Planet Slackware Indonesia

Willy Sudiarto Raharjo: Security Update: Pidgin

noreply@blogger.com (Willy Sudiarto Raharjo) — Thu, 11 Mar 2010 02:44:00 +0000

Pidgin is finally upgraded on the last update and this time, it is considered a security fix as it fixed several critical vulnerabilities, as described in the Changelog of Pidgin Project.

Ok guys, grab it while it's hot

Willy Sudiarto Raharjo: OpenSSL Patched and Rebuilt

noreply@blogger.com (Willy Sudiarto Raharjo) — Wed, 10 Mar 2010 01:54:00 +0000

OpenSSL packages has been rebuilt to include a patch which revert some a change that broke decrypting some files encrypted with previous versions of OpenSSL. It's an official patch, so Pat decided to rebuilt the package for public use.

Willy Sudiarto Raharjo: Running Rsync Via Proxy

noreply@blogger.com (Willy Sudiarto Raharjo) — Tue, 09 Mar 2010 07:02:00 +0000

One way to get the latest Slackware updates is by running rsync to syncronize your local repository and the main repository that hold the Slackware packages. Eric Hameleers has provided a great script called rsync_current.sh and how i modified this tool has been discussed on my previous post. In general, it works, except for one problem, when your computer is connecting to the Internet through a proxy.

My workstation at my office is connected to the Internet through a proxy, so i can't use normal rsync to work normally. I browsed the web and i found this site which tells us about how we should modify our squid configuration to allow rsync connection from any computer from our local networks. I asked my sysadmin to try this script. He agreed and he updated the squid configuration on the proxy.

Next, i need to update my environment variable RSYNC_PROXY to the host of the proxy and also the port. Let's say you are running a proxy on 192.168.1.1 and port 8080, then you need to run export RSYNC_PROXY="192.168.1.1:8080 and then you can start running your rsync command (or script in my case).

Remember that this change is not permanent. It will last until you close your terminal, so the solution is to add this line into your ~/.bash_profile or /etc/profile if you want it to be globaly available to all of your users.

If you want to run the script periodically, you can use cronjobs to do it for you. I set to download the update from Slackware mirrors at around 11 PM at night when the bandwidth is not utilized.

Hope this small article helps you out to work with rsync when you are behind a proxy

Willy Sudiarto Raharjo: Security Update: HTTPD

noreply@blogger.com (Willy Sudiarto Raharjo) — Tue, 09 Mar 2010 00:05:00 +0000

Apache has just released a security update for httpd package and Slackware-Current has included the fix on the latest batch. It fixed three problems described on the Changelog.

Other news is that cupsddk is now being part of the main CUPS package, so we don't need separate package, thus cupsddk package is now removed. OpenSSH is also upgraded to the latest version, which is a major upgrade.

Here's the latest -Current changelog:

Mon Mar 8 20:49:02 UTC 2010
ap/cupsddk-1.2.3-i486-2.txz: Removed.
The CUPS Driver Development Kit (DDK) is part of the main CUPS package now.

ap/hplip-3.10.2-i486-1.txz: Upgraded.

n/httpd-2.2.15-i486-1.txz: Upgraded.
This update addresses a few security issues.
mod_ssl: A partial fix for the TLS renegotiation prefix injection attack by rejecting any client-initiated renegotiations.
mod_proxy_ajp: Respond with HTTP_BAD_REQUEST when the body is not sent when request headers indicate a request body is incoming; not a case of HTTP_INTERNAL_SERVER_ERROR.
mod_isapi: Do not unload an isapi .dll module until the request processing is completed, avoiding orphaned callback pointers.
[This is the most serious flaw, but does not affect Linux systems]
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0408
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0425
(* Security fix *)

n/openssh-5.4p1-i486-1.txz: Upgraded.

Willy Sudiarto Raharjo: Latest CUPS and Canon Problem Fixed

noreply@blogger.com (Willy Sudiarto Raharjo) — Mon, 08 Mar 2010 02:34:00 +0000

Today, i wanted to print something, but i noticed the printer is not responding to my request. It seems the latest CUPS in -Current has made some changes so that it didn't detect my printer anymore (it's a major upgrade after all). I have tried to remove my printer and re-adding it again, but i'm stuck with this error message: Bad device-uri "cnij_usb:/dev/usb/lp0"!

When i read this thread in LQ, i realized that i didn't have the same problem (the problem in LQ did happened on my workstation at my office where i got a blank paper instead of a text). So, i searched for solution on the Internet and i got to Gentoo BugZilla which said about cnijfilter-common 3.00 package. Mine is 2.7.0 which i got from official repository of Canon.

I searched the Internet and got this package (3.00) from Canon Asia Support and i converted it to tgz using rpm2tgz application provided in Slackware and i removed the old cnijfilter-common package and install this new package. Next, i restarted my CUPS service and i'm able to get my printer working again after re-adding it again.

The correct device URI is supposed to be cnijusb:/dev/usb/lp0 which is fixed with the latest cnijfilter-common package.

I hope this helps when you encounter a problem with Canon printers and you are using CUPS 1.4.x.

Willy Sudiarto Raharjo: Minor Kernel Tweak

noreply@blogger.com (Willy Sudiarto Raharjo) — Mon, 08 Mar 2010 01:39:00 +0000

Pat has just updated two kernel packages in -Current to improve it's compatibility and also upgraded libarchive to 2.8.0. It's a small updates, but this should fix some problems with the huge kernel after the introduction of XOrg and 2.6.33 few days ago.

Willy Sudiarto Raharjo: Security Update: Firefox

noreply@blogger.com (Willy Sudiarto Raharjo) — Sun, 07 Mar 2010 00:25:00 +0000

A new security update for older Slackware version has been released. Firefox has been upgraded to 3.0.18. No new activities in -Current, but bash-completion package which was shown on the Changelog is now ready to be downloaded in the repository. It seems that Pat may have forgotten to put them on the public mirrors

Willy Sudiarto Raharjo: Security Update: Thunderbird

noreply@blogger.com (Willy Sudiarto Raharjo) — Sat, 06 Mar 2010 08:00:00 +0000

Another updates coming through today with one security update related to Thunderbird. Other packages gets rebuild due to upgrade on curl and many other packages. This batch also introduce fixes for mesa, bash-completion, and gnuplot.

Here's the latest -Current development:

Sat Mar 6 06:46:22 UTC 2010
a/aaa_elflibs-13.013-i486-4.txz: Rebuilt.
Updated libcurl.so.4.2.0.

d/git-1.7.0.1-i486-1.txz: Upgraded.

l/apr-1.3.9-i486-1.txz: Upgraded.

l/apr-util-1.3.9-i486-2.txz: Rebuilt.

l/raptor-1.4.21-i486-1.txz: Upgraded.

n/alpine-2.00-i486-3.txz: Rebuilt.

n/autofs-5.0.5-i486-1.txz: Upgraded.

n/curl-7.20.0-i486-1.txz: Upgraded.

n/dirmngr-1.0.3-i486-2.txz: Rebuilt.

n/gnupg-1.4.10-i486-1.txz: Upgraded.

n/gnupg2-2.0.14-i486-2.txz: Rebuilt.

n/gpgme-1.2.0-i486-1.txz: Upgraded.

n/httpd-2.2.14-i486-2.txz: Rebuilt.

n/libassuan-1.0.5-i486-1.txz: Upgraded.

n/libgcrypt-1.4.5-i486-1.txz: Upgraded.

n/libksba-1.0.7-i486-1.txz: Upgraded.

n/php-5.2.13-i486-1.txz: Upgraded.

n/pinentry-0.8.0-i486-1.txz: Upgraded.

x/mesa-7.7-i486-2.txz: Rebuilt.
Recompiled with an upstream fix for a crash in driNewRenderbuffer().
Thanks to David Houlden for the bug report.

x/xf86-input-penmount-1.4.1-i486-1.txz: Upgraded.

x/xf86-video-ati-6.12.5-i486-1.txz: Upgraded.

xap/gnuplot-4.2.6-i486-1.txz: Rebuilt.
This was compiled with the wrong $ARCH.
Thanks again to Mikhail Zotov for spotting the problem.

xap/mozilla-thunderbird-3.0.3-i686-1.txz: Upgraded.
This upgrade fixes some more security bugs.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/thunderbird30.html
(* Security fix *)

extra/bash-completion/bash-completion-1.1-noarch-2.txz: Rebuilt.
Patched to recognize bash-4.

Martinus Ady H: Installing PgAdmin3 1.10.1 on Slackware 13.0

Thu, 04 Mar 2010 21:06:52 +0000

Akhir-nya berhasil juga melakukan installasi PgAdmin3-1.10.1 di Slackware 13.0 saya , tulisan kali ini merupakan jawaban untuk pertanyaan saya sendiri yang kemarin belum sempat terjawab pada milis id-slackware@googlegroups.com dengan subyek Installing pgadmin error di proses make Nah karena kemarin belum ada yang jawab, menurut asumsi saya pribadi kemungkinan teman-teman di milis [...]

Willy Sudiarto Raharjo: Workstation Problem Fixed

noreply@blogger.com (Willy Sudiarto Raharjo) — Thu, 04 Mar 2010 05:28:00 +0000

My workstation is finally back to normal again after i downgrade all packages in x/ directory to the original files in Slackware 13.0. First, i mounted the Slackware CD 2 ISO into a local directory using mount -o loop command, and then i executed upgradepkg --install-new slackware/x/*txz which will downgrade all packages in the x/ directory and i can go to my X environment again.

Basically, i updates all packages to the latest Slackware-Current batch of update, except the x/ which makes me still running the old XOrg server, but no problem for now, as i don't even use the new feature in newer XOrg package. I think it's getting more complicated, mostly for end users.

Martinus Ady H: Beberapa Persamaan Antara MySQL dan PostgreSQL

Wed, 03 Mar 2010 19:20:48 +0000

Buat teman-teman yang sudah pernah menggunakan MySQL dan sedang menjajaki PostgreSQL, mungkin tulisan ini bisa dijadikan sebagai shortcut untuk segera mulai menggunakan PostgreSQL. Karena tulisan ini merupakan pengalaman saya dalam menggunakan PostgreSQL selama beberapa hari terakhir ini , dan jika teman-teman mencari bagaimana cara melakukan konfigurasi PostgreSQL sebagai server mungkin tidak akan menemukan-nya [...]

