Ubuntu Installation :: Keeping Software Updated For Security Reasons?
Jan 7, 2010
I've recently built a VM appliance using Ubuntu 8.04 that is given to customers for an easy deployment of our software. Ubuntu works great in a VM and its perfect for our software (which is a web application).
Some customers are paranoid (rightfully so) and they will run a vulnerability assessment on the web application. A particular customers' assessment fails as it finds that the appliance isn't running the latest version the Apache web server. I thought that just running "apt-get upgrade" would upgrade all of the software packages to the latest so that failures in the assessment caused by outdated software packages would be resolved... However this is not the case...
I realize that there is a probably a whole process for submitting/approving the latest versions of software packages in Ubuntu, that then get pushed to the repositories - But how does this work? What exactly does "apt-get upgrade" do if it doesnt upgrade packages to the latest?
For example: I need Apache 2.2.11 to fix a particular vulnerability. But when running apt-get upgrade, it doesnt actually upgrade the Apache version number (or any of the other packages). I'm stuck on Apache 2.2.8, and I can't find a .DEB installer for 2.2.11 or later.
View 5 Replies
ADVERTISEMENT
Jul 1, 2010
I was trying to install subversion on my machine which have lenny installed on it but when I tried to forward port 22. I got a message connection refused and when I tried to open it in iceweasel it shown me that the port has been restricted for security reasons. I wish to enable it but don't know how to.
View 1 Replies
View Related
Jul 19, 2010
I'm going to install Slackware 13.1 soon and I may also install the 32-bit compatibility libraries from Eric (Alien BoB).I'd like confirmation on the process of updating multilib Slackware when there's a security patch. I'm talking about running the -stable branch, by the way.Under the normal methods of updating (e.g. 'slackpkg upgrade-all' or using the script I developed to download a local mirror of the patches directory and install from there, or even doing it by hand), the regular 64-bit packages will get updated.However, the 32-bit compatibility versions of those files won't get updated. Right?So I'll need to download the new 32-bit patches, run the convertpkg-compat32 script on them, and then upgradepkg the new files.
View 8 Replies
View Related
Mar 10, 2010
Now a dayz I am observing that mUbuntu performance was not satisfactory. My ubuntu is daily up to date. What was the reasons for my Ubuntu becoming slow?
View 2 Replies
View Related
Mar 3, 2011
i updated both browsers i have and lost my secure log-in pages (no padlocks showing ) concerning different Web mail accounts.Just before i did these updates i checked an unrelated thing on-line regarding my sound card of which i kept a copy of and got this message below :
!!ALSA/HDA dmesg
!!------------------
[ 12.762633] cfg80211: Calling CRDA for country: AM
[code]....
View 2 Replies
View Related
Sep 26, 2010
I know how to forward ports in my router. Now I need to open a port to help with testing a project and no matter what I've tried, every port under 1055 shows up as stealthed (with 1-71 closed) according to Shields Up! I'm happy to run it at a port > 1024, but whatever I try also shows up stealthed. I even tried (briefly) turning on DMZ and still the same thing. My ISP swears that they only block port 80, 21 and 25, none of which I'm trying to use. UFW status reports inactive and I'm not using firestarter. I'm not running any other server (apache, light speed etc). If it's not my router and it's not my ISP, and there's no other server apps running, then that kind of leaves Ubuntu as far as I can see,
View 8 Replies
View Related
Mar 29, 2011
right now i have vsftpd server installed for FTP access. I originally set it up for both FTP and SFTP, but found that SFTP disregarded any and all permission settings and user jailing that i had set up... so I am switching to just being standard FTP
so here is what's happening:
i've tried to disable SFTP in the sshd_config file, but i am still able to log into the ftp server under sftp through port 22 (which normally is ssh?) i've tried all kinds of things short of just blocking port 22, however I would prefer to be able to remote into my server via Putty (which has access restriction to ONLY allow my admin user account over ssh)..
View 9 Replies
View Related
Jun 12, 2010
Intrepid Ibex (U8.10) is what I am using presently and I would like to know if there are measures that I can take to prevent my ISP from keeping data that flows between my PC and it.
I am living in Australia, I am wanting to keep the bastards (read: Australian Government) ignorant about what I use my PC for.
Its them storing any of my personal information that I am worried about, but if I can keep my history from them completely, even better...
