Re: making Debian secure by default

On Fri 29 Mar 2024 at 10:31:09 (+0100), Emanuel Berg wrote: > David Wright wrote: > > >> Ah, surely it can't refer to that as that would be > >> completely ridiculous as it would imply "wanna install > >> stuff? sure, but then it isn't secure anymore". > > > > It's not clear what "isn't secure any

Products!!

Hello, We would like to purchase your product. Are you still exporting? Thank you, Diane

Re: making Debian secure by default

Curt wrote: > On 2024-03-28, to...@tuxteam.de wrote: > > > > Security, as Bruce Schneier [1] says, is a process. Not a product. > > A process that is essentially out of your control. I would hope it is, given how little I or most people understand about security. > This is the elephant in the

Re: making Debian secure by default

Hello, On Fri, Mar 29, 2024 at 07:02:54PM +0100, Kamil Jońca wrote: > Andy Smith writes: > > https://www.openwall.com/lists/oss-security/2024/03/29/4 > > > > (Upstream xz/lzma project compromised, hostile code inserted into > > sshd in Debian sid and other leading edge distros.) > > O-o, is ther

Re: Fwd: [oss-security] backdoor in upstream xz/liblzma leading to ssh server compromise

Hello, On Fri, Mar 29, 2024 at 01:52:18PM -0400, Jeffrey Walton wrote: > Seems relevant since Debian adopted xz about 10 years ago. Though we do not know how or why this developer has come to recently put apparent exploits in it, so we can't yet draw much of a conclusion beyond "sometimes people

Re: Could Gnome's "install pending software updates" cause installation scripts to misbehave?

On Fri 29 Mar 2024 at 11:06:45 (-0400), Henning Follmann wrote: On Fri, Mar 29, 2024 at 12:01:27PM +0100, Lucas B. Cohen wrote: Hi, I've had a bit of a headache understanding why my Debian bookworm system suddenly panicked at boot with an 'unable to mount root fs' error. Turns out the first of

Re: making Debian secure by default

Hi, On Fri, Mar 29, 2024 at 05:43:22PM -, Curt wrote: > On 2024-03-29, Andy Smith wrote: > >> > >> It makes no fucking difference, because your important data is elsewhere > >> and completely out of your control. > > > > I WAS going to gently suggest that you have a lie down in a cool, > > s

Re: making Debian secure by default

On Thu, Mar 28, 2024 at 5:17 PM Lee wrote: > > > Hope this helps a little bit. > > Yes, it does. I was hoping for something simple but it's becoming > clear to me that there's no simple "make Debian secure for dummies" > checklist to follow. Robert Morris Sr. has some good advice,

Re: making Debian secure by default

> Yes, it does. I was hoping for something simple but it's becoming > clear to me that there's no simple "make Debian secure for dummies" > checklist to follow. I think to a significant extent, Debian maintainers do aim to make Debian "secure by default", to the extent possible (i.e. based on wha

Re: making Debian secure by default

On Fri, Mar 29, 2024 at 07:02:54PM +0100, Kamil Jońca wrote: > Andy Smith writes: > > [...] > > https://www.openwall.com/lists/oss-security/2024/03/29/4 > > > > (Upstream xz/lzma project compromised, hostile code inserted into > > sshd in Debian sid and other leading edge distros.) > > > > Thanks

Re: making Debian secure by default

Andy Smith writes: [...] > https://www.openwall.com/lists/oss-security/2024/03/29/4 > > (Upstream xz/lzma project compromised, hostile code inserted into > sshd in Debian sid and other leading edge distros.) > > Thanks, > Andy O-o, is there any simple test to check if I have infected version or

Re: Fwd: [oss-security] backdoor in upstream xz/liblzma leading to ssh server compromise

On Fri, Mar 29, 2024 at 01:52:18PM -0400, Jeffrey Walton wrote: > Seems relevant since Debian adopted xz about 10 years ago. > Also note that this has been addressed in Debian: https://lists.debian.org/debian-security-announce/2024/msg00057.html Provided here for the benefit those who are not sub

Re: making Debian secure by default

On 2024-03-29, Joe wrote: > > He's actually referring to credentials stored externally being Jesus, what a genius.