Widya Walesa: KDE SC 4.4.1 Released Today

noreply@blogger.com (walecha99) — Wed, 03 Mar 2010 17:33:22 +0000

Today, 2nd March 2010, KDE team has released KDE SC 4.4.1 after almost one month from 4.4.0 released on 9th February 2010. You can read the official announcement...

[read more on http://wallinux.blogspot.com/]

Anjar Hardiena: Manuver Penjegalan Open Source: Pemerintah Indonesia pilih kasih?

Wed, 03 Mar 2010 17:00:11 +0000

Menarik melihat tindak tanduk penjegalan terhadap perkembangan Open Source di Indonesia belakangan ini, baik dari pengaduan IIPA (Microsoft anggota BSA, dimana BSA adalah salah satu asosiasi anggota IIPA) kepada pemerintah Amerika untuk mencabut skema subsidi bebas-pajak GSP; yang telah membantu memperlancar masuknya ekspor Indonesia bernilai trilyunan rupiah dengan alasan pemerintah Indonesia melakukan penolakan terhadap produk [...]

Willy Sudiarto Raharjo: Stay Out of x/

noreply@blogger.com (Willy Sudiarto Raharjo) — Wed, 03 Mar 2010 14:46:00 +0000

Today i just make my 2 desktop broken due to XOrg. My first workstation is my test system which i used at my office. I rarely used it, so it's no big deal if it's broken, and i did broke it when i upgraded to Slackware-Current today. It couldn't start X after upgrading to the latest XOrg-Server packages.

Next, i tried to do another upgrade at my home desktop, but this time, i left x/ directory. Everything works just fine until i tried to do some test by upgrading only the xorg-servers-* packages and boom.... it happened again.

Right now, i'm building a new kernel (2.6.31) so i can activate NVIdia driver again. Why would i not using 2.6.33 instead? The problem is that i'm using VMWare and for the version i used, it cannot go further than 2.6.31. I have tried to compile 2.6.32 in the past and it won't work again, so i'm sticking with 2.6.31 for now.

For now, if you want to play with -Current, try to avoid x/ directory unless you are ready to take the risk like what i did . If you are lucky enough, then you won't have any problem with KMS, but if you don't, get ready to get dirty and start hacking our own Slackware machine

Widya Walesa: Slackware 13.0 Security Update - Mon Mar 1 05:02:21 UTC 2010

noreply@blogger.com (walesa) — Wed, 03 Mar 2010 11:52:09 +0000

Slackware team has released several security updates for slackware version 13.0. Those updates are for: openssl, include openssl-solibs proftpd seamonkey, include seamonkey-solibs For complete...

[read more on http://wallinux.blogspot.com/]

Widya Walesa: Mon Mar 1 22:43:53 UTC 2010

noreply@blogger.com (walesa) — Wed, 03 Mar 2010 11:01:24 +0000

These are an updates to slackware-current, which aren't release an update in a long time (almost 1 month without any updates). This time, Pat and Slackware team has been released an update that...

[read more on http://wallinux.blogspot.com/]

Willy Sudiarto Raharjo: BIG UPDATES

noreply@blogger.com (Willy Sudiarto Raharjo) — Mon, 01 Mar 2010 23:49:00 +0000

Finally, after one full month of development, Pat released a massive update on Slackware-Current today. It's a HUGE updates, it's like all packages are being upgraded. Toolchains are also upgraded, so it's likely to be a good base for Slackware 13.1.

Now Slackware uses Linux Kernel 2.6.33, KDE 4.3.5, XOrg 1.7.5. Full detail can be seen at the Changelog

Widya Walesa: FOSS Adalah Musuh Negara

noreply@blogger.com (walecha99) — Mon, 01 Mar 2010 17:17:38 +0000

Berikut ini adalah isi pesan saya ke seorang teman yang bertanya pada saya setelah membaca tulisan berikut: http://www.guardian.co.uk/technology/blog/2010/feb/23/opensource-intellectual-property The...

[read more on http://wallinux.blogspot.com/]

Anjar Hardiena: Desain Grafis pake Open Source (Gimp & Inkscape)? Ga masalah!

Mon, 01 Mar 2010 10:00:11 +0000

Selama ini banyak yang bilang klo desain grafis itu enaknya pake Photoshop, Corel Draw, dan kawan-kawannya itu… Banyak desainer kita yang beranggapan bahwa aplikasi desain grafis berbasis open source belum dapat menghasilkan hasil desain yang bagus dan berkualitas. Bukan berarti pendapat seperti ini salah, selama pakenya software original sih it’s ok lah, nah yang jadi masalah [...]

Martinus Ady H: Installing PostgreSQL 8.4.2 on Slackware 13.0

Sun, 28 Feb 2010 17:38:24 +0000

Akhirnya kesampaian juga saat-nya bermain-main dengan