View 9 Replies
View Related
Mar 27, 2011
There was a security update (to fix compromised HTTPS certificates) to Chromium on 17 March (10.0.648.151) but my Chromium still hasn't updated. Did Ubuntu drop the ball here or is this just affecting my box? I'm considering switching to Google Chrome--to get security updates promptly.
View 9 Replies
View Related
Mar 26, 2011
I synchronise my data disk to a backup disk daily. Yesterday I noticed that rsync listed in its output my password-managers directory, which contains an old Keepass database and other Windows password programs I used long ago. I haven't accessed this directory in ages, so I was wondering why rsync felt the need to list itthe directories it updated.Modification dates and last accessed dates are what I would expect; nothing recen
View 9 Replies
View Related
Apr 1, 2010
My desktop (the system AIDE runs on) is reguarly updated, and the file output can become enormous, making it hard, if not impossible, to track down out of place files. I have recently thought of uninstalling it since I can't tell what is out of place and what isn't, but before I do that I wanted to ask everyones opinion regarding what would be the best way to handle such a program on a desktop that has some core files changed reguarly. This sytem is running Gentoo, so updates affect a number of directories.
View 6 Replies
View Related
Oct 5, 2010
I'm on the Slackware Security mailing list and I check the Slackware Security Advisory page daily because the mailing list, for me at least, is unreliable. After Firefox nagged me about a security update, I went to one of the FTP mirrors to check for an update and the Firefox update was there, but it still hasn't shown up on the official Slackware Security update page.
View 7 Replies
View Related
Dec 6, 2010
I had 10.04 in my netbok but something happened, packages failed to install, all sorts of errors when shutting it down, kernel panic when switching on again so I've decided to just install it again. I've got 10.10 running from a LiveUSB drive right now and I'm going through the installer. I want to just tell it to use the exsting partitions, dont bother formatting, just install the new OS on top of the old one so I can keep the user documents etc How do I do this? I picked advanced partition management in the installer, pressed Change on sda1 and gave it a mount point of / but now the "format partition" is ticked and greyed out.. i dont want to format this partition, I just want to install to it
View 1 Replies
View Related
Mar 31, 2010
I've had a search through the forums but can't find what I'm looking for, I'm sure it's there and apologies for asking something that has undoubtedly been answered before. I'm running numerous Ubuntu 8 LTS web servers, with mysql, rails, nginx, etc etc and I was after some advice about keeping these servers up to date with security updates. I'm on the ubuntu security announcements mailing list, but I was hoping to find a way to automate the installation of any security updates.
View 3 Replies
View Related
Jul 28, 2010
I've finally had enough of Windows and have decided to go with Ubuntu. However I hope someone can help me with this query... I currently have a single hard drive which I have partitioned under Windows into two. The old C:drive holds software & the windows O/S and the D: drive is where I stored photos, documents, etc. Can you tell me if it is possible to install Ubuntu into the old C: partition and leave the d: partition in tact (for a few weeks to ensure I have backups of everything on here). Alternatively, if I add a new drive and install Ubuntu onto there, will I still be able to access the old D: partition (or would I need some kind of dual boot config)?
View 3 Replies
View Related
May 9, 2011
I have a 32g usb stick and I am trying to install Ubuntu on it. But I want to keep 16g as storage space so that I can have it as a normal USB storage for daily use. It's my understanding that I need to create 2 partition ( Since I want to use ext4 for the system which windows doesn't recognize?). But when I created two logical partition and installed ubuntu onto the second partition <sdc6>, I can't seem to boot into there,the screen stays on the white cursor blinking mode, and the usb isn't being read. Is there any way that I could do this? I just want half used as storage and half as Ubuntu system.
View 1 Replies
View Related
Aug 5, 2011
My web server does not currently run Suexec. All files within the /var/www directory are owned by vsftpd and belong to nogroup. Apparently, this setup causes issues with some scripts that attempt to upload files and change files, such as the SMF Forum package.
Here's some background information that goes into further details regarding the issues I'm having:[URL]..Why would uploading a file using PHP in SMF not work with the owner being vsftpd belonging to the nogroup when the folder has been chmod to 777? I tested my own simple PHP upload script, and it was able to upload a file without issues. Yet, I've been told that my server is improperly configured if I'm not using Suexec. Why is this? Also, if I did use Suexec, what creates the users? Would I have to add them manually, or would they be created automatically as users based on their FTP login and added as subusers to the vsftpd group? Why should I use Suexec? I don't understand what's wrong with my current setup. How does it work in terms of users? Are users created and just added to a subgroup, or are they created like normal user accounts on the actual server? Do they get their own /home/username directory as well? I'm so confused about Suexec. What I've read about it doesn't make sense.[URL]..