Re: making Debian secure by default

On 2024-03-29, Andy Smith wrote: >> >> It makes no fucking difference, because your important data is elsewhere >> and completely out of your control. > > I WAS going to gently suggest that you have a lie down in a cool, > shaded room, but which of us had this on our 2024 bingo card? > This is n

Re: making Debian secure by default

On Fri, 29 Mar 2024 16:53:04 + Andy Smith wrote: > Hello, > > On Thu, Mar 28, 2024 at 05:47:44PM -, Curt wrote: > > On 2024-03-28, Greg Wooledge wrote: > > > > > > A more proactive endeavor would be to document known best > > > practices > > > > It makes no fucking difference, beca

Re: making Debian secure by default

Hello, On Thu, Mar 28, 2024 at 05:47:44PM -, Curt wrote: > On 2024-03-28, Greg Wooledge wrote: > > > > A more proactive endeavor would be to document known best practices > > It makes no fucking difference, because your important data is elsewhere > and completely out of your control. I WAS

Re: making Debian secure by default

On 2024-03-28, to...@tuxteam.de wrote: > > Security, as Bruce Schneier [1] says, is a process. Not a product. > A process that is essentially out of your control. This is the elephant in the room that you do not wish to address. Anyway, dream on.

Ujjnkkk

iPhone’umdan gönderildi

Re: Could Gnome's "install pending software updates" cause installation scripts to misbehave?

On Fri 29 Mar 2024 at 11:06:45 (-0400), Henning Follmann wrote: > On Fri, Mar 29, 2024 at 12:01:27PM +0100, Lucas B. Cohen wrote: > > > > I've had a bit of a headache understanding why my Debian bookworm system > > suddenly panicked at boot with an 'unable to mount root fs' error. Turns out > > th

Re: making Debian secure by default

On Wed, Mar 27, 2024 at 8:37 PM Lee wrote: > > I just saw this advisory > Escape sequence injection in util-linux wall (CVE-2024-28085) > https://seclists.org/fulldisclosure/2024/Mar/35 > where they're talking about grabbing other users sudo password. > > Apparently the root of the security

Re: Could Gnome's "install pending software updates" cause installation scripts to misbehave?

On Fri, Mar 29, 2024 at 12:01:27PM +0100, Lucas B. Cohen wrote: > Hi, > > I've had a bit of a headache understanding why my Debian bookworm system > suddenly panicked at boot with an 'unable to mount root fs' error. Turns out > the first of my two menuentries in grub.cfg were no longer specifying

Could Gnome's "install pending software updates" cause installation scripts to misbehave?

Hi, I've had a bit of a headache understanding why my Debian bookworm system suddenly panicked at boot with an 'unable to mount root fs' error. Turns out the first of my two menuentries in grub.cfg were no longer specifying the linux root by its device UUID (as I was expecting it to do, by ho

Re: Debian 11 PHP 7.4 – Mysql 8 - Can’t get Mysqli_connect to work

On Fri, Mar 29, 2024 at 11:49:06AM +0100, Bernard wrote: > Hi to Everyone, > > The text quoted below has already been sent to the list, 2-3 days ago, > someone had replied to it (but the message has been lost, I no longer see it > on the list. I had replied again, which reply disappeared too.) > S

Re: Debian 11 PHP 7.4 – Mysql 8 - Can’t get Mysqli_connect to work

Hi to Everyone, The text quoted below has already been sent to the list, 2-3 days ago, someone had replied to it (but the message has been lost, I no longer see it on the list. I had replied again, which reply disappeared too.) So, I want to say again that the errors shown in the text below (S

Re: making Debian secure by default

David Wright wrote: >> Ah, surely it can't refer to that as that would be >> completely ridiculous as it would imply "wanna install >> stuff? sure, but then it isn't secure anymore". > > It's not clear what "isn't secure anymore" means. [...] It means as soon as you start doing stuff with the sof

Re: making Debian secure by default

On Thu, 2024-03-28 at 14:12 -0400, Lee wrote: > > Yes, it does.  I was hoping for something simple but it's becoming > clear to me that there's no simple "make Debian secure for dummies" > checklist to follow. Making "Debian secure for dummies" and having a multi-user system at the same time doe