From jh at tinysofa.org Mon Aug 9 14:02:49 2004
From: jh at tinysofa.org (Jaakko Heinonen)
Date: Mon, 09 Aug 2004 17:02:49 +0300
Subject: [tinysofa-announce] [announce] tinysofa classic server 1.1 ("Rio")
Message-ID: <20040809140249.GB26932@taotao.foo-dsl.utu.fi>
===========================================================================
,,,................,
,....JugQmmmGmmmmmccccccc3cccccmmmGWg,
.JQmGGm3ccc?ccccccc?I??ccc?ccccccccccccccccZA,
.$mccccccccccccccccccccccQQQcccccccc3ZBQccccccmW0Gmxj....,
.Dccccccccccccccccc3$GQccmD!IGGGGGmQ$0=lmQccccccme:!!!::lIIOGQQ:.
..gQQccccccccccccccccYn!!IOGXuu!!::!dS:::!cdGQQQQQmQuuul!:::!u$v:lD
,$v!:ldGGQQQccccccccccmU:!:!!::uDo!:!uQI!:!uugm8GmmmmmmmGGEBQQgDc:ug+
mu:::::!:cdGBQQcccc3mDu!!::!:jZouu!u4BAuugmccccccccccccccccc?mD:jf'
4Qu::!:::uQ00GMQQWWGmmmQQguudWGGGmQQmZBmWWQccccccccccc3QQQQQWDjD
!EGQgu:jE=::!:3BQcccccccmmWmccccccccccc?mWQQQQQQQWWM8880v=:dDjz
je:ldGmWu!::!!jmQcccccccccccccccQQQQQQWMMM80II!:::!::::!::dDlz
.U:!!::lGWc!!:!4XcccccQQQQQQQWM888YI=:::!::!!:!:!::!:!:!lugAgb
.vl::!:!!3mc:!:3WWWMM8HY0II!::!::::!:!:!::!::!:!!uuuuoO+"BQaC
Qwl::!:::dA!::jD:::!::::!::!::!:!::!:!luuuaxI++"^
dmWXal:!!lmc!:4C::!:!:!::!::!!uuuueZ++"`
7` 7mu:lmn!!4n::::!uuuuxoO+"^
.+gdn:ugwuwO++"'
jGEGR`
.4HZ+
__ ___
/\ \__ __ /'___\
\ \ ,_\ /\_\ ___ __ __ ____ ___ /\ \__/ __
\ \ \/ \/\ \ /' _ `\ /\ \/\ \ /',__\ / __`\ \ \ ,__\ /'__`\
\ \ \_ \ \ \ /\ \/\ \ \ \ \_\ \ /\__, `\/\ \_\ \ \ \ \_//\ \_\.\_
\ \__\ \ \_\\ \_\ \_\ \/`____ \ \/\____/\ \____/ \ \_\ \ \__/.\_\
\/__/ \/_/ \/_/\/_/ `/___/> \ \/___/ \/___/ \/_/ \/__/\/_/
/\___/
\/__/
tinysofa classic server 1.1
("Rio")
===========================================================================
A new stable release of tinysofa classic server, version 1.1,
codenamed "Rio" is now generally available.
"Rio" overhauls the tinysofa classic server product line and features:
* The Linux 2.4.21 kernel (adapted from RedHat Enterprise Linux.)
* Native POSIX Threads Library support in the kernel and glibc.
* Exec-Shield support in the kernel to compliment the IBM stack
smashing protection patch.
* APT as an advanced package management tool, with full support for
cryptographically validated packages, user run and 3rd party
repositories, CD-ROM source support, and more. APT replaces SWUP
as the primary software updater, although SWUP is still present
in the distribution.
* The addition of the dovecot IMAP server and the HPA tftp server to
the base distribution.
* The designation of vsftpd as the only FTP server shipped with
classic server.
* The replacement of FreeSWAN with OpenSWAN, ensuring continued
availability of a commercial quality IPSEC solution.
* Working locale support.
* The reworking of all packages, with backports from tinysofa
enterprise server 2.0.
* "Thought process compatibility" with tinysofa enterprise server 2.0.
* And much more.
Please report bugs to http://www.tinysofa.org/bugs/. Please see the
tinysofa website (http://classic.tinysofa.org/) for any other queries.
The Wiki page for this release is at:
http://classic.tinysofa.org/documentation/index.cgi?OnePointOne
Users of tinysofa classic server 1.0 should follow the instructions at:
http://classic.tinysofa.org/documentation/index.cgi?UpgradeFromOnePointZero
should they wish to upgrade to 1.1.
-- Jaakko Heinonen
(jh at tinysofa dot org)
===========================================================================
From omar at tinysofa.org Mon Aug 9 14:07:08 2004
From: omar at tinysofa.org (Omar Kilani)
Date: Tue, 10 Aug 2004 00:07:08 +1000
Subject: [tinysofa-announce]
[announce] tinysofa enterprise server 2.0 ("Odin")
Message-ID: <20040809140708.GA11118@tinysofa.org>
========================================================================
,,,................,
,....JugQmmmGmmmmmccccccc3cccccmmmGWg,
.JQmGGm3ccc?ccccccc?I??ccc?ccccccccccccccccZA,
.$mccccccccccccccccccccccQQQcccccccc3ZBQccccccmW0Gmxj....,
.Dccccccccccccccccc3$GQccmD!IGGGGGmQ$0=lmQccccccme:!!!::lIIOGQQ:.
..gQQccccccccccccccccYn!!IOGXuu!!::!dS:::!cdGQQQQQmQuuul!:::!u$v:lD
,$v!:ldGGQQQccccccccccmU:!:!!::uDo!:!uQI!:!uugm8GmmmmmmmGGEBQQgDc:ug+
mu:::::!:cdGBQQcccc3mDu!!::!:jZouu!u4BAuugmccccccccccccccccc?mD:jf'
4Qu::!:::uQ00GMQQWWGmmmQQguudWGGGmQQmZBmWWQccccccccccc3QQQQQWDjD
!EGQgu:jE=::!:3BQcccccccmmWmccccccccccc?mWQQQQQQQWWM8880v=:dDjz
je:ldGmWu!::!!jmQcccccccccccccccQQQQQQWMMM80II!:::!::::!::dDlz
.U:!!::lGWc!!:!4XcccccQQQQQQQWM888YI=:::!::!!:!:!::!:!:!lugAgb
.vl::!:!!3mc:!:3WWWMM8HY0II!::!::::!:!:!::!::!:!!uuuuoO+"BQaC
Qwl::!:::dA!::jD:::!::::!::!::!:!::!:!luuuaxI++"^
dmWXal:!!lmc!:4C::!:!:!::!::!!uuuueZ++"`
7` 7mu:lmn!!4n::::!uuuuxoO+"^
.+gdn:ugwuwO++"'
jGEGR`
.4HZ+
__ ___
/\ \__ __ /'___\
\ \ ,_\ /\_\ ___ __ __ ____ ___ /\ \__/ __
\ \ \/ \/\ \ /' _ `\ /\ \/\ \ /',__\ / __`\ \ \ ,__\ /'__`\
\ \ \_ \ \ \ /\ \/\ \ \ \ \_\ \ /\__, `\/\ \_\ \ \ \ \_//\ \_\.\_
\ \__\ \ \_\\ \_\ \_\ \/`____ \ \/\____/\ \____/ \ \_\ \ \__/.\_\
\/__/ \/_/ \/_/\/_/ `/___/> \ \/___/ \/___/ \/_/ \/__/\/_/
/\___/
\/__/
tinysofa enterprise server 2.0
("Odin")
=========================================================================
tinysofa enterprise server 2.0 is a next generation operating system
which showcases the latest in open source technology in a fast, stable,
securely configured and easily manageable form.
"Odin" features:
* The Linux 2.6.8 kernel.
* SELinux support.
* APT as an advanced package management tool, with full support for
cryptographically validated packages, user run and 3rd party
repositories, CD-ROM source support, and more.
* A turn key ASP.NET solution using components from the Mono project.
* The next generation PHP 5 environment.
* High availability features such as:
* The Distributed Redundant Block Device (DRBD).
* UCARP (Common Address Redundancy Protocol) fail over daemon.
* PostgreSQL Replication support using the Slony1 engine.
* Production quality relational databases:
* PostgreSQL 7.4.3.
* MySQL 4.0.20.
* As well as the sqlite 2.8.15 library for embedded SQL support.
* The latest development tools and languages:
* GCC 3.4.1.
* Perl 5.8.5.
* Python 2.3.4.
* Ruby 1.8.2.
* The subversion 1.1.0 software configuration management system.
* Valgrind 2.1.2.
* And much more.
Please report bugs to http://www.tinysofa.org/bugs/. Please see the
tinysofa website (http://www.tinysofa.org/) for any other queries.
The Wiki page for this release is at:
http://www.tinysofa.org/documentation/index.cgi?TwoPointZero
Users of tinysofa enterprise server 2.0-pre1 through 2.0-rc1 should
issue an 'apt-get update' followed by an 'apt-get dist-upgrade' to
upgrade to the final 2.0 release.
I hope you enjoy using tinysofa, and look forward to your comments.
-- Omar Kilani
(omar at tinysofa dot org)
========================================================================
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040810/52e45470/attachment.bin
From security at tinysofa.org Mon Aug 16 11:51:24 2004
From: security at tinysofa.org (tinysofa Security Team)
Date: Mon, 16 Aug 2004 21:51:24 +1000
Subject: [tinysofa-announce] TSBA-2004-017-ES - drbd
Message-ID: <20040816115124.GA9030@tinysofa.org>
===========================================================================
_
|_ . _ _ _ (_ _
|_ | | ) \/ _) (_) | (_|
/
Bug Fix Advisory #2004-017
Package Name: drbd
Summary: Update to Latest Upstream Version
Advisory ID: TSBA-2004-017-ES
Date: 2004-08-16
Affected Products: tinysofa enterprise server 2.0
===========================================================================
Description
-----------
DRBD is a distributed replicated block device. It mirrors a
block device over the network to another machine, somewhat akin to a
networked RAID 1. It is a building block for setting up high
availability (HA) clusters.
Issues Addressed
----------------
The drbd package has been updated to version 0.7.2 to address the
following issues:
* Proper handling of backing storage devices that occasionally fail
READA (=read ahead) requests. (E.g. LVM and MD)
* DRBD now fails READA requests itself, if a resynchronisation is
running and it would need to fetch the block from its peer.
* "drbdadm adjust" had a race, which caused random errors. ( Missing
waitpid() ). Fixed now.
* Proper subtract SyncPause times from the syncer performance numbers.
* Fix to the syncer progress bar in /proc/drbd.
Recommended Action
==================
We recommend that all systems with these packages installed be upgraded.
Location
========
All tinysofa updates are available from
Automatic Updates
=================
Users of the APT tool can enjoy having updates automatically
installed using 'apt-get dist-upgrade'.
Questions?
==========
Check out our mailing lists:
Verification
============
This advisory is signed with the tinysofa security sign key.
This key is available from:
All tinysofa packages are signed with the tinysofa stable sign key.
This key is available from:
The advisory is available from the tinysofa errata database at
or directly at
Updated Packages
================
SRPMS
-----
48d04d23192f7cebe60ab427b8ae20b2 drbd-0.7.2-1ts.src.rpm
i386
----
19a59f92088146429ccc0c735b324136 drbd-0.7.2-1ts.i386.rpm
i586
----
8f78107bc2115e1db19b1f3a3c469dc0 \
kernel-module-drbd-2.6.8-1.520ts-0.7.2-1ts.i586.rpm
71bf610f3f5c558eab02ee3c93472da0 \
kernel-module-drbd-2.6.8-1.520tssmp-0.7.2-1ts.i586.rpm
i686
----
07f7f76ed9adb44095ab8913a88f2c2a \
kernel-module-drbd-2.6.8-1.520ts-0.7.2-1ts.i686.rpm
348f24bb8980881c07572fc524a9f2b6 \
kernel-module-drbd-2.6.8-1.520tssmp-0.7.2-1ts.i686.rpm
--
tinysofa Security Team
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040816/3512a371/attachment.bin
From security at tinysofa.org Mon Aug 16 11:53:13 2004
From: security at tinysofa.org (tinysofa Security Team)
Date: Mon, 16 Aug 2004 21:53:13 +1000
Subject: [tinysofa-announce] TSBA-2004-018-ES - kernel
Message-ID: <20040816115313.GB9030@tinysofa.org>
===========================================================================
_
|_ . _ _ _ (_ _
|_ | | ) \/ _) (_) | (_|
/
Bug Fix Advisory #2004-018
Package Name: kernel
Summary: Update to Latest Upstream Version
Advisory ID: TSBA-2004-018-ES
Date: 2004-08-16
Affected Products: tinysofa enterprise server 2.0
===========================================================================
Description
-----------
The kernel package contains the Linux kernel (vmlinuz), the core of
the tinysofa operating system. The kernel handles the basic
functions of the operating system: memory allocation, process
allocation, device input and output, etc.
Issues Addressed
----------------
The kernel package has been updated to version 2.6.8.1.
The updated package contains performance enhancements that are the
result of profiling the kernel during benchmarking of the distribution.
These enhancements should increase general system responsiveness, as
well as provide throughput improvements in applications such as apache.
The updated package also adds the dpt_i2o module.
Recommended Action
==================
We recommend that all systems with these packages installed be upgraded.
Location
========
All tinysofa updates are available from
Automatic Updates
=================
Users of the APT tool can enjoy having updates automatically
installed using 'apt-get dist-upgrade'.
Questions?
==========
Check out our mailing lists:
Verification
============
This advisory is signed with the tinysofa security sign key.
This key is available from:
All tinysofa packages are signed with the tinysofa stable sign key.
This key is available from:
The advisory is available from the tinysofa errata database at
or directly at
Updated Packages
================
SRPMS
-----
827df60e618603f2668625889c9cac84 kernel-2.6.8-1.520ts.src.rpm
noarch
------
4fe0c6ab4e193776d7e2dc2f50d6e917 kernel-doc-2.6.8-1.520ts.noarch.rpm
i586
----
d6deb462b162180627e562da5fb13397 kernel-2.6.8-1.520ts.i586.rpm
7ed082ed62bbf81a80019c7118b61d94 kernel-smp-2.6.8-1.520ts.i586.rpm
i686
----
ae2bc5b262b5b76103549ed5fd0cc026 kernel-2.6.8-1.520ts.i686.rpm
82f9653c0391292daa440ef55854ade1 kernel-smp-2.6.8-1.520ts.i686.rpm
--
tinysofa Security Team
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040816/38c7d008/attachment.bin
From security at tinysofa.org Mon Aug 16 11:54:21 2004
From: security at tinysofa.org (tinysofa Security Team)
Date: Mon, 16 Aug 2004 21:54:21 +1000
Subject: [tinysofa-announce] TSBA-2004-019-ES - php5
Message-ID: <20040816115421.GC9030@tinysofa.org>
===========================================================================
_
|_ . _ _ _ (_ _
|_ | | ) \/ _) (_) | (_|
/
Bug Fix Advisory #2004-019
Package Name: php5
Summary: Update to Latest Upstream Version
Advisory ID: TSBA-2004-019-ES
Date: 2004-08-16
Affected Products: tinysofa enterprise server 2.0
===========================================================================
Description
-----------
PHP is a widely used HTML-embedded scripting language.
Issues Addressed
----------------
The php5 package has been updated to version 5.0.1.
A list of changes in this update can be found at:
http://www.php.net/ChangeLog-5.php#5.0.1
Recommended Action
==================
We recommend that all systems with these packages installed be upgraded.
Location
========
All tinysofa updates are available from
Automatic Updates
=================
Users of the APT tool can enjoy having updates automatically
installed using 'apt-get upgrade'.
Questions?
==========
Check out our mailing lists:
Verification
============
This advisory is signed with the tinysofa security sign key.
This key is available from:
All tinysofa packages are signed with the tinysofa stable sign key.
This key is available from:
The advisory is available from the tinysofa errata database at
or directly at
Updated Packages
================
SRPMS
-----
2a6ca011f7769faa972325a7881e16e7 php5-5.0.1-1ts.src.rpm
i386
----
51e906593b55fc8f8a7f34774ab2d1ae php5-5.0.1-1ts.i386.rpm
737d6b519d6ee44d70f547ec5a2f8f72 php5-devel-5.0.1-1ts.i386.rpm
e84c71af6002594efdd5f298cbeaf3d1 php5-gd-5.0.1-1ts.i386.rpm
2b5485381355832f8acb27e1d576ee63 php5-imap-5.0.1-1ts.i386.rpm
fb3de56cd7211235c4a3bd79b647353f php5-ldap-5.0.1-1ts.i386.rpm
20071cf54a35ef30a5e9c38a4eed164a php5-mbstring-5.0.1-1ts.i386.rpm
05ce936e1d3e61dbb3dc7dd6087be780 php5-mssql-5.0.1-1ts.i386.rpm
1d4071e7be622d0a5d7116a99ab3ae89 php5-mysql-5.0.1-1ts.i386.rpm
f8b22d7612f5201117df1ddac6f9c577 php5-ncurses-5.0.1-1ts.i386.rpm
565950f3ee6c4f0b4a75508c83c53c77 php5-odbc-5.0.1-1ts.i386.rpm
f559a4071df581c574e53903a0d8c626 php5-openssl-5.0.1-1ts.i386.rpm
987a33c35ce4279d3e2c540328724ce6 php5-pear-5.0.1-1ts.i386.rpm
4d8961b57674de76abfa7dae1d4cbca5 php5-pgsql-5.0.1-1ts.i386.rpm
b27cb14b51442e8ba81392b8da333da0 php5-snmp-5.0.1-1ts.i386.rpm
b92a0b0bf703569a33d2d9f1f9ca8302 php5-sqlite-5.0.1-1ts.i386.rpm
d8b53133a25a2de41d916b30e45ad187 php5-xmlrpc-5.0.1-1ts.i386.rpm
--
tinysofa Security Team
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040816/b305e66b/attachment.bin
From security at tinysofa.org Mon Aug 16 15:30:50 2004
From: security at tinysofa.org (tinysofa Security Team)
Date: Tue, 17 Aug 2004 01:30:50 +1000
Subject: [tinysofa-announce] TSSA-2004-020-ES - rsync
Message-ID: <20040816153050.GA9523@tinysofa.org>
===========================================================================
_
|_ . _ _ _ (_ _
|_ | | ) \/ _) (_) | (_|
/
Security Advisory #2004-020
Package Name: rsync
Summary: Exposure of System Information
Advisory ID: TSSA-2004-020-ES
Date: 2004-08-16
Affected Products: tinysofa enterprise server 2.0
===========================================================================
Description
-----------
rsync [0] is a program for synchronizing files over a network.
A vulnerability [1] has been reported in rsync, which potentially can be
exploited by malicious users to read or write arbitrary files on a
vulnerable system.
The vulnerability is caused due to an input validation error within the
"sanitize_path()" function of the "util.c" file.
Successful exploitation requires that the rsync daemon isn't running
chrooted.
The vulnerability affects version 2.6.2 and prior.
Resolution
----------
The rsync package has been updated to address this vulnerability.
References
----------
[0] http://samba.org/rsync/
[1] http://samba.org/rsync/#security_aug04
Recommended Action
==================
We recommend that all systems with these packages installed be upgraded.
Location
========
All tinysofa updates are available from
Automatic Updates
=================
Users of the APT tool can enjoy having updates automatically
installed using 'apt-get upgrade'.
Questions?
==========
Check out our mailing lists:
Verification
============
This advisory is signed with the tinysofa security sign key.
This key is available from:
All tinysofa packages are signed with the tinysofa stable sign key.
This key is available from:
The advisory is available from the tinysofa errata database at
or directly at
Updated Packages
================
SRPMS
-----
606db14378c661b0b5ce1bbb3cd87d52 rsync-2.6.2-2ts.src.rpm
i386
----
7d8ea97c366ae496d266b168c9c172ca rsync-2.6.2-2ts.i386.rpm
--
tinysofa Security Team
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040817/0beb4463/attachment.bin