. In addition, as a surprise, I will introduce the "crazy" profile.
Fasten seat belts...
Here you are... as promised. See the first post for details.

Happy New Year!

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Java runtime 1.7u51

#17 Post by gjuhasz »

Hi,

I tested the actual Java runtime (jre-1.7u51-i586.sfs) with Puli.

Available at

http://www.smokey01.com/gjuhasz/Java

Have fun!

Regards,

gjuhasz

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Puli 3.8.3 bark 4

#18 Post by gjuhasz »

Hi all,

I am proud to announce Puli 3.8.3 bark 4

See detailed description at the top of the first page.

Changelog related to its predecessor released Dec 2013:
  • Updated profiles (faster and more fun without decreasing security levels)
    Latest Chrome browser (v34 with Flash plugin v13)
    Latest Office packages (Softmaker FreeOffice and LibreOffice)
    Latest Java runtime (jre-1.7u55-i586)
    Mesa 9.2.0 for Intel video hardware
    Media Transfer Protocol supported for MTP-capable but not auto-recognized devices
    Minor bugfixes

Have fun!

Regards,
gjuhasz

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Mesa 9.2 in Puli 3.8.3 bark 4

#19 Post by gjuhasz »

I just received an email asking for links to see the advantage of Mesa 9.2.0.

FYI: In spite of glxgears works well in other puppies where Mesa 8.0.4 is installed, 3D models can not be viewed thru the browser.

This is why Puli has 9.2 (for Intel hardware).

See how 3D works, for example at

http://studio.verold.com/explore/projects/all/featured

Have fun!

Regards
Attachments
Futuristic_Car_Animated.jpg
(40.75 KiB) Downloaded 1282 times

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Puli 3.8.3 bark 5rc

#20 Post by gjuhasz »

Dear All,

Puli 3.8.3 bark 5rc uploaded

See detailed description at the top of the first page.

Changelog related to its predecessor released Apr 2014:
  • * Smaller footprint (in memory and on the USB pendrive)
    * One-click Smart Install feature to upgrade or even downgrade Chrome browser (this is unique in Puli compared to other Linux, Windows, etc).
    * New Office packages (Softmaker FreeOffice 690, AbiWord 3.0)
    * Smart sfs handling (easy referencing, amount of sfs files is limited only by memory, their media remain unmountable)
    * Improved file associations
    * Latest Links2 browser (v2.8, with nice https and multimedia capabilities)
    * Updated sfs collection, (e.g. FileZilla3.9, TeamViewer9, Java runtime 1.8u5 with clickable jar files, IrfanView-capable wine, etc.)
    * Minor bugfixes
Have fun!

Regards,
gjuhasz
Last edited by gjuhasz on Fri 15 Aug 2014, 13:23, edited 1 time in total.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Puli 3.8.3 bark 5 final released

#21 Post by gjuhasz »

Hi,

This is the time to proudly announce Puli 3.8.3 bark 5

Many unique features, see details on the first page.

Have fun!

Regards,

gjuhasz

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Re: Puli 3.8.3 bark 5 final released

#22 Post by gjuhasz »

gjuhasz wrote:
This is the time
Yeah, thanks to Microsoft, this (was) the best time to refactor Puli.
Now, Skype is available as an auto-loadable sfs. Runs either by root (with sound) or by spot (in silent mode)
Re-tested, uploaded again to http://www.smokey01.com/gjuhasz with the same 'bark5' name.

Regards,

gjuhasz

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Re: Puli 3.8.3 bark 5 final released

#23 Post by gjuhasz »

Dear Puli users,

Some bugs were discovered in the last few weeks that may affect your daily work with Linux.
Please note that Puli can defend most of them due to its nature. Please ensure that the boot device (pendrive) is removed from the USB slot as soon as Puli recommends that. Also, consider using the Riforous or Crazy profiles while booting Puli on an unknown machine or visit suspicious websites.

I will patch Puli as soon as the official fix(es) arrive.

Have fun!

Regards,

gjuhasz
Last edited by gjuhasz on Tue 04 Nov 2014, 09:14, edited 2 times in total.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Bash bug patch for Puli

#24 Post by gjuhasz »

Dear Puli users,

The patch for the newly discovered bash bug

Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271, CVE-2014-7169)

is available for Puli at

http://www.smokey01.com/gjuhasz/Puli_ba ... al_Aug2014

Download the patch folder to your USB boot device then boot Puli normally. That's all.

