[PATCH v4.14 1/1]: nvmem: imx-ocotp: account for addressing gaps to ensure consistent read/write on i.MX SoCs

specific i.MX model being addressed. Signed-off-by: Andrea Barisani --- drivers/nvmem/imx-ocotp.c | 49 ++-- 1 file changed, 41 insertions(+), 8 deletions(-) --- linux-4.14.89/drivers/nvmem/imx-ocotp.c.orig2018-12-18 10:30:49.363322853 +0100 +++ linux-4.14.89

[PATCH v4.19 1/1]: nvmem: imx-ocotp: account for addressing gaps to ensure consistent read/write on i.MX SoCs

specific i.MX model being addressed. Signed-off-by: Andrea Barisani --- drivers/nvmem/imx-ocotp.c | 49 ++-- 1 file changed, 41 insertions(+), 8 deletions(-) diff -up linux-4.19.9/drivers/nvmem/imx-ocotp.c.orig linux-4.19.9/drivers/nvmem/imx-ocotp.c --- linux-4.19.9

Re: [U-Boot] CVE-2018-18439, CVE-2018-18440 - U-Boot verified boot bypass vulnerabilities

On Wed, Nov 14, 2018 at 04:13:00PM +0100, Simon Goldschmidt wrote: > On 14.11.2018 15:45, Andrea Barisani wrote: > > On Wed, Nov 14, 2018 at 01:03:12PM +0100, Simon Goldschmidt wrote: > > > On 14.11.2018 12:52, Andrea Barisani wrote: > > > > On Tue, Nov 13, 2

Re: [U-Boot] CVE-2018-18439, CVE-2018-18440 - U-Boot verified boot bypass vulnerabilities

On Wed, Nov 14, 2018 at 01:03:12PM +0100, Simon Goldschmidt wrote: > On 14.11.2018 12:52, Andrea Barisani wrote: > > On Tue, Nov 13, 2018 at 09:57:23PM +0100, Simon Goldschmidt wrote: > > > On 06.11.2018 15:51, Andrea Barisani wrote: > > > > [..] > > > > T

Re: [U-Boot] CVE-2018-18439, CVE-2018-18440 - U-Boot verified boot bypass vulnerabilities

On Tue, Nov 13, 2018 at 09:57:23PM +0100, Simon Goldschmidt wrote: > On 06.11.2018 15:51, Andrea Barisani wrote: > > [..] > > The issue can be exploited by several means: > > > >- An excessively large crafted boot image file is parsed by the > > `tftp_

Re: [U-Boot] CVE-2018-18439, CVE-2018-18440 - U-Boot verified boot bypass vulnerabilities

On Fri, Nov 09, 2018 at 07:11:36AM +0100, Simon Goldschmidt wrote: > On Fri, Nov 9, 2018 at 1:37 AM Fabio Estevam wrote: > > > > Hi Andrea, > > > > On Tue, Nov 6, 2018 at 12:57 PM Andrea Barisani > > wrote: > > > > > # load large file > > &g

[U-Boot] CVE-2018-18439, CVE-2018-18440 - U-Boot verified boot bypass vulnerabilities

IDs requested to MITRE and assigned. 2018-11-02: advisory release. References -- [1] https://www.denx.de/wiki/U-Boot [2] https://lists.denx.de/pipermail/u-boot/2018-June/330487.html Permalink - https://github.com/inversepath/usbarmory/blob/master/software/secure_boot/Security_Ad

IKEv1 cipher suite configuration mismatch in Siemens SIMATIC CP 343-1 Advanced

/cs/ww/en/view/109744041 -- -- Andrea Barisani Inverse Path Srl Chief Security Engineer -> < http://www.inversepath.com 0x864C9B9E 0A76 074A 02C

Web vulnerabilities in Siemens S7-300/S7-400/CP343-1/CP443-1

in collaboration with AIRBUS ICT Industrial Security team --------- -- Andrea Barisani Inverse Path Srl Chief Security Engineer -> < http://www.inve

[oCERT-2015-009] VLC arbitrary pointer dereference

ory release References: https://git.videolan.org/?p=vlc/vlc-2.2.git;a=commitdiff;h=ce91452460a75d7424b165c4dc8db98114c3cbd9;hp=9e12195d3e4316278af1fa4bcb6a705ff27456fd Permalink: http://www.ocert.org/advisories/ocert-2015-009.html -- Andrea Barisani |Founder & Project Coor

[oCERT-2015-008] FreeRADIUS insufficent CRL application

eeradius.org/security.html Permalink: http://www.ocert.org/advisories/ocert-2015-008.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incident Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E98

[oCERT-2015-006] dcraw input sanitization errors

vendors 2015-05-11: advisory release References: https://github.com/LibRaw/LibRaw/commit/4606c28f494a750892c5c1ac7903e62dd1c6fdb5 https://github.com/rawstudio/rawstudio/commit/983bda1f0fa5fa86884381208274198a620f006e Permalink: http://www.ocert.org/advisories/ocert-2015-006.html -- Andrea Barisa

[oCERT-2015-003] MySQL SSL/TLS downgrade

ion http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-3.html https://mariadb.atlassian.net/browse/MDEV-7937 https://bugs.launchpad.net/percona-server/+bug/1447527 Permalink: http://www.ocert.org/advisories/ocert-2015-003.html -- Andrea Barisani |Founder & Projec

[oCERT-2015-002] e2fsprogs input sanitization errors

E-2015-0247 Timeline: 2015-01-19: vulnerability report received 2015-01-29: contacted affected vendors, assigned CVEs 2015-02-05: advisory release References: http://git.kernel.org/cgit/fs/ext2/e2fsprogs.git/commit/?id=f66e6ce4 Permalink: http://www.ocert.org/advisories/ocert-2015-002.html --

[oCERT-2015-001] JasPer input sanitization errors

-by-one heap buffer overflow), CVE-2014-8158 (stack overflow) Timeline: 2015-01-06: vulnerability report received 2015-01-06: contacted affected vendors, assigned CVEs 2015-01-21: advisory release References: http://www.ece.uvic.ca/~frodo/jasper -- Andrea Barisani |Foun

[oCERT-2014-011] UnZip input sanitization errors

-03: second patch provided by maintainer 2014-12-04: reporter confirms patch 2014-12-10: contacted affected vendors 2014-12-12: assigned CVEs 2014-12-22: advisory release References: http://www.info-zip.org/UnZip.html Permalink: http://www.ocert.org/advisories/ocert-2014-011.html -- Andrea Baris

[oCERT-2014-010] SoX input sanitization errors

patch provided by maintainer 2014-12-14: reporter confirms patch 2014-12-15: contacted affected vendors 2014-12-18: assigned CVE 2014-12-22: advisory release References: http://sox.sourceforge.net Permalink: http://www.ocert.org/advisories/ocert-2014-010.html -- Andrea Barisani |F

[oCERT-2014-012] JasPer input sanitization errors

157 https://bugzilla.redhat.com/show_bug.cgi?id=1173162 Permalink: http://www.ocert.org/advisories/ocert-2014-012.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incident Response Team http://www.oc

[oCERT-2014-009] JasPer input sanitization errors

029 Permalink: http://www.ocert.org/advisories/ocert-2014-009.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incident Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 86

[oCERT-2014-007] libvncserver multiple issues

mit/05a9bd41a8ec0a9d580a8f420f41718bdd235446 (3) https://github.com/newsoft/libvncserver/commit/06ccdf016154fde8eccb5355613ba04c59127b2e (3) https://github.com/newsoft/libvncserver/commit/f528072216dec01cee7ca35d94e171a3b909e677 Permalink: http://www.ocert.org/advisories/ocert-2014-007.html -- Andrea Baris

[oCERT-2014-006] Ganeti insecure archive permission

12 2014-08-08: contacted affected vendors 2014-08-12: advisory release References: http://git.ganeti.org/?p=ganeti.git;a=commit;h=a89f62e2db9ccf715d64d1a6322474b54d2d9ae0 Permalink: http://www.ocert.org/advisories/ocert-2014-006.html -- Andrea Barisani |Founder & Project Coordinator

[oCERT-2014-004] Ansible input sanitization errors

issues as closed 2014-07-21: advisory release References: http://www.ansible.com Permalink: http://www.ocert.org/advisories/ocert-2014-004.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incident Response Team

[oCERT-2014-003] LibYAML input sanitization errors

3.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incident Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E "Pluralitas non est ponenda sine necessitate"

[oCERT-2014-002] Xalan-Java insufficient secure processing

/ocert-2014-002.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incident Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E "Pluralitas non est ponenda sine necessitate"

[oCERT-2014-001] MantisBT input sanitization errors

ew.php?id=16880 http://github.com/mantisbt/mantisbt/commit/00b4c17088fa56594d85fe46b6c6057bb3421102 http://github.com/mantisbt/mantisbt/commit/7efe0175f0853e18ebfacedfd2374c4179028b3f Permalink: http://www.ocert.org/advisories/ocert-2014-001.html -- Andrea Barisani |Founder

[oCERT-2012-001] multiple implementations denial-of-service via MurmurHash algorithm collision

s 2012-11-09: Ruby 1.9.3-p327 released 2012-11-23: advisory release References: https://www.131002.net/siphash Permalink: http://www.ocert.org/advisories/ocert-2012-001.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incide

[jira] [Created] (QPID-4316) qpid aborts with FrameDecoder exception "Assertion `b.available() == 0' failed"

Andrea Barisani created QPID-4316: - Summary: qpid aborts with FrameDecoder exception "Assertion `b.available() == 0' failed" Key: QPID-4316 URL: https://issues.apache.org/jira/b

[oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision

2011.pdf http://www.cs.rice.edu/~scrosby/hash/CrosbyWallach_UsenixSec2003.pdf http://svn.php.net/viewvc?view=revision&revision=321003 (unstable, not final) http://svn.php.net/viewvc?view=revision&revision=321040 (unstable, not final) https://gist.github.com/52bbc6b9cc19ce330829 Permalink: http://www.ocert.or

[oCERT-2011-001] Chyrp input sanitization errors

www.ocert.org/advisories/ocert-2011-001.html -- Andrea Barisani |Founder & Project Coordinator oCERT | OSS Computer Security Incident Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E "Plur

[oCERT-2010-004] FFmpeg/libavcodec arbitrary offset dereference

ed to ffmpeg repository 2010-09-28: patch automatically pulled to mplayer repository from ffmpeg one 2010-09-28: oCERT advisory published References: http://git.ffmpeg.org/?p=ffmpeg;a=commitdiff;h=16c592155f117ccd7b86006c45aacc692a81c23b Permalink: http://www.ocert.org/advisories/ocert-2010-004.html

[oCERT-2010-003] Free Simple CMS path sanitization errors

010-09-17: oCERT advisory published References: http://packetstormsecurity.org/1008-exploits/freesimplesoftware-rfi.txt http://secunia.com/advisories/41001 http://osvdb.org/67329 Permalink: http://www.ocert.org/advisories/ocert-2010-003.html -- Andrea Barisani |Founder & Project Coordinator

[oCERT-2010-002] Joomla input sanitization errors (XSS)

rt.org/advisories/ocert-2010-002.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E "Plu

[jruby-dev] [jira] Created: (JRUBY-4526) JVM crashes with problematic frame in libjffi-0.6

Versions: JRuby 1.4 Environment: Linux 2.6.18-164.10.1.el5 #1 SMP x86_64 Reporter: Andrea Barisani Attachments: hs_err_pid19542.log Our application constantly crashes (load doesn't seem relevant) while parsing html using nokogiri. The affected function seems

[jira] Created: (QPID-2354) ruby client exchange declaration doesn't allow 'type' argument

Issue Type: Bug Components: Ruby Client Affects Versions: 0.5 Environment: Ubuntu/Qpid-0.5 Reporter: Andrea Barisani Due to the way function arguments are treated/overrided in the driver it is currently impossible to issue the following command: session.exchange_declare(name, :

qpid ruby client issues

oesn't look right, it seems to me that whatever issue triggered this fixed it can be done "properly". Anyway thanks a *lot* to the author of this plugins as it's the only piece of ruby software which allows us to use AMQP 0-10 :). Cheers! -- Andrea Barisani

[Suspected Spam][oCERT-2009-019] Ganeti path sanitization errors

7: ganeti 1.2.9, 2.0.5, 2.1.0~rc2 released 2009-12-17: advisory published References: http://groups.google.com/group/ganeti/browse_thread/thread/cbce23d89103a8d2 Permalink: http://www.ocert.org/advisories/ocert-2009-019.html -- Andrea Barisani |Founder & Project Coordina

[oCERT-2009-017] PHP multiple issues

rt.org/advisories/ocert-2009-017.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E "Pluralitas non est ponenda sine necessitate"

[oCERT-2009-015] KDE multiple issues

sion=938003 Permalink: http://www.ocert.org/advisories/ocert-2009-015.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E9

[oCERT-2009-014] Android denial-of-service issues

;a=commit;h=46e23fe762d2143d60589ab6d39c4b47c2c754d1 Dalvik API DoS: http://android.git.kernel.org/?p=platform/frameworks/base.git;a=commit;h=cf4550c3198d6b3d92cdc52707fe70d7cc0caa9f Permalink: http://www.ocert.org/advisories/ocert-2009-014.html -- Andrea Barisani |Founder & Proj

[oCERT-2009-013] yTNEF/Evolution TNEF attachment decoder input sanitization errors

: http://www.akitasecurity.nl/advisory.php?id=AK20090601 Permalink: http://www.ocert.org/advisories/ocert-2009-013.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team http://www.ocert.org 0x864C9B9E 0A76

[oCERT-2009-011] Android improper camera and audio permission verification

/?p=platform/frameworks/base.git;a=commit;h=4d8adefd35efdea849611b8b02d61f9517e47760 http://android.git.kernel.org/?p=platform/packages/apps/Camera.git;a=commit;h=e655d54160e5a56d4909f2459eeae9012e9f187f Permalink: http://www.ocert.org/advisories/ocert-2009-011.html -- Andrea Barisani

[oCERT-2009-010] mimeTeX and mathTeX buffer overflows and command injection

issues are available 2009-07-13: advisory release References: http://scary.beasts.org/security/CESA-2009-009.html http://groups.google.com/group/comp.text.tex/browse_thread/thread/5d56d3d744351578 Permalink: http://www.ocert.org/advisories/ocert-2009-010.html -- Andrea Barisani

[oCERT-2009-012] libtiff tools integer overflows

7-04: reporter acknowledges patch 2009-07-13: advisory release References: https://bugzilla.redhat.com/attachment.cgi?id=35132 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2347 Permalink: http://www.ocert.org/advisories/ocert-2009-012.html -- Andrea Barisani |Founder & P

[oCERT-2009-008] Dillo integer overflow

t-2009-008.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E "Pluralitas non e

[oCERT-2009-007] FCKeditor input sanitization errors

rrentFolder vulnerability 2009-06-24: security maintainer provides patch 2009-06-29: assigned CVE 2009-07-03: preliminary advisory release with mitigation instructions due to wide exposure of the issue Permalink: http://www.ocert.org/advisories/ocert-2009-007.html -- Andrea Barisan

[oCERT-2009-009] CamlImages integer overflows

nk: http://www.ocert.org/advisories/ocert-2009-009.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 57

[oCERT-2009-004] AjaxTerm session id collision

T asks reporter to disclose the issue 2009-04-29: reporter agrees to disclosure 2009-05-11: advisory release References: Permalink: http://www.ocert.org/advisories/ocert-2009-004.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Compu

[jruby-dev] [jira] Created: (JRUBY-3571) ensures within threads are not properly executed when killing the thread

Affects Versions: JRuby 1.2, JRuby 1.1.6 Environment: Tested on Ubuntu/Linux on x86 32-bit as well as Mac OS X Leopard 32-bit ruby 1.8.6 (2007-09-24 patchlevel 111) [i486-linux] jruby 1.2.0 (ruby 1.8.6 patchlevel 287) (2009-03-16 rev 9419) [i386-java] Reporter: Andrea

[oCERT-2009-003] LittleCMS integer errors

cert-2009-003.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E "Pluralitas non est ponenda sine necessitate"

Bug#498243: [oss-security] xine-lib and ocert-2008-008

endor didn't provide enough clear evidence of a fix. > > My brain is too fried to process the followup comment that listed > individual patches. > > - Steve > -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergenc

Bug#498243: [oss-security] xine-lib and ocert-2008-008

endor didn't provide enough clear evidence of a fix. > > My brain is too fried to process the followup comment that listed > individual patches. > > - Steve > -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergenc

[oCERT-2008-013] MPlayer Real demuxer heap overflow

tes that the patch is incomplete and sends new PoC 2008-09-15: maintainer provides updated patch 2008-09-16: reporter confirms patch 2008-09-29: advisory release References: Links: http://www.mplayerhq.hu Permalink: http://www.ocert.org/advisories/ocert-2008-013.html -- Andrea Baris

[oCERT-2008-009] libxslt heap overflow

patch fixes finalized per reporter feedback 2008-07-18: contacted affected vendors 2008-07-31: advisory release References: http://www.scary.beasts.org/security/CESA-2008-003.html Links: http://xmlsoft.org/XSLT Permalink: http://www.ocert.org/advisories/ocert-2008-009.html -- Andrea Ba

[oCERT-2008-007] libpoppler uninitialized pointer

ttp://poppler.freedesktop.org Permalink: http://www.ocert.org/advisories/ocert-2008-007.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team <[EMAIL PROTECTED]> http://www.ocert.org 0x864C9B9E 0

[oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing

http://www.ece.ucdavis.edu/ucd-snmp http://ecos.sourceware.org Permalink: http://www.ocert.org/advisories/ocert-2008-006.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team <[EMAIL PROTECTED]>

[oCERT-2008-004] multiple speex implementations insufficient boundary checks

e/sweep/ http://xiph.org http://www.videolan.org/vlc http://xinehq.de Permalink: http://www.ocert.org/advisories/ocert-2008-004.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team <[EMAIL PROTECTED]>

Re: oCERT

On Mon, Apr 14, 2008 at 10:01:18AM +0200, Holger Levsen wrote: > Hi, > > [removed some of the cc:s] > > On Sunday 13 April 2008 02:23, Andrea Barisani wrote: > > We already agreed that CC-BY-NC is not open enough, that's why we will > > consider CC-BY. > > &

[oCERT-2008-003] libpng zero-length chunks incorrect handling

: advisory release References: http://libpng.sourceforge.net/Advisory-1.2.26.txt Links: http://www.libpng.org/pub/png/libpng.html Permalink: http://www.ocert.org/advisories/ocert-2008-003.html -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Comp

project announcement - oCERT - Open Source CERT

appreciated. Cheers! The oCERT Team <[EMAIL PROTECTED]> -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team <[EMAIL PROTECTED]> http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7

Re: oCERT

-Evan > We already agreed that CC-BY-NC is not open enough, that's why we will consider CC-BY. I believe that license address your concerns, right? Cheers! -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team &l

