Just so you are aware... two days ago a bug was announced in Linux kernels 2.6.17 and above... that will give a local user root access. Here's info with the exploit code:
I have verified that the exploit compiles and works. I was able to get root on stock Fedora, RHEL and CentOS machines running the 2.6.18 or above kernels. Supposedly all distros running a 2.6.17 or later kernel are affected... even those running with the grsecurity patches.
I was unable to get root on an OpenVZ patched kernel but the exploit did cause a kernel panic that locked the machine I tried it on. I didn't want to crash any more machines so I didn't try any more. I've heard (but have not verified) that Linux-Vserver is affected on both the host node and inside of containers although exploits done within containers only get root of the container and are still trapped inside of it. Your milage may vary. Kernels prior to 2.6.17 are not affected. I hope vendors have fixes for this RSN... although I have heard that the current fix is not complete.
Update: The bug got fixed upstream late Sunday... and has found its way into a number of distro updates including Debian, rPath, Fedora, and PCLinuxOS. Red Hat, after the QA process, just released this morning (Tuesday). It seems that distros or kernel releases based on distro release updates will take a bit longer... CentOS and OpenVZ for example.
Update: 02/13/08 CentOS has released updated kernel packages.
I had been a non-conformist in many ways with regard to installing my own tarball of Thunderbird and Firefox instead of using the packaged RPMs Fedora already built. I mainly did this because they are considered stable by Mozilla yet one version ahead of RPMs.
Late last year I had run into problems with my system dieing for various reasons and I had suspected Firefox. I knelt down and installed the RPM leaving the tarball version in place and changing my app links to point to the correct bin. Soon to follow was Thunderbird as well.
Here are some of the faces behind Montana's different user groups.
First Jeff gave us the history of MythTV, a feature overview, and then he compared it to other DVR software packages that are available. He explained the frontend software and the backend software... and how they didn't have to be on the same machine. He also discussed the TV listing providers.
Justin showed MythTV in operation (both the fancy GUI frontend and the web-based version) and shared some of his recent recordings made using his HDHomeRun network tuner. He mainly uses his setup with broadcast HD and reviewed all of the sources of HD content available in the Bozeman area. I was surprised at the number and high quality of the broadcast channels available although it was pointed out that one needs a good antenna.
Justin gave a complete overview of the HDHomeRun device, how well it works with MythTV and other software and said that he was very happy with the device.
Justin gave a good overview of all of the related signal types and showed that broadcast HD includes a lot of information embedded within the signal. He had to wonder around the building with his laptop and the HDHomeRun device before he was able to find a good broadcast signal... as the EPS building is pretty good at blocking them. He was able to demonstrate broadcast HDTV on his laptop with VLC and it looked fantastic.
Fantastic job guys! Thanks!
Did you hear? A while back SWsoft decided to change its name to that of its partner company, Parallels. Parallels makes a commercial product very similar to VMware Server... but it seems to be most popular on the Mac. With SWsoft's Virtuozzo and their sponsoring of the OpenVZ project, is it any wonder that there would be a hybrid product that tries to compete with VMware ESX?
I haven't had a chance to watch the full video yet, and although it is mostly of a commercial nature, it advances discussion about Virtualization so I'm sharing it. They had it as a Windows Media file on their site and I've converted it to Flash so Linux users will have an easier viewing time.
Backups are something that are generally ignored until they are needed. Having good backups will save you much time and headache and maybe even money. Having had backups fail before and having to pay thousands of dollars to recover the data is an experience that I hope to never have again.
this is the result of what happens on my linux installation
when the following command is typed into a terminal
also - terminals are "xterm" "konsole" "gnome-terminal" "aterm" "eterm"
"HAL: Affirmative, Dave, I read you. Dave Bowman: Open the pod bay doors, HAL. HAL: I'm sorry Dave, I'm afraid I can't do that."
-2001 A space odyssey
the irony in this is immense.
Hardware abstraction layer or
hald is a program that automates the connection of devices to a linux computer.
here are the "pod bay" doors.
and to look for hal in ubuntu run "top" the program named
hald is the
bot/daemon that controls the hardware interface.
Virtualbox (http://www.virtualbox.org/) is a virtualzation platform. I use it to test out new Linux distributions as well as to run some limited tests of new software for customers. It can run on Linux or windows hosts and can run quite a few guest operating systems. Installation in Ubuntu is a snap. First enable the VirtualBox repo if you don't want to use the open source edition. Edit your /etc/apt/sources.list. I added this to mine for gutsy:
deb http://www.virtualbox.org/debian gutsy non-free