April 22, 2014

OpenSSH Rebuilt and New Activities on Current

OpenSSH package was rebuilt this morning to fixed a bug with curve25519-sha256 that caused a key exchange failure in about 1 in 512 connection attempts. This update applies back to all Slackware release that uses OpenSSH-6.x.

An interesting new activities came up in -current tree where some of the basic packages gets upgraded besides OpenSSH, such as bash, grep, gawk, and vim/gvim. Normally, the first thing Pat would do is to upgrade the basic toolchain, such as gcc, glibc, and kernel, followed up by basic packages.

Since GCC has just released GCC 4.9.0, i think Pat is targetting that version for next Slackware release along with glibc 2.19. I still don't have an idea which kernel version would be used, but i guess 3.14 would be interesting to follow and soon to be released, 3.15 which brings many performance improvements and also supports for newer Intel CPUs.

It would be another interesting development cycle for next Slackware release and hoping that -current cycle start soon.

Two Security Updates: libyaml and PHP

Two security updates were issued this morning to fix security flaws in yaml and PHP.

PHP is upgraded to 5.4.27 to fix the AWK script detector which can be triggered via a simple script to consume the CPU up to 100% due to backtracking. This update applies to Slackware 14.0 and newer.

libyaml is upgraded to 0.1.6 to fix heap overflow in URI escape parsing of YAML in Ruby and applied to Slackware 13.0 and newer.

April 21, 2014

Numix Icon Theme Added to MSB Repository

I have heard many positive review about Numix Project and their famous Icon Theme sets. Last night, i decided to try it on my desktop. They don't have a released tarball yet, but they are very active in github based on the commit frequency. In short time, i managed to make a SlackBuild script for this and tested it on my desktop and it works nicely.

At night just before midnight, i posted this on my G+ account and asked whether it should be added to MSB repository or not and the responses were mostly positive about it. I finally decided to put it on my MSB repository, BUT not in base nor extra directory, but in testing.

There are two reasons:
  • They are in a very active development and changes occurs everyday (which is a good sign for users), but they don't have a released tarballs which is a bad situation for packages, since typically we based our script to a certain released version (eg. 1.0). While it's easy to set up a SlackBuild script which download them from GIT (which i made actually), it may end up differently from one to another since they may pull a different revision.
  • Not everyone need another fancy new icon-themes for their desktop. They like what MATE has offered them, so i'm not forcing people to download and install this package if they don't need or don't like it. 
Adding it to testing means i don't need to build the packages as well, as we only build binaries from base and extra directory. For those who wanted to try it, grab the newly added SlackBuild script under testing directory of MSB repository (master branch), run it as root, and install them.

Please remember that the base numix-icon-theme should be installed first before you build the rest two themes.

Here are some screenshots i have taken using Numix Icon Theme Circle on top of MATE and also Cinnamon desktop

April 17, 2014

KDE 4.13.0 Released

KDE 4.13.0 has been released to public as of yesterday and this is a new major release of KDE 4.x, even though the REAL BIG change is going to happen in the next major release of KDE 5. As always, new major release of KDE will introduce new apps and this time, they are: artikulate, baloo, baloo-widgets, kfilemetadata and kqtquickchart. Make sure to install them when you upgrade from previous installation of KDE. It's advised to use --install-new when you run upgradepkg command so that you won't miss any new packages.

Besides new apps, there are also new dependencies introduced in this release and they are: eigen3, qt-gstreamer and xapian-core. They are placed on deps/ directory.

Eric Hameleers has published his KDE packages on his KTown repository under current directory (yes, you read it well, CURRENT). He is aiming to build KDE 4.13.x for Slackware-Current users and for now, there are no guarantee that it will work with Slackware 14.1 (although at this moment, we can say that current hasn't changed much from stable besides security updates).

You can grab the packages from mirror sites below:
Eric is also planning to release the next iteration of KDE 4.12.5, which is believed to be the last release of KDE 4.12.x branch in the next two weeks. The packages will be placed on 14.1 directory on his KTown repository so if you used slackpkg+ and have his KTown configured, you will see them next time you run slackpkg update; slackpkg upgrade-all. Don't forget to run slackpkg install-new to install new packages introduced in KDE 4.12.

April 14, 2014

Cinnamon 2.2 Released

Clem has just officially announced the availability of Cinnamon 2.2.0, a major upgrade from previous version 2.0.x. There are a lot of improvements in Cinnamon 2.2.0, such as:
  • Better Looking Settings
  • Revamped Screensaver and Power Management Settings
  • Date and Time Settings are revived back 
  • Improvements on Hot Corners and HUD
  • MPRIS support and Sound Applet
  • HiDPI/Retina Display Support
  • Graphics Tablet support is back
  • A11y MouseWheel Zoom for visually impared users
  • Window opacity and CSD support
  • and many more:
    • CJS gsettings wrapper (no more segmentation faults when an old applet queries a Cinnamon gsettings key which no longer exists… CJS intercepts the call and deals with it)
    • Better integration with GNOME on the same machine (you should no longer see GNOME Control Center in Cinnamon, or Cinnamon Settings in GNOME)
    • Better support for GDM (in particular for user-switching)
    • Better support for Xrandr cloning
    • Support for MDM fallback shutdown sequence
    • New shutdown hotkey
    • Configurable delay in cinnamon-session-properties
    • Logout sound
    • Fixed blacklight/brightness support on some hardware
    • Better systemd/logind support
    • Better support for VLC screensaver inhibit
    • Compatibility with new interfaces such as modemmanager1, upower1
You might be very interested with all that new shiny features in Cinnamon 2.2.0, but i must say a BAD NEWS. It won't be available on my CSB (Cinnamon SlackBuilds) project (at least, not in master branch). The reason is simple. It required newer GTK+3 (minimum 3.10) which is not yet available on Slackware 14.1. As my policy for CSB is only supporting an official release (14.1 for now), i will base everything with what's available in 14.1.

Worry not for those who are adventorous enough to upgrade their machines to the latest GTK+3, since i have created 2.2.0 branch which consists of new Cinnamon updates to bring 2.2.0 to live. Unfortunately, while most of the packages can be built without the new GTK+3, Cinnamon, nemo, and muffin can't be built without it, so i couldn't really test the scripts as of now. However, i have tested the others and it seems to work with the current libraries available on 14.1. Even so, i'm not risking by partially upgrading Cinnamon's component, so for now, i will stick with Cinnamon 2.0.x for Slackware 14.1.

    April 13, 2014

    LibreOffice 4.2.3 - Fixed heartbleed bug

    A new version of LibreOffice has been released and the good news is that this version fixed the serious heartbleed bug which was exposed last week and become a very heated discussion about it over the Internet. Lots of users are encouraged to upgrade their OpenSSL libraries as well as other applications that statically linked against OpenSSL. LibreOffice is one of them.

    Eric Hameleers has published his packages on his repository and it's mirror sites for public usage. Please note about the split packages written on his blog:
    The SDK documentation (several hundreds of MB) has now moved into a separate package “libreoffice-sdkdoc” which you will not need unless you are a developer. And the KDE integration libraries have been moved into their own package as well: “libreoffice-kde-integration”
    In other word, if you are using KDE, you may want to install the new libreoffice-kde-integration package to make your LibreOffice works better with your KDE environment.

    As always, packages can be grabbed from this mirror sites:

    April 10, 2014

    Cinnamon Progress

    Thanks to people in LQ for testing my Cinnamon SlackBuilds repository, some issues were found and also fixed in just short amount of time.

    I have installed Cinnamon on my workstation at the office and surprisingly, it's quite fast and snappy just as Michael said. I also managed to fix the broken cinnamon-settings applications due to case-sensitive naming in python-pam package. Once that was fixed on this commit, all settings are now working normally again. This is the screenshot of the now working cinnamon-settings

    The only thing that still bother me is why some of the libraries needs to be reinstalled before (startup-notifications and NetworkManager) and after (qt) just to make Cinnamon works perfectly. Does the build broke those libraries? I still have no answer on these issues yet.

    One issue that is not on my high priority list is probably testing under multilib environment. I will need other people's feedback on that issue.

    April 09, 2014

    Cinnamon SlackBuilds (CSB) for Slackware is now Live

    This morning, i have pushed my own csb (Cinnamon SlackBuilds) on github. As noted on previous post, i have been playing with Cinnamon 2 since last Sunday and on Monday, i'm able to create a working Cinnamon desktop on top of Slackware64 14.1 on a virtual machine environment.

    Why does it took so long to publish the repository? Well, the result on Monday was a little mess in my opinion, since it's more like trial and error. Whenever i found a new dependency, i made a SlackBuild script for it and rebuilt again until no errors are found. This wasn't enough unfortunately. I tried to rebuilt the whole packages in a new clean environment and there were errors again, so i must fix the build order first before i publish them.

    Starting last night, i created another clean environment and this time, i managed to produce a working environment on one attempt, so i take it as a correct build order. Still, there *might* be some issues i missed, so i was hoping for feedbacks from all of you to try this repository. So far, i have only tested it on VM environment only.

    There are no binary packages at the moment due to above reason. When i consider it to be stable enough, i will consider to build a binary packages for Slackware 14.1 users.

    Here are some things you need to know before building the packages:
    • systemd: I can avoid this by using an older version of some packages that can be built without having systemd as a hard dependency. Newer version might require systemd as a hard dep.
    • newer glib: Most packages now requires newer glib than what we have on Slackware 14.1, but i tried not to make any changes to the official packages from Slackware. So far, it work as well.
    • PAM: this is something i can't avoid even after trying many solutions. The reason is that Cinnamon only provides PAM as the authentication backend solution, so without it, you will not get a working and usable Cinnamon environment. This is why i tested this on VM environment only.
    Please read the README before building Cinnamon using the SlackBuild scripts. Failed to follow the instructions may result of a broken build.

    Please test the scripts and please send the feedbacks through my email : willysr [AT] slackware-id [DOT] org or through github issues.

    Thanks and Enjoy Cinnamon :)

    Nasty OpenSSL Bug Fixed

    The nasty OpenSSL heartbleed extension bug has been fixed on -current and -stable releases back to Slackware 14.0. Earlier Slackware releases are not affected since they don't use the vulnerable 1.0.1 branch.

    Since this library is used on many other applications as well, please ensure to apply this upgrade as soon as possible as this bug can reveal up to 64k of  memory to read credentials created using the vulnerable (unpatched) libraries.

    April 07, 2014

    Playing with Cinnamon 2

    On my weekend last Sunday, i decided to try on building Cinnamon on top of Slackware 14.1. I know it's going to be a hell of a mess and lots of problems, but still it's a challenging project for myself.

    I started by building a new VM of Slackware64 14.1 and update it with all the software updates coming from -stable branch. Next, i tried to list down cinnamon dependencies one by one. I must say, Cinnamon is way more complex in terms of software dependencies compared to MATE. I didn't build all the optional dependencies, but just the hard dependencies.

    The biggest problem when building cinnamon is that some of it's dependencies require systemd and PAM and some other require newer glib than what we have in Slackware 14.1 For glib, i tried to avoid it, since i'm not going to change any packages in Slackware's tree. That makes me easier when i want to update the packages without conflicting with Patrick's packages.

    For systemd, i can avoid this as well, by picking some older version of the deps that doesn't require systemd, but in order to get the latest version of those libraries, you must have systemd in your system. For now, this situation is still OK, but not really sure for future releases as systemd is now getting more and more used in many upstream projects.

    At the end, i can't avoid of using PAM even though many Slackware users does not like to use PAM. Building Cinnamon without PAM is quite impossible, since the only backend authentication implemented is PAM. Luckily, i managed to build PAM for my MSB project, so i only need to grab it and make minor modifications to make it work.

