Debian :: Update Notifications For Security Patches On Jessie
May 15, 2015
Is there any way to get update notifications for security patches on debian jessie. I was using update-manager and update-notifier and wheezy and that worked good, Update-notifier on jessie doesn't seem like its working...
I've used the backport described on the debian news to switch from Open Office to Libre Office. It didn't work with Synaptic, but without any complications when I used "apt-get" on the command line.
Unfortunately this left me with a confused synaptic package management:
My former Open Office is gone, but I get notifications for an Open Office update. I tried to solve the problem by deleting the backport-ressource from my sources list, but the notification won't vanish.
Except Libre Office I'm using a clean squeeze installation without anything I couldn'd find on the main sources list...
Does anybody know how I can get rid of this useless notification?
I have installed debian 8.8.1 stable and run updates. When I run the cat release command it shows stretch/sid. I made no changes to the apt/sources list.
What do i have to do so it only updates with the stable release I am planning to use it as a server and only want stable fixes.
I keep on trying to upgrade iceweasel on Jessie for a few months now and apt-listbugs always finds some scary bug so I pin the package. About 3 times I pin the package, wait a month or so, delete the apt-listbugs file and try again and it finds another grave bug. Right now it's this one:
After my most recent update, the boot sequence hangs at:"a start job is running for Create Volatile files and directories" with a timer and no limit .. I let it go for 12 minutes, but nothing.It seems as long as this sequence remains, the boot process does not finish and just hangs here.I haven't been able to find anything specific to this. I currently cannot boot into this machine, though do have access to files via dual boot.
I installed debian jessie with kde on my laptop a month ago and everything went fine. I tried today to update the packages (805!) via apper but i get the following error message:
Error : Removing a protected system package is not allowed WARNING: You are trying to remove the following essential packages: sysvinit-core (due to sysvinit)
Since update-manager was removed from Debian Jessie, I am looking for something similar or a way to install update-manager for 8.2. I would like a GUI.
I have tried gnome-packagekit, but some of the commands don't appear to work or it seems incomplete and I don't know of a way to test to make sure that it is working.
Other sites recommended to use smartpm. However, I cannot seem to find the plugin xfce4-smartpm-plugin in [Xfce Goodies] that would work as a notifier.
Unattended-upgrades does not meet my specifications, because to my knowledge there is no GUI configuration for this.
Though Debian Jessie is a great distro, I am finding it difficult to recommend to some newer users because it does lack a GUI updater/notifier at this time.
For some time now I have been unable to update flashplugin. I have been waiting the problem to fix itself, but no.
Here is what happens when I try to update flash:
Code: Select allrob@ace:~$ sudo update-flashplugin-nonfree --status Flash Player version installed on this system : 11.2.202.457 Flash Player version available on upstream site: 11.2.202.460 flash-mozilla.so - auto mode link currently points to /usr/lib/flashplugin-nonfree/libflashplayer.so /usr/lib/flashplugin-nonfree/libflashplayer.so - priority 50
[Code] ....
The same thing happens on both my Debian Jessie machines..
Any way to force the update? Need to update their flashplugin on Jessie?
Is there a way to disable all popup notifications in openSUSE while still having it check for updates periodically. What I would like is for the notification icon to appear when an update is available but to not popup the notification message, or worse, show that dialog stating that some software sources were not available when I'm on the corporate network.
Also, is it possible to disable some updates like the recent KDE one? I right click it and there is an option to disable notification of an update but the menu item is disabled.
I am having this problem on my old 64-bit Debian box (stable's Jessie) box, but nothing seems to fix it from what I saw online like in [URL] ... and other forums. Maybe I missed something?
I believe this has something to do with an mdadm update which was included in the release. When I configured the array, I didn't partition the disk devices, so maybe that has something to do with it. I am thinking of rebuilding the array and partitioning prior to build, but a quick fix would be referable.
And also something appears to have happened to the raid device since the update.
Prior to update, the array was /dev/md0 - now it is /dev/md/0 which is a symbolic link back to /dev/md0.
mdadm --detail --scan now reports /dev/md/0 where previously it reported /dev/md0
I created a new RAID1 array on a fresh system and immediately after the create, these messages appear at 5 minute intervals.
I recently installed mplayer I compiled from svn, and now Ubuntu's package manager is showing security patches. If I install these patches, will it mess up the version I compiled and installed?
It's starting to feel like Ubuntu 9.10 users have been left out in the cold, or at least forced to fend for themselves. I'm referring to the publicly-known vulnerabilities present in Firefox 3.5.9 (the version currently in use by Ubuntu 9.10). Ubuntu 10.04 (which uses Firefox 3.6.x instead of 3.5.x) users received their package updates June 29th, yet Ubuntu 9.10 seems to have been placed on the back burner. So basically, my questions are: Does anyone know what's going on? What's taking so long? Has security support for Firefox been terminated for Ubuntu 9.10?
PS: I can sort of understand how Ubuntu isn't able to provide Firefox patches for Ubuntu 9.04, as it uses Firefox 3.0.x (which isn't supported upstream anymore) and the distro release is so close to EOL. But, surely Ubuntu 9.10 doesn't need to be treated the same way, given that the 3.5.x branch it uses is still supported upstream and the distro release won't reach EOL until Q2 2011.
I was well aware of the KDE trinity project from the start. Its so that users can have KDE 3 X alongside 4 X. The lucid release is due soon. Anyway I did try some releases a while back. I would like to know whether this project is very actively developed? What I mean is do they devlop security updates and maintainance patches regularly? Are there any actual KDE developers involved? (Some Kubuntu developers are)
I have a very strange problem; when trying to apt-get update or aptitude update I get time out errors. At first it was resolving ipv6 adresses:
Cannot initiate the connection to ftp.litnet.lt:80 (2001:778::87). - connect (101: Network is unreachable) [IP: 2001:778::87 80] Err [URL] Cannot initiate the connection to security.debian.org:80 (2001:a78:5:1:216:35ff:fe7f:6ceb). - connect (101: Network is unreachable) [IP: 2001:a78:5:1:216:35ff:fe7f:6ceb 80] As my host does not have normal ipv6 support, i just tried to disable ipv6: echo net.ipv6.conf.all.disable_ipv6=1 > /etc/sysctl.d/disableipv6.conf
cc -pipe -Wall -DOPENSSL -O2 -g3 -ggdb -c -o md5.o md5.c md5.c:20:25: error: openssl/md5.h: No such file or directory md5.c: In function md5_mac: md5.c:28: error: MD5_CTX undeclared (first use in this function) md5.c:28: error: (Each undeclared identifier is reported only once md5.c:28: error: for each function it appears in.)
[Code].....
Running Ubuntu 9.10 (i386) with latest patches from update manager. If I try using the 4.2 archive I get the same result.
I have similar problems with aircrack-ng suite, but I'll leave that until later!
Can ossec be run from ubuntu with less notifications to mail only intrusions. i really dont wish to be notified of every single thing that goes on in my system. i only want to be notified of intrusions and anything else that would be of serious concern. can anyone tell me what setting i can do to achieve the goal in mind ?
When I reinstalled ubuntu I chose to encrypt my home folder (something that i've never done before) but now that I know it doesn't really make a difference i'd like to decrypt it because the .encryptfs folder is taking up so much space i'm getting notifications every time I log in.
Two days ago we started to receive the following message:
/etc/cron.daily/chkrootkit: The following suspicious files and directories were found: /lib/init/rw/.mdadm /lib/init/rw/.ramfs /lib/init/rw/.mdadm INFECTED (PORTS: 4369) You have 2 process hidden for ps command chkproc: Warning: Possible LKM Trojan installed
And about at the same time (a day before that) we have set up new rules for the queueing disciplines using 'tc' on our Debian lenny box (these rules are for some of the experiments we are carrying out). I have ran the chkrootkit manually and this message (as above) keeps appearing, while the rkhunter tool does not complain about these items. Could there be a connection between setting up the new qdisc's and the chkrootkit "INFECTED" messages?
I don't know why but my server is no longer successfully updating its security repositories when I run 'apt-get update' on my system.Some index files failed to download, they have been ignored, or old ones used instead.Did I mess something up? No changes have been made to the server and I ran 'apt-get clean' and that didn't really do much.
Just leads to a list of packages. Are these taken down and installed if needed? I take it these are installed from main component right?Is this just to let people know there's a new version in main? If you didn't have "deb http://security.debian.org/ distrib/updates main", wouldn't the updates be pulled from "deb http://whatever/debian distrib main" anyway when you did an apt-get update (by logical reasoning that they'd be new?)
Or is it that you can't detect new versions directly from main and you need the updates package to point out which ones have updated versions?
I installed the latest security update for squeeze. It entailed an update of the kernel. Now when it boots, it give continuous kernel error messages about "can't enumerate usb .... " I have a custom kernel compiled from source (not sure about the patch level) from the same kernel 2.6.32. It seems to work OK. Should I worry about the security of this custom kernel or should I try to recompile it? I don't really know how to do any patching of the kernel source.
I'm trying to manually install Squeeze/KDE - i.e. not the whole kitchen sink that comes with the DVDs but a cut-down version suited to my needs. Since it's a custom install, and since I'm no expert, I can't be sure (even after reading TFM, and browsing forums) wehether the problem I'm having is to do with KDE/debian, or with my install method. Anyway, the jist of the matter is that after several attempts to install debian/kde, each time using slightly different sets of packages, I either have sound in KDE notifications, but not elsewhere, or else everything starts okay, but after some untraced post-install tweak I lose sound to everthing except KDE notifications.
I'm certain that it's not simply a matter of not setting the sound levels high enough, as Wesnoth (one of the packages not making sounds) cannot be set in the preferences dialog to enable sounds (i.e. cannot place check marks in the sound preferences dialog). Other games are also without sound, and so are flash videos in iceweasel. Also, when I start systemsettings>multimedia all of the tests come up positive with the nice kde sound being made.I've installed all the phonon packages I can think of, with and without alsabase. I've also tried to use a different backend apart from xine, but other than that I'm stumped.
There is a notifications-daemon, which shows sometimes infos like "5 updates, 5 security issues". It is represented by "i" in the system tray bar.Unfortunately, I cannot read the whole text of the messages there. I tried to click on it, right click, drag and what ever...Right now I have a line there "In order to complete this upgrade,...". And I cannot read it completely. How do I work with these notifications? Btw, KDE is running.