The debian-private mailing list leak, part 1. Volunteers have complained about Blackmail. Lynchings. Character assassination. Defamation. Cyberbullying. Volunteers who gave many years of their lives are picked out at random for cruel social experiments. The former DPL's girlfriend Molly de Blanc is given volunteers to experiment on for her crazy talks. These volunteers never consented to be used like lab rats. We don't either. debian-private can no longer be a safe space for the cabal. Let these monsters have nowhere to hide. Volunteers are not disposable. We stand with the victims.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Security bugfix for Samba (fwd)



Yes, I am. I'd like to update my sambades package ASAP. But I probably
won't be able before a week into October. As a quick fix you could use
the sambades source, which already is version 1.9.17. It should compile
without a problem on your system (since you have that symlink) and will
generate a libc5 version if you hav SSLeay installed. To get rid of the
des part comment DES_LIB and DES_FLAGS  in debian/rules.

Eventually (that is in October) I'd like to release one samba package
containing the des and the no-des binary with the des one compiled
against a shared libcrypto. That way it should be legal to export the
binary from the US since it does not contain any des stuff which resides
in the library. Is this legally correct?

Klee, please tell me what you think. I'm willing to take over sambe for
the time being and go ahead with this package. Is this okay?

Michael
--
Dr. Michael Meskes, Projekt-Manager    | topystem Systemhaus GmbH
meskes@topsystem.de                    | Europark A2, Adenauerstr. 20
meskes@debian.org                      | 52146 Wuerselen
Go SF49ers! Use Debian GNU/Linux!      | Tel: (+49) 2405/4670-44

> ----------
> From:
> joost@rulcmc.leidenuniv.nl[SMTP:joost@rulcmc.leidenuniv.nl]
> Sent: 	Samstag, 27. September 1997 15:06
> To: 	jgoerzen@southwind.net
> Subject: 	Re: Security bugfix for Samba (fwd)
> 
> > A new release of Samba has now been made that fixes the security
> > hole. The new release is version 1.9.17p2 and is available from
> > ftp://samba.anu.edu.au/pub/samba/samba-1.9.17p2.tar.gz
> 
> Is anybody working on this at the moment?
> 
> I've tried to apply the debian patches to 1.9.17p2, but the
> result doesn't link[1] on my libc5/libc6 system (unstable
> up-to-date as of yesterday, and most lib*-altdev stuff installed).
> 
> It seems libpam (still libc5, and the libraries are linked
> statically (no -lc)) causes trouble at the linking stage
> (same errors, whether I try to build it libc5 or libc6).
> 
> I know, I should wait for Klee, but I very much would like to have
> patched version available soon (I've sent email to Klee already,
> but he doesn't seem to answer it).
> 
> If nobody else is working on it, I think I'll just go ahead, and
> make libc5/libc6 versions of libpam too -- it _must_ be possible
> to get atleast rid of those 
>   /usr/lib/libpam.so: undefined reference to `dlopen'
> and I've got good hopes for the otther missing symbol too.
> 
> 
> gcc -g -O2 -Wall -DSMBLOGFILE=\"/var/log/smb\"
> -DNMBLOGFILE=\"/var/log/nmb\" -DCONFIGFILE=\"/etc/smb.conf\"
> -DLMHOSTSFILE=\"/etc/lmhosts\"  -DLOCKDIR=\"/var/lock/samba\"
> -DSMBRUN=\"/usr/bin/smbrun\" -DWORKGROUP=\"WORKGROUP\"
> -DGUEST_ACCOUNT=\"nobody\"  -DLINUX -DNETGROUP -DSHADOW_PWD
> -DALLOW_CHANGE_PASSWORD -DFAST_SHARE_MODES=1   -DUSE_PAM     -o smbd
> server.o predict.o util.o system.o charset.o kanji.o fault.o
> smbencrypt.o charcnv.o md4.o loadparm.o params.o pcap.o username.o
> time.o interface.o replace.o ufc.o smbpass.o access.o shmem.o trans2.o
> pipes.o message.o dir.o printing.o locking.o ipc.o reply.o mangle.o
> chgpasswd.o password.o quotas.o uid.o    -ldl -lpam -lpwdb    
> username.o: In function `user_in_list':
> /mnt/bigfoot/shome/joost/maintain/samba/samba-1.9.17p2/source/username
> .c:200: undefined reference to `yp_get_default_domain'
> access.o: In function `string_match':
> /mnt/bigfoot/shome/joost/maintain/samba/samba-1.9.17p2/source/access.c
> :210: undefined reference to `yp_get_default_domain'
> password.o: In function `check_user_equiv':
> /mnt/bigfoot/shome/joost/maintain/samba/samba-1.9.17p2/source/password
> .c:1433: undefined reference to `yp_get_default_domain'
> /usr/lib/libpam.so: undefined reference to `dlerror'
> /usr/lib/libpwdb.so: undefined reference to `yp_master'
> /usr/lib/libpam.so: undefined reference to `dlclose'
> /usr/lib/libpam.so: undefined reference to `dlopen'
> /usr/lib/libpam.so: undefined reference to `dlsym'
> /usr/lib/libpwdb.so: undefined reference to `yp_match'
> 
> 
> 
> [1] OK, to make the libc6 compile work, I did have to make two very
>     minor changes,
> 
>   * Added  #ifndef __GLIBC__ /#endif around  "#include <asm/signal.h>"
> in source/includes.h line 218".
>   * changed "#ifdef GLIBC2" to "#ifdef __GLIBC__", in source/includes
> 
>     and for the libc5 compile I had to make a symlink from
>     /usr/i486-linuxlibc1/include/security to /usr/include/security.
>     but that was all.
> 
> -- 
> joost witteveen, joostje@debian.org
> #!/usr/bin/perl -sp0777i<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<j]dsj
> $/=unpack('H*',$_);$_=`echo 16dio\U$k"SK$/SM$n\EsN0p[lN*1
> lK[d2%Sa2/d0$^Ixp"|dc`;s/\W//g;$_=pack('H*',/((..)*)$/)
> #what's this? see http://www.dcs.ex.ac.uk/~aba/rsa/
> 
> 
> --
> TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe"
> to
> debian-private-request@lists.debian.org . 
> Trouble?  e-mail to templin@bucknell.edu .
> 


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-private-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .