Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Sat 14 Dec 2019, 15:26
All times are UTC - 4
 Forum index » Advanced Topics » Puppy Projects
Puli 32/64 bit
Moderators: Flash, JohnMurga
Post new topic   Reply to topic View previous topic :: View next topic
Page 11 of 19 [275 Posts]   Goto page: Previous 1, 2, 3, ..., 9, 10, 11, 12, 13, ..., 17, 18, 19 Next
Author Message
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Sun 10 Jan 2016, 14:48    Post subject: powerapplet_tray megred with xbatalarm  

Hi,

For those cannot get powerapplet_tray working, I referenced it in xbatalarm.
Among other changes, I applied new icons and forced the right one to appear in the tray.
Changed the default alarm level to 10%.
Tested in Puli, probably works for other puppies, too.

As powerapplet_tray is a built-in feature in Puli, it is excluded from the attached pet package.
The full version is uploaded with my other post, see http://murga-linux.com/puppy/viewtopic.php?t=100492&start=12

Have fun!

Regards,

gjuhasz

Edit on Jan 28: xbat-p.pet uploaded again after some bugfix
xbat-p.pet
Description  MD5sum: 9da6003131a28e269dbd5d969c68204e
pet

 Download 
Filename  xbat-p.pet 
Filesize  2.77 KB 
Downloaded  185 Time(s) 

Last edited by gjuhasz on Thu 28 Jan 2016, 09:23; edited 4 times in total
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Fri 15 Jan 2016, 12:23    Post subject: Vulnerability in the OpenSSH  

Hi,

A new vulnerability in the OpenSSH client was detected yesterday. It affects all versions of the program, from 5.4 to 7.1. The detected bug (CVE-2016-0777) allows an attack leading to a leakage of the private key.

While patches and updates are being rolled out for affected distributions, the feature causing this security issue can be disabled manually in order to resolve the issue. This can be done by adding a line to your SSH configuration. Edit your /etc/ssh/ssh_config file as follows:

    1. Find the line that contains Host * (in the default ssh.config, this is Line 19)

    2. Just after this line, create a new one with the following content:

Code:
 UseRoaming no

    3. Save this file.

    4. Create a new folder on your boot pendrive as /patch/etc/ssh

    5. Copy your updated /etc/ssh/ssh_config file to the new folder on the pendrive.

    6. Unmount the pendrive.


Warning! An earlier ssh.config file may be accidentally restored if you edited /etc/ssh/ssh.config some time ago then created a backup file. If you have never touched /etc/ssh.config, then please ignore this warning note.

Note that servers could be also potentially affected in case key-based auth is used to connect to other servers by SSH. See https://access.redhat.com/articles/2123781



This patch / the fixed OpenSSH package will be included in the next Puli expected in Feb 2016.

Have fun!

Regards,

gjuhasz
Back to top
View user's profile Send private message 
Sylvander

Joined: 15 Dec 2008
Posts: 4422
Location: West Lothian, Scotland, UK

PostPosted: Sat 16 Jan 2016, 12:17    Post subject:  

Completed steps 1 to 6 in the post immediately above. Very Happy

Any way to test that it's working?
Or is this a silly question?
Back to top
View user's profile Send private message 
greengeek


Joined: 20 Jul 2010
Posts: 5624
Location: Republic of Novo Zelande

PostPosted: Sat 16 Jan 2016, 14:48    Post subject: Re: Vulnerability in the OpenSSH  

gjuhasz wrote:
Find the line that contains Host * (in the default ssh.config, this is Line 19)
My ssh_config file looks like this:
Code:
   ForwardAgent yes
   ForwardX11 yes
   
with no other contents.

There is also an sshd_config file in the same directory. Am i exposed to this bug? Why don't I have a line 19?

- I am not using Puli I'm on a Slacko 5.6 derivative but thought you might have some insight to offer.
cheers!
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Mon 18 Jan 2016, 14:28    Post subject: OpenSSH  

As it is written in the bug description, this vulnerability is related to a non-public feature of the OpenSSH client. Shocked

So, there there should be some lines
Code:
Host *
UseRoaming no
as a mitigation in the ssh.config file regardless of the other content. (I mentioned Line 19 because I referenced the default ssh.config file of Puli 6.0.4.)

Analysis of the fix is available at http://www.openwall.com/lists/oss-security/2016/01/14/7 ... nice, isn't it?
More details could be answered by only those had been interested in putting this "feature" into OpenSSH... Be sure, I was not among the requestors. Maybe Mr. E.S. knows some of them. Smile


Have fun!

Regards,

gjuhasz
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Thu 21 Jan 2016, 13:20    Post subject: Puli defends Linux Kernel Vulnerability (CVE-2016-0728)  

Dear Puli users,

Just FYI...

the newly discovered Linux kernel vulnerability (CVE-2016-0728) is unable to impact (any version of) Puli operated either in the Crazy or the Lazy security profiles.

Very Happy

Have fun!

Regards,

gjuhasz
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Thu 28 Jan 2016, 09:13    Post subject: Re: powerapplet_tray merged with xbatalarm  

gjuhasz wrote:
For those cannot get powerapplet_tray working, I referenced it in xbatalarm.
The full version is uploaded with my other post, see http://murga-linux.com/puppy/viewtopic.php?t=100492&start=12


Hi,

There are updates for xbatalarm available (bugfixes, new features). See the referenced forum thread for details. Package updated at http://murga-linux.com/puppy/viewtopic.php?t=96964&start=154, too

Have fun!

Regards,

gjuhasz
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Fri 11 Mar 2016, 16:51    Post subject: Netsurf 3.4
Subject description: Compiled for Puli and other 32-bit puplets
 

I compiled netsurf 3.4

Download link:

http://smokey01.com/gjuhasz/packages/netsurf-3.4.pet

Runs fine in Puli. Probably works with most of 32-bit puplets, too.


Have fun!

Regards,

gjuhasz
Netsurf--3.4.jpg
 Description   
 Filesize   78.93 KB
 Viewed   348 Time(s)

Netsurf--3.4.jpg

Back to top
View user's profile Send private message 
Sylvander

Joined: 15 Dec 2008
Posts: 4422
Location: West Lothian, Scotland, UK

PostPosted: Sat 12 Mar 2016, 14:09    Post subject:  

PROBLEM
1. Used a 2nd Puppy to copy the Netsurf pet file into the Puli Packages folder, and added a "netsurf" entry in the .../profiles/Common/smartload file.
Then rebooted to Puli.

2. During the loadup...
I could see that netsurf was being loaded ok.
But then...

3. A warning was given in red that additional packages were failing to load.

4. Once into Puli there was no sign of Netsurf being available. Sad
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Sat 12 Mar 2016, 16:44    Post subject: Netsurf
Subject description: solved
 

Sylvander wrote:
PROBLEM
1. Used a 2nd Puppy to copy the Netsurf pet file into the Puli Packages folder, and added a "netsurf" entry in the .../profiles/Common/smartload file.
Then rebooted to Puli.

2. During the loadup...
I could see that netsurf was being loaded ok.
But then...

3. A warning was given in red that additional packages were failing to load.

4. Once into Puli there was no sign of Netsurf being available. Sad


Dear Sylvander,

If you "conventionally" install my netsurf-3.4.pet (by clicking the filename), it works.

However, you are right, smartloading the same netsurf-3.4.pet file fails.

So, I created another pet file in a different way then uploaded it to my storage.

http://smokey01.com/gjuhasz/packages/netsurf-3.4.pet

This version is OK for smartload, too. Tested in Puli.

Thanks for the notification and sorry for the inconvenience.

Have fun!

Regards,

gjuhasz
Back to top
View user's profile Send private message 
Sylvander

Joined: 15 Dec 2008
Posts: 4422
Location: West Lothian, Scotland, UK

PostPosted: Sat 12 Mar 2016, 20:40    Post subject:  

OK...
The new pet file works OK. Very Happy
Back to top
View user's profile Send private message 
roadster3043

Joined: 19 Oct 2005
Posts: 7

PostPosted: Thu 31 Mar 2016, 23:14    Post subject: Puli Smartload  

Hi.

I've been testing Puli 6.0.4, but can't seem to load anything that I've placed in the smartload file and the packages directory.

