Postfix MTA updated to fix security vulnerabilities such as incorrectly checks the ownership of a mailbox. In some configurations, this allows for appending data to arbitrary files as root. This update has been rated as having moderate security impact.
All users of postfix should upgrade to these updated packages.
How do I patch Postfix under Debian / Ubuntu Linux?
First, update the internal database, enter:
# apt-get update
Install corrected Postfix package, enter:
# apt-get upgrade
How do I patch Postfix under RHEL / CentOS Linux?
Type the following command under RHEL / CentOS 5.x: Sysadmin because even developers need heroes!!!
# yum update
Type the following command under RHEL <= 4.x:
# up2date -u
Puppet is an open source configuration management tool. It is written in Ruby. This software is considered as an alternative to Cfengine configuration management system. I’ve used Cfengine for:
=> Pushing configurations
=> Applying patches
=> IT management
=> Software management
=> Configuration management etc
Both project reduces complexity and non-portability of shell scripting for Unix / Linux configuration management. From the Linux.com article:
The Puppet project allows you to issue system administration commands to one or more machines, and will smooth over the differences between distributions for you. For example, if you want to install MySQL, that action should be your primary aim, and you shouldn’t have to worry about if the machine is running Maemo, Ubuntu, or Fedora.
=> Puppet can ease system administration tasks across the network
Most Linux distro can not display multilingual text on the console / shell prompt by default. There is a small hack which allows you to display other languages such as Hindi, Chinese, Korean, Japanese etc text on the prompt.
You need to use the bterm application, which is a terminal emulator that displays to a Linux frame buffer. It is able to display Unicode text on the console.
First, enable framebuffer by editing grub.conf file, enter:
# vi /etc/grub.conf
# vi /boot/grub/menu.lst
Find kernel line and append “vga=0x317” parameter:
kernel /vmlinuz-2.6.18-92.1.1.el5 ro root=LABEL=/ console=tty0 console=ttyS1,19200n8 vga=0x317
Save and close the file. Next, you need to install bterm – a unicode capable terminal program for the Linux frame buffer. Type the following command to install it under Fedora / RHEL / Cent OS Linux, enter:
# yum install bogl-bterm
If you are using Debian / Ubuntu Linux, enter:
$ sudo apt-get install bogl-bterm
Now reboot your Linux desktop / workstation so that kernel can create /dev/fb0. To use multilingual text on the console, type the command bterm, enter:
There was random number generator vulnerability in Debian OpenSSL package and similar packages in derived distributions such as Ubuntu / others. Many of our regular readers would like to know:
Can bug present in the Debian OpenSSL packages affect Red Hat / FreeBSD / CentOS Linux workstation / server users?
Short answer, yes.
All keys generated using Debian OpenSSL package must be replaced on other system including FreeBSD / CentOS / RHEL etc as all keys considered as compromized. OpenSSL, OpenSSH and OpenVPN are badly effected. For example, if you use OpenSSH key to get into other Linux / UNIX servers and if key-pair is generated with a vulnerable OpenSSL library, you are at the risk as the key can be reproduced easily.
Bottom, line you need to update keys on other boxes too.
From the computerworld:
Dell Inc. will charge customers up to $50 for factory-installed Windows XP on some PCs after Wednesday, according to the company’s Web site. Vista Business and Vista Ultimate are the only generally-available editions that allow downgrades, and they can be downgraded only to Windows XP Professional. Under Microsoft’s licensing terms, the less-expensive XP Home cannot be installed as a downgrade.
This is really funny, Microsoft spent over 6-8 years developing MS-Vista and now users are willing to pay not to use it. This clearly indicate that end users only pay when you have a better product, which is free from DRM crap, faster and less buggy as compare to Vista. As usual, I suggest you get Dell with Ubuntu Linux loaded for 100% peace of mind.
Oracle Linux now joined Fedora, Ubuntu, and Solaris for giving out free CDs. You can now request your FREE Oracle Unbreakable Linux 2-disc (DVD) Kit from official oracle site.
=> Visit oracle site to grab free CD kit [ direct link ].
An interesting interview with Canonical chief executive Mark Shuttleworth. He talks about choosing Ubuntu name and in a future undominated by Windows, how Ubuntu hopes to be the provider of a service ecosystem for free software. From the page:
Going to space and seeing the Earth from a distance makes it very clear just how interdependent we are. So I wanted to do something that was really global; free software is a phenomenon that is truly global.
=> Linux is a platform for people, not just specialists