Re: oCERT

On Sat, Apr 12, 2008 at 08:13:16PM +0200, Yves-Alexis Perez wrote: > On sam, 2008-04-12 at 19:16 +0200, Andrea Barisani wrote: > > Ok, CC-BY (or CC-A) would allow this. > > > > Yves, would this be ok with you? > > (my name is Yves-Alexis) > Apologizes. > I&#x

Re: oCERT

n-Noncommercial-No Derivative Works 3.0 License." > > I guess it's worth asking. > > @ocert team: could you elaborate on this? Are the submitted advisories > covered by the CC-A-NC-ND licence? > > Thanks, > -- > Yves-Alexis Good question, it shouldn't becau

[Full-disclosure] project announcement - oCERT - Open Source CERT

appreciated. Cheers! The oCERT Team <[EMAIL PROTECTED]> -- Andrea Barisani |Founder & Project Coordinator oCERT | Open Source Computer Emergency Response Team <[EMAIL PROTECTED]> http://www.ocert.org 0x864C9B9E 0A76 074A 02CD E989 CE7

[gentoo-dev] retiring + looking maintainers for sendmail, tenshi, scapy, ftester

Hi folks, I'm retiring. I was maintaining the following packages: app-admin/tenshi (note: I'm upstream as well) mail-mta/sendmail net-analyzer/scapy net-analyzer/ftester (note: I'm upstream as well) So those needs new maintainership. Cheers -- Andrea Barisani &l

Re: Snort 2.8.0.1 and No TCP Alerts.

http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw > > to learn more. > > -- Andrea Barisani Inverse Path Ltd Chief Security Engineer -> < <[EMAIL PROTECTED]

[gentoo-security] Re: [gentoo-infrastructure] news update about the compromise

On Mon, Aug 20, 2007 at 08:22:02PM +, Andrea Barisani wrote: Folks I had not a single reply about this. I cannot avoid to stress that the more we wait the worse it gets image wise. Robbat2 can you provide a status update? Bye and Thanks to all > > Hi folks, > > robbat2

[gentoo-security] news update about the compromise

review? Robbat2, can you confirm my analysis? Thanks to all -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V ( ) PGP-Key 0x864C9B9E http://d

Re: [gentoo-dev] Gentoo list server dropping mail

Today's lesson in political correctness: "Go asphyxiate on a phallus" > -- > gentoo-dev@gentoo.org mailing list > -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V

Re: [gentoo-dev] Project Sunrise thread -- a try of clarification

even if it's not, much caution is advised security-wise in who you trust and what you are going to put in the tree (and most important what the perception of your authority/reliability will be user-wise). Cheers -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo

Re: [gentoo-user] why firefox is so slow?

It disables pango library usage, there's a known bug about it that makes firefox scrolling and stuff very slow. Google for it and you'll find lots of reports about it. Cheers -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo

Re: [gentoo-user] why firefox is so slow?

roblem? > > Try a blank Firefox profile. To create one, run "firefox -ProfileManager". > > Alexander Skwar > -- > Would you people stop playing these stupid games?!?!? > -- > gentoo-user@gentoo.org mailing list > Try using this: $ MOZ_DISABLE_PANGO=1

Re: [gentoo-security] Re: [gentoo-hardened] Systrace resurrection

hich could do that anyway), this is just shifting the sec model from 'setuid lets the process run as root but we "jail" it with MAC' to "we remove setuid and we selectively allow kernel_side what it can do". Unless you are really dumb in defining p

Re: [gentoo-security] Re: [gentoo-hardened] Systrace resurrection

hich could do that anyway), this is just shifting the sec model from 'setuid lets the process run as root but we "jail" it with MAC' to "we remove setuid and we selectively allow kernel_side what it can do". Unless you are really dumb in defining p

[gentoo-security] Re: [gentoo-hardened] Systrace resurrection

lege elevation thing is only available to root on processes started with systrace) -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V ( )

Re: [gentoo-hardened] Systrace resurrection

lege elevation thing is only available to root on processes started with systrace) -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V ( )

[gentoo-security] Re: [gentoo-hardened] Systrace resurrection

se posts aren't targeting specific > implementations (eg., grsec is not affected by all of the issues listed) > but rather the model in general. I'm curious, why's grsec not affecteced by this? Cheers -- Andrea Barisani <[EMAIL PROTECTED]>

Re: [gentoo-hardened] Systrace resurrection

se posts aren't targeting specific > implementations (eg., grsec is not affected by all of the issues listed) > but rather the model in general. I'm curious, why's grsec not affecteced by this? Cheers -- Andrea Barisani <[EMAIL PROTECTED]>

Re: [gentoo-security] Re: [gentoo-hardened] Systrace resurrection

t doesn't necessarily mean it should be removed from the tree (unless it's a security issue, which is clearly not). Btw we are not advertising/documenting this as the perfect security solution, so let's not make a big fuss about a unstable ebuild. This *random* developer (

Re: [gentoo-security] Re: [gentoo-hardened] Systrace resurrection

t doesn't necessarily mean it should be removed from the tree (unless it's a security issue, which is clearly not). Btw we are not advertising/documenting this as the perfect security solution, so let's not make a big fuss about a unstable ebuild. This *random* developer (

[gentoo-security] Re: [gentoo-hardened] Systrace resurrection

On Wed, Apr 26, 2006 at 09:38:02AM -0400, Joshua Brindle wrote: > Andrea Barisani wrote: > >Hi folks! > > > >I'd like to announce that Systrace is back in the portage tree, it consists > >of two packages: > > > >sys-apps/systrace > > > >

Re: [gentoo-hardened] Systrace resurrection

On Wed, Apr 26, 2006 at 09:38:02AM -0400, Joshua Brindle wrote: > Andrea Barisani wrote: > >Hi folks! > > > >I'd like to announce that Systrace is back in the portage tree, it consists > >of two packages: > > > >sys-apps/systrace > > > >

[gentoo-security] Systrace resurrection

. Testing/feedback is appreciated. More information here: http://www.systrace.org http://www.citi.umich.edu/u/provos/systrace/ Cheers -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer

[gentoo-hardened] Systrace resurrection

. Testing/feedback is appreciated. More information here: http://www.systrace.org http://www.citi.umich.edu/u/provos/systrace/ Cheers -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer

Re: [gentoo-user] How can I unsubscribe?

k up http://www.gentoo.org and the lists page (it's there, easy to find). So there's plenty of ways to get the info you need without bothering the lists itself (including your friendly [EMAIL PROTECTED]) -- Andrea Barisani <[EMAIL PROTECTED]>

Re: [gentoo-dev] Re: ca-certificates PDEPEND

On Mon, Jan 09, 2006 at 06:03:03PM +0100, Jakub Moc wrote: > > 9.1.2006, 17:28:04, Andrea Barisani wrote: > > > On Mon, Jan 09, 2006 at 05:21:42PM +0100, Jakub Moc wrote: > >> > >> 9.1.2006, 17:12:31, Andrea Barisani wrote: > >> > >> >

Re: [gentoo-dev] Re: ca-certificates PDEPEND

On Mon, Jan 09, 2006 at 05:21:42PM +0100, Jakub Moc wrote: > > 9.1.2006, 17:12:31, Andrea Barisani wrote: > > > On Mon, Jan 09, 2006 at 11:08:38AM -0500, solar wrote: > > >> > >> Do you think the PDEPEND of the ca-certs should be tied to a USE= flag? >

[gentoo-dev] Re: ca-certificates PDEPEND

On Mon, Jan 09, 2006 at 11:08:38AM -0500, solar wrote: > On Mon, 2006-01-09 at 16:55 +0100, Andrea Barisani wrote: > > Regarding the inclusion of ca-certificates as a PDEPEND (yeah a brief > > exchange of emails already happened on -dev but since it's not so easy to > > t

[gentoo-dev] ca-certificates PDEPEND

thing..this is not the point). [CCing [EMAIL PROTECTED] because this concerns the team as well imho.] Just my 2 eurocent. P.S. I know that firefox doesn't trust /etc/ssl/certs by default, dunno about konqueror. The point is still relevant though. -- Andrea Barisani <[EMAIL PR

Re: [gentoo-dev] Decision to remove stage1/2 from installation documentation

On Tue, Nov 22, 2005 at 10:14:04AM -0500, Chris Gianelloni wrote: > On Tue, 2005-11-22 at 15:37 +0100, Andrea Barisani wrote: > > On Tue, Nov 22, 2005 at 02:47:45PM +, Kurt Lieber wrote: > > > We have received *numerous* complaints from users about the decision to > >

Re: [gentoo-dev] Decision to remove stage1/2 from installation documentation

e's no intention to remove stage1/stage2 tarballs in the future because that would be a really a bad thing imho. Cheers -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V

Re: [gentoo-server] Centralized Gentoo (build -> push/pull) to multiple architectures

ch for dispatch-conf... > > Mind you, I have no idea on where to even start on something like this, so > any > thoughts, ideas, or information would be helpful. > > Thanks! > > Robert > -- > gentoo-server@gentoo.org mailing list >

Re: [gentoo-dev] Re: GLEP 38: Status of forum moderators in the Gentoo project

i (or something like that) access for hosting files be acceptable? Seriously security_wise and admin_wise I don't see shell access useful neither appropriate imho. Btw how many forums moderators are we talking about? Cheers -- Andrea Barisani &l

Re: [gentoo-server] Re: Messages from gentoo-server@gentoo.org to you have been bouncing

Paddress] input="" That's probably because of a too slow network connection between your mail server and our mail server. Please let's discuss and solve this issue privately and not on the list. ([EMAIL PROTECTED] is always the proper way for discussing ml issues) What&

Re: [gentoo-user] Please Use Subjects

afraid. Things should be back to normal now. Sorry for the mess. Bye -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V ( ) GPG-Key 0x864C9B9E ht

Re: [gentoo-server] gentoo inside of an infrastructure

! ;) There's no english translation of the slides but the following post (in english) is the foundation of that project. http://marc.theaimsgroup.com/?l=gentoo-user&m=104774374814795&w=2 Cheers -- Andrea Barisani <[EMAIL PROTECTED]>

Re: [gentoo-dev] reply-to munging

On Fri, Apr 15, 2005 at 12:52:33PM -0700, Donnie Berkholz wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Andrea Barisani wrote: > | There's no reference to @gentoo.org and our main MX server is > rewriting @gentoo.org > | to @lists.gentoo.org every time.

Re: [gentoo-user] how to subscribe but get no mail

IL PROTECTED] always shows list usage information. Anyway regarding your issue you should use: [EMAIL PROTECTED] Cheers -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V

Re: [gentoo-dev] reply-to munging

@lists.gentoo.org To: gentoo-dev@lists.gentoo.org There's no reference to @gentoo.org and our main MX server is rewriting @gentoo.org to @lists.gentoo.org every time. Are you seeing @gentoo.org in those headers in the messages you are getting? Bye -- Andrea Barisani <[EMAI

Re: [gentoo-dev] reply-to munging

On Thu, Apr 14, 2005 at 06:06:18PM +0900, Georgi Georgiev wrote: > maillog: 14/04/2005-11:01:19(+0200): Andrea Barisani types > > I'm prefectly happy with removing our reply-to header (and leaving > > user_defined one if any) if the userbase of this ml is happy to deal without

Re: [gentoo-dev] reply-to munging

leaving user_defined one if any) if the userbase of this ml is happy to deal without it. Cheers -- Andrea Barisani <[EMAIL PROTECTED]>.*. Gentoo Linux Infrastructure Developer V (

  1   2   >