Sometimes at boot it says omit even though I pressed a key to load it.

What could I be doing wrong?


Thanks.

_________________
--
Take care.

Juan
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Fri 01 Apr 2016, 09:07    Post subject: Re: Puli Smartload  

roadster3043 wrote:
Hi.

I've been testing Puli 6.0.4, but can't seem to load anything that I've placed in the smartload file and the packages directory.

Sometimes at boot it says omit even though I pressed a key to load it.

What could I be doing wrong?


Thanks.


Dear roadster3043,

Please check whether you hit the key in time and this key correctly identifies the package(s) you want to smartload.
    1. Proper timing - To select a package set to be smartloaded, you need to hit a key within a specific timeslot in the boot process. It begins as soon as the purple "copying to ram" text appears and ends 5 seconds after Puli asks you for the selection.

    2. Unique reference - For example, if you hit key "a", it is expected to have a smartload file named "smartloada" in the /profiles/Common folder of your boot pendrive. If you hit "x" while you don't have "smartloadx" there or if you hit the spacebar, then nothing will be smartloaded. If you don't hit any key or if you hit Enter, Puli seeks the default "smartload" file there.

    In the case you use a laptop without a separate numeric keypad, some character keys can be interpreted as numbers at boot time. Also, if you have non-US keyboard, some keys are placed differently. (The default numlock and language settings can be controlled by the syslinux.cfg and the puli.cfg files).

    The selected smartload file should list the requested packages, referencing them by the first few characters of their filename. Of course, if this type of reference is ambivalent, i.e., points to multiple packages, then only one of them will be smartloaded.

    3. Existing packages - The packages, with file extensions .pet and/or .sfs and/or one (chrome) .deb, should be placed in the /packages folder of the boot pendrive. For smartload, I recommend to use the packages tested in Puli.
    Note that none of the smartloaded packages appear among the installed ones in the Puppy Package Manager.

    FYI: You may include references to all your favorite packages in all your smartload files (for example, I do this) but in this case those need to be skipped in a particular smartload file should begin with "-" minus sign.


Have fun!

Regards,

gjuhasz
Back to top
View user's profile Send private message 
Sylvander

Joined: 15 Dec 2008
Posts: 4422
Location: West Lothian, Scotland, UK

PostPosted: Mon 18 Apr 2016, 04:44    Post subject:  

Just wondering...

Would Puli counteract Ransomware?
Or does Ransomware only act against servers?
Back to top
View user's profile Send private message 
gjuhasz


Joined: 29 Sep 2008
Posts: 400

PostPosted: Mon 18 Apr 2016, 18:33    Post subject: Ransomware vs Puli  

Sylvander wrote:
Just wondering...
Would Puli counteract Ransomware?
Or does Ransomware only act against servers?


Dear Sylvander,

Ransomware can encrypt your files even in Linux environment. It can be activated if you open an attachment of an email. However, Puli can block ransomware if you are careful enough and avoid common traps:

    First of all, do not use the Puli pendrive for other purposes, e.g., do not plug it into an infected machine - don't use it as temporary storage of Windows files.

    Second, after you booted Puli, unplug the pendrive as soon as Puli recommends this (i.e., before the network connection is established). It is an advantage if you boot Puli from a USB device with write protection switch - a simple SD card is good for this purpose.

    Third, use the safest (Lazy) security profile of Puli. While you are browsing using Chrome in the Lazy mode, the /bin folder is hidden thus the malicious code, such as ransomware, gets no resources to auto-install then infect. Note that this defense is active only while you are browsing in Lazy mode - so using a web based mail service is strongly recommended.
    (Actually, the above is true for Chrome browser only. I write this post in the next Puli version that allows Lazy mode also for Slimjet and Iron - I am thinking on Firefox yet.)

Have fun!

Regards,

gjuhasz
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 11 of 19 [275 Posts]   Goto page: Previous 1, 2, 3, ..., 9, 10, 11, 12, 13, ..., 17, 18, 19 Next
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Advanced Topics » Puppy Projects
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.1505s ][ Queries: 12 (0.0414s) ][ GZIP on ]