    After compiling, testing, debugging for almost 2 days, finally i'm able to bring the Cinnamon desktop running well on top of Slackware 14.1. It's still running under software rendering mode, since i installed it on a VM, so i'm not sure if the performance is good or not.

    I still want to make more tweaks before publishing the results of this project to public and making the SlackBuild script more robust. During the development, i often experienced a different result when running the script when new packages are introduced or recompiled. Probably it's just a matter of build order and hopefully i can get it fixed.

    Anyway, here's the early screenshot of Cinnamon 2.0.14 on top of Slackware 14.1:

    Big thanks to everyone who have submitted their packages to SBo project. It makes it easier for me to build Cinnamon using some of the scripts available in SBo to satisfy it's dependencies.

    April 04, 2014

    KDE 4.12.4 Monthly Update

    Eric Hameleers has published his KDE packages for KDE 4.12.4 which is built on top of Slackware 14.1 to provide maximum compatibility with Slackware 14.1 AND Slackware Current since it hasn't deviate that much.

    Besides updating all the packages to the latest version, there has been a minor changes in the package naming. kdnssd is now renamed into zeroconf-ioslave. You will also need to install python-twisted and zope.interface from SlackBuilds Project or from Eric's repository.

    He also updated the kde-connect package to the latest GIT version.

    KDE packages can be grabbed from this repositories:

    April 01, 2014

    Fixes for httpd and OpenSSH

    As mentioned on my previous post, there will be some following updates to the security updates released few days ago due to some minor bug and now the updates are released.

    The new httpd update (2.4.9) requires new apr and apr-utils in order to get mpm_event module created, so in this update, apr and apr-utils are upgraded to 1.5.0 and 1.5.3 respectively. For those who have been selecting to use mpm_worker module as a fix for previous update, you need to revert back to mpm_event or keep it, but DON'T use both. It will throws an error when you tried to restart the httpd daemon. This update applies to Slackware 14.0 and future releases.

    The new openSSH update only fixes the rc.sshd to create new ecdsa key when the daemon is restarted. This update only applies to Slackware 14.0 and 14.1.

    March 30, 2014

    Security Update: OpenSSH, httpd, mozilla-nss, curl, firefox, thunderbird, and seamonkey

    There are seven security updates that were released few days ago when i was in Malaysia, so i couldn't write a blog post about it. Those updates were:
    • httpd is now upgraded to 2.4.9 and applied back to Slackware 14.0. Unfortunately there is a minor bug about this update that it dropped MPM Event module if apr and apr-utils are not updated with the latest version, so a fix should be released on the next batch.
    • OpenSSH is upgraded to the latest version and this update is applied back to Slackware 13.0. This update also has a small minor bug that it doesn't create the new key, and it should be fixed on the next update as well.
    • mozilla-firefox is upgraded to 24.4 ESR for Slackware 14.1 and current
    • mozilla-thunderbird is upgraded to 24.4.0 for Slackware 14.1 and current
    • seamonkey is upgraded to 2.25 for Slackware 14.1 and current
    • nss is upgraded to 3.16 and applied to Slackware 14.0a and newer
    • curl is upgraded to 7.36 and applied back to Slackware 13.0 and newer 
    On -current, there was one single update that is not part of the security update and it was tin which is upgraded to 2.2.0.

    March 27, 2014

    Security Update: PHP

    I totally forgot about this, even though i have it ready just the same day it was released. It must have been distracted due to my traveling preparation and also due to my work in the office. Thanks to Ryan who noticed it and let me know.

    PHP in Slackware has been updated to the latest PHP 5.4.x stable release due to some vulnerabilities that can cause your CPU to rise up until 100% when using fileinfo function.

    March 17, 2014

    New Bitcoin Address

    I have been playing with Bitcoin since early this month and i even put a new donation link to both my personal blog and this SlackBlogs replacing my paypal donation link since my paypal account got limited permanently. I used bitcoin client from SBo, but it requires lots of time to syncronize with the past transactions and so far, it has reached 18 GB of data and keep growing as more transactions occurred everyday. Plus, it caused some instability of my network card, so i decided to remove it from my computers.

    This evening, i was having conversation with alienBOB (Eric Hameleers) and he mention another bitcoin client alternative, armory and Electrum. I decided to have a look on Electrum and turns out that it doesn't require me to do the syncronization all the time. This is perfect, as this app is so light and with small number of hard dependencies, it's also a good candidate for inclusion in SBo, so i wrote SlackBuild script for this application (including the dependency) and submit it to SBo.

    I decided to use bitcoin as a way to accept donations on both of my blogs and here they are: bitcoin donation address on the right side of this blog. Use that address if you want to send donation to me. Any value is appreciated :)

    March 16, 2014

    LibreOffice 4.2.2 for Slackware Users

    Eric Hameleers has just published his LibreOffice packages along with other goodies he maintained on his repository. The new LibreOffice package is built on top of Slackware 14.1, but usable for Slackware-Current as well as -Current hasn't deviate much from -Stable.

    You can get the updated version of LibreOffice from these mirrors:

    March 14, 2014

    Security Update: Samba

    Another security update has been released for Slackware 14.0 and newer: samba. This single update fixed two security vulnerabilities at once:

    • CVE-2013-4496: Samba versions 3.4.0 and above allow the administrator to implement locking out Samba accounts after a number of bad password attempts. However, all released versions of Samba did not implement this check for password changes, such as are available over multiple SAMR and RAP interfaces, allowing password guessing attacks. 

    • CVE-2013-6442: Samba versions 4.0.0 and above have a flaw in the smbcacls command. If smbcacls is used with the "-C|--chown name" or "-G|--chgrp name" command options it will remove the existing ACL on the object being modified, leaving the file or directory unprotected.

    Mencoba Modem ZTE WCDMA MSM

    Begini lho cara pakai #modem ZTE WCDMA kalau di #Slackware 14.x

    1. Tancapkan modem

    Tancepin modem

    2. Tunggu modem terinisialisasi dengan sempurna

    Inisialisasi modem oleh kernel

    3. Aktifkan fungsi Mobile Broadband di #NetworkManager kalau belum aktif

    Aktivasi fungsi Mobile Broadband pada NetworkManager

    4. Buat profil koneksi dial-up sesuai kartu seluler yang dipakai. Saya kebetulan sudah punya profil untuk Three meskipun modem ini aslinya milik Telkomsel.

    Aktivasi profil koneksi yang akan digunakan

    4. Lalu aktifkan modem (dialing) dengan klik tombol konek pada profil

    Dialing modem

    5. Silakan berselancar

    March 13, 2014

    Security Update: mutt

    Mutt has been upgraded to 1.5.23 to fix security vulnerability (buffer overflow) where malformed RFC2047 header lines could result in denial of service or potentially the execution of arbitrary code as the user running mutt.

    This update is applied back to Slackware 13.37

    March 11, 2014

    Security Updates: udisks, udisks2

    Two security updates were released today and they all came from the same project: udisks and udisks2. Both have the same CVE entries, meaning both are vulnerable to the same bugs. Both are applied to Slackware 14.0 and newer.

    Here is the description found on the ChangeLog:
    This update fixes a stack-based buffer overflow when handling long path names.  A malicious, local user could use this flaw to create a
      specially-crafted directory structure that could lead to arbitrary code
      execution with the privileges of the udisks daemon (root).

    Planet Slackware-ID

    Planet Slackware-ID adalah aggregator dari situs blog para Slacker* Indonesia.
    (*Pengguna Distro Slackware)

    Silakan kirimkan e-mail ke willysr@slackware-id.org apabila blog Anda ingin disertakan pada planet ini.

    Terakhir diupdate: April 25, 2014 07:01 AM GMT.

    Google Groups
    Subscribe to id-slackware
    Visit this group