2014 – Dropbear

Mudlet 3 beta

Dec 22, 2014dropbear2 CommentsMudletdebian, MUD, mudlet

A break from wordpress, I was trying to get the beta version of mudlet 3.0 compiling. On the surface the program looks a lot like the existing v2.0 that is currently within Debian. The developers have switched from qt4 to qt5 which means a lot of dependency fun for me but I got there in the end.

As it is only a beta and not their final release, the package is located within the Debian experimental release. Once 3.0 hits a final release, I’ll switch it to sid. If you do use the current mudlet, give 3.0 a try. I’d be interested to know what you think.

…

WordPress 4.1 for Debian

Dec 20, 2014dropbear9 CommentsWordpressDebhelper, debian, WordPress

Release 4.1 of WordPress came out on Friday so after some work to fit in with the Debian standards, the Debian package 4.1-1 of WordPress will be uploaded shortly. WordPress have also updated their themes with a 14-day early theme called twentyfifteen. This is the default theme for WordPress 4.1 on-wards.

…

WordPress 4.0.1 fixes for Debian stable

Dec 3, 2014dropbear3 Commentsdebian, WordpressCross-site request forgery, Cross-site scripting, debian, Distributions, Linux, WordPress

Previously I posted a short article about the WordPress package for Debian and how that SID was getting the updated WordPress 4.0.1 which had some security fixes.

The question a lot of people were asking was: What about stable (or Wheezy). After way too much time due to other pressing issues, I have just uploaded the patched WordPress debian package for stable. The fixed version has the catchy number of 3.6.1~deb7u5. This package has all of the relevant patches that went in from WordPress 3.7.4 to 3.7.5 and there are even CVE IDs for this package (and 4.0.1 which all this stems from).

…

WordPress 4.0.1 for Debian

Nov 22, 2014dropbear4 CommentsWordpressdebian, Security, security advisory, WordPress

WordPress recently released an update that had multiple security patches for their (then) current version 4.0. This release is 4.0.1 and includes important security fixes. The Debian packages got just uploaded, if you are running the Debian packaged wordpress, you should update to 4.0.1+dfsg-1 or later. I am going to look at these patches and…

IPv6 and bridges

Oct 1, 2014dropbear3 CommentsSoftware

I’ve reported a bug on bridge-utils, but perhaps someone has already seen this and has a fix. My virtual IPv6 machines often lose connectivity from time to time. Tracking this down, it seems that the router sends Neighbor Solicitations (IPv6 ARPs basically). The physical interface of the bridge group receives it, but the vnet0 one…

How not to get Galaxy Tab into Safe Mode

Sep 7, 2014dropbear6 CommentsUncategorizedAndroid, galaxy, Safe Mode, samsung

For weeks my Galaxy Tab 10.1 has reasonably consistently gone into safe mode. Not booting into it but I’d use it fine then put it away and next time I looked at it, Safe Mode was there. It wasn’t every time, but averaged to be about every second time. So the first thing was a…

WordPress 4.0 for Debian

Sep 5, 2014dropbear11 CommentsWordpressdebian, WordPress

Yesterday WordPress released version 4.0 or “Benny” of WordPress. I have now downloaded it and packed up for Debian users. The files just hit the ftp-master a few minutes ago and will then be distributed out to the various Debian mirrors. The upgrade should go smoothly but you will probably need to upgrade the twentytwelve/twentyfourteen…

WordPress 3.9.2 for Debian

Aug 7, 2014dropbearWordpressdebian, Denial-of-service attack, security advisory, WordPress

WordPress released today a security release 3.9.2 which they fix several security issues, including a denial of service issue around XML. The corresponding Debian package 3.9.2+dfsg-1 is currently being uploaded to the Debian ftp-master server as I write this and should be available on the mirrors soon. Unfortunately at the time of writing, there are…

Linux Capabilities

Jul 31, 2014dropbear3 CommentsdebianFilesystem permissions, Linux, ping, Raw socket, Setuid

I was recently updating some code that uses fping. Initially it used exec() that was redirected to a temporary file but I changed it to use popen. While it had been a while since I’ve done this sort of thing, I do recall there was an issue with running popen on setuid binary. A later…

PHP uniqid() not always a unique ID

Jul 24, 2014dropbearJFFNMSjffnms, PHP, Programming, Simple Network Management Protocol

When is a unique id not unique? How can a file exist and not exist? All this caused a mysterious bug in JFFNMS with the reachability interface which goes to show the limitations of the PHP function uniqid().

Dropbear

Stuff, Debian, Free Software and Craig

Year: 2014