The debian-private mailing list leak, part 1. Volunteers have complained about Blackmail. Lynchings. Character assassination. Defamation. Cyberbullying. Volunteers who gave many years of their lives are picked out at random for cruel social experiments. The former DPL's girlfriend Molly de Blanc is given volunteers to experiment on for her crazy talks. These volunteers never consented to be used like lab rats. We don't either. debian-private can no longer be a safe space for the cabal. Let these monsters have nowhere to hide. Volunteers are not disposable. We stand with the victims.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security bugfix for Samba (fwd)

> A new release of Samba has now been made that fixes the security
> hole. The new release is version 1.9.17p2 and is available from
> ftp://samba.anu.edu.au/pub/samba/samba-1.9.17p2.tar.gz

Is anybody working on this at the moment?

I've tried to apply the debian patches to 1.9.17p2, but the
result doesn't link[1] on my libc5/libc6 system (unstable
up-to-date as of yesterday, and most lib*-altdev stuff installed).

It seems libpam (still libc5, and the libraries are linked
statically (no -lc)) causes trouble at the linking stage
(same errors, whether I try to build it libc5 or libc6).

I know, I should wait for Klee, but I very much would like to have
patched version available soon (I've sent email to Klee already,
but he doesn't seem to answer it).

If nobody else is working on it, I think I'll just go ahead, and
make libc5/libc6 versions of libpam too -- it _must_ be possible
to get atleast rid of those 
  /usr/lib/libpam.so: undefined reference to `dlopen'
and I've got good hopes for the otther missing symbol too.


gcc -g -O2 -Wall -DSMBLOGFILE=\"/var/log/smb\" -DNMBLOGFILE=\"/var/log/nmb\" -DCONFIGFILE=\"/etc/smb.conf\" -DLMHOSTSFILE=\"/etc/lmhosts\"  -DLOCKDIR=\"/var/lock/samba\" -DSMBRUN=\"/usr/bin/smbrun\" -DWORKGROUP=\"WORKGROUP\" -DGUEST_ACCOUNT=\"nobody\"  -DLINUX -DNETGROUP -DSHADOW_PWD -DALLOW_CHANGE_PASSWORD -DFAST_SHARE_MODES=1   -DUSE_PAM     -o smbd server.o predict.o util.o system.o charset.o kanji.o fault.o smbencrypt.o charcnv.o md4.o loadparm.o params.o pcap.o username.o time.o interface.o replace.o ufc.o smbpass.o access.o shmem.o trans2.o pipes.o message.o dir.o printing.o locking.o ipc.o reply.o mangle.o chgpasswd.o password.o quotas.o uid.o    -ldl -lpam -lpwdb    
username.o: In function `user_in_list':
/mnt/bigfoot/shome/joost/maintain/samba/samba-1.9.17p2/source/username.c:200: undefined reference to `yp_get_default_domain'
access.o: In function `string_match':
/mnt/bigfoot/shome/joost/maintain/samba/samba-1.9.17p2/source/access.c:210: undefined reference to `yp_get_default_domain'
password.o: In function `check_user_equiv':
/mnt/bigfoot/shome/joost/maintain/samba/samba-1.9.17p2/source/password.c:1433: undefined reference to `yp_get_default_domain'
/usr/lib/libpam.so: undefined reference to `dlerror'
/usr/lib/libpwdb.so: undefined reference to `yp_master'
/usr/lib/libpam.so: undefined reference to `dlclose'
/usr/lib/libpam.so: undefined reference to `dlopen'
/usr/lib/libpam.so: undefined reference to `dlsym'
/usr/lib/libpwdb.so: undefined reference to `yp_match'



[1] OK, to make the libc6 compile work, I did have to make two very
    minor changes,

  * Added  #ifndef __GLIBC__ /#endif around  "#include <asm/signal.h>" in source/includes.h line 218".
  * changed "#ifdef GLIBC2" to "#ifdef __GLIBC__", in source/includes

    and for the libc5 compile I had to make a symlink from
    /usr/i486-linuxlibc1/include/security to /usr/include/security.
    but that was all.

-- 
joost witteveen, joostje@debian.org
#!/usr/bin/perl -sp0777i<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<j]dsj
$/=unpack('H*',$_);$_=`echo 16dio\U$k"SK$/SM$n\EsN0p[lN*1
lK[d2%Sa2/d0$^Ixp"|dc`;s/\W//g;$_=pack('H*',/((..)*)$/)
#what's this? see http://www.dcs.ex.ac.uk/~aba/rsa/


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-private-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .