What are openSuSE's plans as to the release of an rpm with openssl-0.8.9m which has the solution to the renegotiation man-in-the-middle attack, not just turning key renegotiation down?
As a companion to this version of openssl Apache HTTP 2.2.15 would be very desirable, as it incorporates a patch that allows - at the site's discretion - to refuse or accept the insecure "old-style" key renegotiation.
The network manager will ask me for my security key and it will not accept it. Instead when I use the show password feature to see what I typed in was correct, it shows something completely different than what I typed. For instance if my Key was :when it pops up and ask to for me to retype it again it shows something completely different in hex. Is there anyway I can use a different network manager?
View 8 Replies View RelatedUbuntu 10.04: no problems to connect to secured wifi networks. However, when trying to establish a connection to an insecure wifi after some time I get the message "disconnected, you are now offline" without ever having been connected. Once out of about 30 times I get a normal connection. My eeePC 1005HA is double boot and I can connect from WinXP without problems. There seems to be a DHCP timeout (see attached output of syslog). I have seen some posts about the same problem but none of them had a solution. I hate it to use WinXP just for the sake of connecting to the spot.
View 9 Replies View RelatedStill a flawed KnetworkManager in the released 11.3.No user control for cabled 10/100 lan ports. Yast config for the eth0 says it can have usercontrol by networkmanager. Oh no it doesn't.It seems to cater for wi-fi users only who get a "enable wireless" tickbox and "manage connections". At least you can stop and start it.Meanwhile cable users who might have a taskbar display for lan traffic can see stuff pouring in, or out and if it's something they don't want they can't do anything about it unless they pull the plug.
View 9 Replies View RelatedCan I make Yast/Ldap accept usernames that start with a number. All our current users have the format 09-first.last or 10-first.last etc.
View 2 Replies View Relatedi have two questions and thought that anyone here could have the answers.first things first,i want to make firewall accept a range of ports (say 8000:9000) because im using mpd process manager to make some parallel processing, does anyone know the command that satisfy this?
the second thing is, when i open a range of ports like that, it would put my system at risk if some bad guys somehow identifies this range, is there is anything that solves that matter(i.e. makes the firewall monitor the packet, if its an mpd accept if not drop)
How do I write a script to convert all DOS style backslashes to UNIX style slashes in a list of files /
View 3 Replies View Relatedwhich kind of package enables the notification bar ("(A) Connection Established I'm running Code: Select allLinux 3.16.0-4-amd64 #1 SMP Debian 3.16.7-ckt11-1+deb8u5 (2015-10-09) x86_64 GNU/Linux on two machines with i3 window manager but one have notifications in a box, the other one in a bar on the top of the screen. I would like two enable the "bar style" on the second machine as well.
View 4 Replies View RelatedUsing Opera 10.61 and 10.62, I find that any secure website I access, such as a bank, the lock icon in the address bar is replaced by a question mark. Clicking on it brings up a window, stating that the connection is not secure, that the server does not support TLS Renegotiation. Doing some internet searches for "opera tls renegotiation" brought me to a page at the Opera website, where they discuss this issue. The issue is generic, not limited to Opera, affecting the TLS protocol, and it potentially enables a man-in-the-middle to renegotiate a "secure" connection between a server and client, issuing own commands to the server. Opera has addressed the problem on the client end, but now servers need to be upgraded too. None of the HTTPS sites I have tried have upgraded their servers, if the information provided by the Opera browser is correct.
My questions: how feasible is such a MITM attack, what level of resources would such an attack require? What, if anything, would the attacker need to know about the client and/or server to mount the attack? Would I be better off using Firefox, or is Firefox simply oblivious of the problem and not issuing warnings for that reason?
I have just visited this page here, Updating openSUSE - openSUSE I have been trying to update my OpenSuSE system for a week now and I have absolutely no idea what causes this problem. The update would start but would stop right in the middle and refuse to install some pulseaudio(...) package... It would indicate that network is down while I am sure it is up.
I am behind a proxy and I have again and again made sure that the proxy settings are correct and alright. Since it downloads some of the packages in the start I believe my connection and settings are OK. Maybe the SuSE server is down, but not for a whole week, I don't think so. I would also like to mention that I have only tried updating through YaST GUI and I am, as of yet, unaware of any console or command-line methods of updating.
I really would like to update my system because I happen to be paranoid in matters of computer security. (Just kidding) But since I cannot install any updates it should mean I might have problem installing new software. So my digital life is literally crippled because of this problem.
I'm using 9.10 most recent updates. I want to connect to a wireless network and get a dialog box offering "WPA & WPA2 personal" as the only choice. The passphrase I was given is 6 letters but the "Connect" button does not light up until I get to 8 when entering wpa/wpa2.
Do I need to convert the passphrase somehow?
Atheros 9k and Linksys "Wirelss G router with SRX200".
I have a bunch of Ubuntu boxes on one subnet, 192.168.1.0. I have a Windows 7 box on another subnet, 192.168.2.0. I am able to ping and SSH to all servers on the .1 subnet except for one server, which I will call PITA. I will attempt to SSH to PITA, and it won't respond, nor does it respond to pings. I will the SSH to PITA from another of the test servers, successfully connect, and then when I SSH from my Windows 7 machine I can connect successfully. If I first connect via console to PITA and send some pings out (to anywhere, like 4.2.2.2), I can also connect from my Windows 7 machine. I've never seen anything like this.
One of the weird things is that I used PITA to create an image that I then used to create many of the other test servers, and they work fine, so I'm not sure what the problem is. I've checked /var/log/messages and syslog and there's nothing in them that indicates a problem. I've rebooted this server, restarted SSH, changed the IP in case it was conflicting with something else, forced an ARP update in case it was cached (since I had bonded the interfaces), cleared the ARP cache on my own machine, verified Network Manager is not installed...and I still have this issue.
Here are some network-related config:
/etc/network/interfaces
Quote:
# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).
# The loopback network interface
[code]....
Quote:
-A RH-Firewall-1-INPUT -s 10.12.0.0/16 -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
Ex- 10.12.0.0/16, 172.150.0.0/16, 192.168.20.0/24
How can we add multiple sources network address in the above INPUT chain?
I am trying to read the info for Groff using KDE Help Center. The paragraphs take turns in using monospace and sans-serif. There is no apparent logic behind this variability. Additionally, several lists are misplaced (not indented).
View 9 Replies View RelatedBack in the day when I was using openSUSE and KDE3 I really loved the way the menu entries were organized into submenus. (For example: the Multimedia menu used to have the following submenus: Audio, TV, Video, etc.) I've been using neither openSUSE nor KDE3 for more than a year (switched to Arch + KDE4).
Not that I have anything against openSUSE. On the contrary, I think it's a fantastic distro, but the time came when I needed to move on (going rolling release was what finally sold Arch to me). However, I have taken with me many of the things I learned to love on Suse. One of them was the menu's layout, which for me works better that vanilla kde's. What I would like to know is:
1) If that menu layout was something from KDE3 that got lost in the move to KDE4, or something SUSE added.
2) Which Suse package provides the layout (the default menu layout is given by menu files on /etc/xdg). I would like to take a look and copy it to my Arch install.
I have a Bluetooth connected to my desktop computer, it's on all the time, I use it to transfer files between PC and cell phone. I was searching Google about hacking Bluetooth and all I found was about hacking mobile devices. I don't care about my cell phone - it has nothing important, but I'm curious about my PC security. Can someone get access to my HDD via Bluetooth like it's possible via Wi-Fi?
View 5 Replies View RelatedAll of my folder icons changed to the Downloads icon, even new folders have the wrong default. The places icons I had to change manually
View 2 Replies View RelatedI just installed SUSE 11.3 on my PC and used KDE desktop. But the default color and style of the task manager bar looks not so good to me. It's a back and gray bar. How to change its color and style? Should I install something else or just do some settings? I look through the system setting but can not find a way. Could you kindly please tell me how to do that?
View 9 Replies View RelatedIf you set your mouse for double click is it possible to change cursor style for hover icons?Currently the cursor looks like it is going to do single click:This does not make sense. It should show regular cursorAnd another misbehavior for double click occurs in Power Applet.Sleep and Hibernate icons require single click, but Settings icon requires double click:
View 3 Replies View RelatedI'm trying to play with different control style at application settings-controlstyle, after change a little bit of settings, the desktop freeze nothing can click,so I goto control+alt+f2,hit control+alt +delete, after restart, It freeze again, so where it store the settings about that so I can change it to default control style from terminal only acess since dekstop freeze all the time?
View 2 Replies View RelatedI've configured iptables to act as a stateful firewall, but instead of simply rejecting packets I'd like to waste a potenial hackers time by droping any packet that would otherwise be returned. Are my rules sufficient or have I somehow opened myself up to an attacker by trying to write these rules myself?
View 3 Replies View RelatedWhen kupdate applet started up, it popped up this window:
Code:
Do you want to accept this repository signature?
package_id :dummy;0.0.1;i386;data
repository_name: KDE_4_Stable
key_url: [URL]
key_userid:KDE OBS Project <KDE@build.opensuse.org>
key_id: 27C070176F88BB2F
key_fingerprint: ...elided...
key_timestamp: Fri Apr 16 06:26:59 2010
type: gpg
What is this? Why am I getting it? Is it safe to accept? I edited the key fingerprint.
openSUSE 11.3 KDE 4.5.2. GTK app's, specifically firefox, do not accept KDE system colours despite "Apply colours to non-KDE4 applications" being set in System Settings. Ideas? TIA.
View 3 Replies View RelatedI recently ubgraded to ubuntu 9.10 from 9.04, but I had the same problem there. I can see the secure connections, but when I try to connect to them, it tries to connect, works at it for about a minute, and then asks for the password again. This just started a week ago or so. I am new with ubuntu, so while I know that there are terminal outputs I should probably post, I don't know which ones.
View 5 Replies View RelatedI have NVIDIA installed and I have the repo installed as well, but I have not made any changes to it. So why all of a sudden am I getting the following popup? Is it safe? Should I accept it?
Code:
Do you want to accept this repository signature?
package_id: dummy,0.0.1,i386,data
repository_name: NVIDIA_Repository_1
key_url: [URL]
key_userid:NVIDIA Corporation <linux-bugs@nvidia.com>
key_id: F5113243C66B6EAE
key_fingerprint: (I'm hiding this just in case it's a security risk)
key_timestamp: Thu Jun 15 12:13:18 2006
type: gpg
Also, why am I getting it now if it's from 2006?
Just installed SUSE11.3 and everything was ok until did initial online update. Following update, YAST will not accept root password when launched from KDE (have not tried other window managers). Dialog box is presented to enter root password. It reports back "invalid root password". But I can run yast or yast2 from command line (as root) and that seems to come up, but not all items seem to work.
I can log in as root with no problem. Only YAST will not accept my password. I'm running KDE on a Dell D610. Ran SUSE 11.0 for several years, absolutely no problem.
I'm running 64-bit 11.3 on a Dell 1535 laptop.At lunch today, the system booted-up as normal, then shut-down as normal. A handful of updates were installedduring that time.This evening, however, I arrive at the password splash screen, enter my password, and then the system churns a few seconds before resetting the splash screen. No error message, no "wrong password," just a normal splash screen. I tried going into Xen, the default 11.3 and failsafe -- same thing happened with each. When I navigated to the command line, my password worked fine, both for user and super-user.
View 9 Replies View RelatedI'm trying to alter the usb install so that I have a user with a password. Being careful I created a new user, added them to the admin group and tried to login.
View 1 Replies View RelatedThe login screen does not accept the password for users. Only the password for Root. The problem is not in the command line, but check the password in the screen. I have tried to change the password from the root and it is still the problem. What I can do?
View 2 Replies View RelatedI am trying to be a super user in terminal but I can't. I am sure that I type the correct password, I check also the caps lock button and the language. Also I can't go to the yast. note that the root password is exactly the same as user password
Code:
nobani@linux-m9c6:~> su
Password:
Permissions on the password database may be too restrictive.
su: incorrect password
nobani@linux-m9c6:~>
I am using KDE 4.3.5 on openSUSE11.2