Bash upgraded to 4.2.25(1)-i686.

Verify the fix based on this article:

https://access.redhat.com/articles/1200223


Have fun!

gjuhasz

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Re: Bash bug patch for Puli

#25 Post by gjuhasz »

gjuhasz wrote:That's all.
In the meantime, some new vulnerabilities were detected, thus I updated the patch accordingly. Apply as described in the previous post.

A complete install package is downloadable either as

http://www.smokey01.com/gjuhasz/sfs/bash-4.3.29-1.pet

or as

http://www.smokey01.com/gjuhasz/sfs/bas ... 1-i486.pet

See the test result attached.

Have fun!

gjuhasz
Attachments
shellshock_test.png
6277 protection included, too.
(35.1 KiB) Downloaded 490 times

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Poodle muzzled

#26 Post by gjuhasz »

In the meantime, the Poodle vulnerability was detected, thus I patched Puli again.

To apply, visit

http://www.smokey01.com/gjuhasz/Puli_ba ... al_Aug2014

Download the patch folder to your USB boot device (or merge your existing patch folder with the downloaded files). Then boot Puli normally any time.

Test the effectiveness of the patch at:

https://zmap.io/sslv3/

Note that this fix provides a cure only for your (client) browser. You may test your favorite servers at

https://www.tinfoilsecurity.com/poodle

to know whether they have patched their services, too.

(The Links 2 browser is not affected because Poodle uses javascript.

Open http://javatester.org/javascript.html in Links2 to verify.)

Have fun!

gjuhasz
Last edited by gjuhasz on Tue 04 Nov 2014, 09:10, edited 1 time in total.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

wget symlink bug CVE-2014-4877

#27 Post by gjuhasz »

In the meantime, new vulnerability (CVE-2014-4877) was detected, thus I patched Puli again.

To apply, visit

http://www.smokey01.com/gjuhasz/Puli_ba ... al_Aug2014

Download the patch folder to your USB boot device (or merge your existing patch folder with the downloaded files). Then boot Puli normally any time.

I uploaded a couple of pet packages that have backported the CVE-2014-4877 patch to

http://www.smokey01.com/gjuhasz/sfs

folder such as:

wget_1.13-1_precise_i386.pet for Upup Precise v3.8.3.1,
wget_1.15-1_trusty_i386 for tahrpup 6.0 CE


Have fun!

gjuhasz
Last edited by gjuhasz on Thu 06 Nov 2014, 10:03, edited 12 times in total.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Summary of bugfixes

#28 Post by gjuhasz »

Just to summarize what I fixed in bark 5 simply by populating the patch folder:

http://www.smokey01.com/gjuhasz/Puli_ba ... 2014/patch
  • * Bash "Shellshock" Vulnerability (CVE-2014-6271, 6277, 6278, 7169. 7186, 7187, ////) fixed. Bash upgraded to bash-3.0.22.
  • * Poodle bugfix included for Chrome (Links2 not affected)
  • * wine collides with Chrome - fixed by uploading new wine package
  • * shrink provides buggy result (typo fixed in remove_builtin script)
  • * no default codec defined for mplayer (now vo=xv)
  • * (workaround) 32-bit PepperFlash in Chrome v38 and above manifests 64-bit fixed (in the updated petget script)
  • * Heartbleed vulnerability fixed (by updating openssl and also by upgrading LibreOffice to v4.3.2)
  • * wget ftp symlink vulnerability (CVE-2014-4877) fixed.
Have fun!

gjuhasz
Last edited by gjuhasz on Thu 06 Nov 2014, 10:42, edited 5 times in total.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

New puli on horizon

#29 Post by gjuhasz »

Hi all,

I decided to publish a new release that not only does include the fixes summarized in the previous post but has many new features.

So, bark 6 is on horizon!

Have fun!

gjuhasz
Last edited by gjuhasz on Thu 06 Nov 2014, 10:19, edited 1 time in total.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Update notification (or auto-update?) in Puli

#30 Post by gjuhasz »

Hm.

There is an interesting discussion here:

http://www.murga-linux.com/puppy/viewtopic.php?t=96210

I am wondering if I introduce update notifications (or even automatic updates, both based on user settings) in Puli because Puli is prepared for this by design.

Why not?

I do not suspend uploading Puli bark 6, of course. The auto-update feature will be tested by itself :D . Soon.


Have fun!

gjuhasz
Last edited by gjuhasz on Thu 06 Nov 2014, 18:50, edited 4 times in total.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Puli 3.8.3 bark 6

#31 Post by gjuhasz »

Hi,

Let me proudly announce the new Puli 3.8.3 bark 6

Many unique and tricky features. See details on the first page.

Have fun!

Regards,

gjuhasz

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Puli bark 6

#32 Post by gjuhasz »

Let me proudly announce Puli 3.8.3 bark 6
Have fun!

Regards,

gjuhasz
Last edited by gjuhasz on Sun 21 Dec 2014, 23:48, edited 2 times in total.

Dpup
Posts: 83
Joined: Tue 05 Aug 2008, 23:26

Puli 3.8.3 bark 6

#33 Post by Dpup »

Installed bark 6 to USB flash boot, works fine, however noticed that the versions of openssl and bash are not current. Are there patch files or updates that can or should be installed?

I think the openssl update is probably the most critical if computer is going to be used for online banking or shopping.

Thanks for all the work on this release !!!

UPDATE 11/12/14 afternoon...
I looked some more, modified /profiles/common/loadsfs to install bash 4.2.53 and openssl 1.0.1j build of Oct 16. Both appear to load fine.

I thought that the update patches were already installed as part of the new bark 6 release.

Any additional comments are welcome. Very different than anything I have seen to date.

User avatar
gjuhasz
Posts: 422
Joined: Mon 29 Sep 2008, 14:28

Re: Puli 3.8.3 bark 6

#34 Post by gjuhasz »

Dpup wrote:
Installed bark 6 to USB flash boot, works fine, however noticed that the versions of openssl and bash are not current. Are there patch files or updates that can or should be installed?

I think the openssl update is probably the most critical if computer is going to be used for online banking or shopping.

Thanks for all the work on this release !!!
UPDATE 11/12/14 afternoon...
I looked some more, modified /profiles/common/loadsfs to install bash 4.2.53 and openssl 1.0.1j build of Oct 16. Both appear to load fine.

I thought that the update patches were already installed as part of the new bark 6 release.

Any additional comments are welcome. Very different than anything I have seen to date.


Dear Dpup,

Thanks for interesting in Puli.

About security patches: Puli bark 6 is still based on Ubuntu Precise Pangolin LTS, kernel 3.8.3 thus I applied those security updates Ubuntu published for Precise. (Be sure they responded to all discovered vulnerabilities in time.) So, the concerned modules in Puli are up-to-date, despite of (according to Ubuntu's patching conventions,) they manifest their "old" version number.
To prevent incompatibilities, i did not upgrade to a newer kernel version in bark 6. The existing v3.01 is patched, of course.

For details, please take a look in the posts above where I listed the patches available for bark 5 (in the patch folder at www.smokey01.com/gjuhasz/Puli_bark5_final_Aug2014).
The same set is built into bark 6 along with many new features. Don't hesitate to visit the above referenced or other testing sites to verify.

I decided to apply security patches in the future for Puli bark 6, too, until the official (Canonical) support for Precise LTS expires.

I would appreciate if you could share your experience with me.

FYI: I am writing this from a new Puli based on Trusty Tahr, kernel 3.14.20. Beta will be uploaded soon. Final version arrives by Christmas Eve.

Have fun!

Regards,

gjuhasz
Attachments
poodletest.jpg
(19.23 KiB) Downloaded 684 times
Last edited by gjuhasz on Thu 25 Dec 2014, 18:58, edited 4 times in total.

Dpup
Posts: 83
Joined: Tue 05 Aug 2008, 23:26

Bark 6

#35 Post by Dpup »

Thanks for your reply. Tested and confirmed that recent patches are installed in the previous version numbers.

Now testing using Puli Bark 6 on multiple computers, Laptop HP6833US, Acer D150 netbook, Asus 1000HD netbook, Asus 1000HE netbook etc... All on a single USB boot thumb drive, Multiple full backups, multiple secure wifi routers used at different physical locations. I boot from USB thumb drive restore from backup for the computer being used, then select the desired secure router. All working well, and most amazing is the very tiny amount of space used on the thumb drive for all those full backups, Puli is unique in this regard.

Thanks again for making and sharing such a remarkable and useful Puppy derivative.

Dpup

Post Reply