View 1 Replies
View Related
Jun 8, 2011
What are the benefits to upgrading to F15 from F14 if any? Has there been some huge step forward in performance, security or some other reason that makes it worth while to upgrade? I know many people make the move simply because they wish to have the latest and greatest, but is there any reason specifically to upgrade to the latest and greatest?
View 14 Replies
View Related
Oct 15, 2009
I have 3 cronjobs set up on my Unix server . Out of which 2 cron jobs run the same script but at different times and the other one runs another script.
So in the 2 jobs which are set to run PMDaily.sh for eg , One runs on Sunday at 8AM and the other runs monday to friday at 6 AM . How ever the Sunday cronjob works (runs through the crontab) but the Cron job set for Monday to Friday is not working. However manually if i run this script it workd perfectly.
Please let me know what could be the possible reasons for this?
View 2 Replies
View Related
Feb 15, 2011
when i try to run a program in linux it runs and prints some messages successfully but in the middle it shows the message 'Killed' and stops running. what may be the reasons for this..?
View 2 Replies
View Related
Oct 11, 2010
I have a server running an older version of Ubuntu and with /var stored on a separate partition on a separate hard drive. I am attempting to update Ubuntu to 10.04, but I still want to store /var on a separate partition and hard drive. However, I don't want to format the drive which currently contains /var, as it has important data.
Is there some way to have 10.04 set up the new /var on this separate drive at installation, without formatting the drive and losing the old /var?
View 1 Replies
View Related
May 29, 2010
I have 9.04 in my laptop and I want to make a clean install of Lynx.
My home partition is sda7 (ext4), so in the partition step during the install I'm telling the installer to use the partition as ext4 but don't format it (I'm explicitly checking sda6 as / mount point and set to format as ext4).
On the next step I see disabled options regarding the access to my home folder and "Require my password to log in and decrypt my home folder" is checked.
My current home partition is not an encrypted partition, so I am not sure of what will happen. I just want it to mount it and access it as Ext4, not encrypt it.
I also have a Private folder in my home partition, what will happen to it? Will I be able to mount it afterwards?
View 6 Replies
View Related
Sep 29, 2010
I'm currently running ubuntu on my netbook, and vista on my desktop. Earlier i had an ubuntu installation alongside my vista, this has resaulted in my desktop making a countdown at booting. After the countdown it boots up vista. So i'm aware that there still are som leftovers from my earlier umuntu adventures.... here is my objective: I want to keep my vista installation intact, BUT i need to clear all earlier grub and ubuntu installations...and finally I want to install a fresh ubuntu 10.04.
View 8 Replies
View Related
May 14, 2011
It's been about three days since I've made Ubuntu my OS and I'm quite surprised to see, when I tried it first via wubi, that it actually reads NTFS partitions.It made backing up easy for me though now is it still alright that I still keep them NTFS or should I now start converting them to ext4? Except for my external hard drive.and what's the difference with ext3 and ext4? I was shown these options when I tried formatting my hard drive.
My other hard drive has two partitions which was done when I installed windows a few years back..If I would to reformat should I combine these partitions into one and make new partitions via that?
View 4 Replies
View Related
Nov 4, 2010
I have NFS fileserver that has served me well for more than year. But recently I noticed that it has started to reboot on its own very frequently, almost once a day! It is most likely not a power related issue as I tried changing UPS/power sources, but no help!So my question is:Is there any log file where I can check which is causing the reboot? There may not be a single logfile, but I need some point to start the investigation!
View 3 Replies
View Related
Mar 4, 2010
I'd like to install Lucid on a spare hard drive I have, so I can do my bit for testing it. I have a feeling that if I just burn the latest alpha .iso and install from that, it will replace my current GRUB, whereas I would prefer to simply add the Lucid install as an option in my current GRUB.
Of course I might be wrong, I just wanted to check before I went ahead with it. I was unable to find the info I needed via searching.
View 6 Replies
View Related
May 2, 2009
Been away for awhile (Fedora 5 or 6 was what I last ran). Just downloaded Fedora10 and installed it on a drive here, running great, looking slick. What drove me back to Fedora (Linux) is my need to create a simulated webserver to locally test stuff without messing up my live site. I had successfully installed php and mysql, using the specific versions my host uses. I then downloaded the RPM of the specific apache instal, followed the install directions and ran into a snag. Last step, says, "$ PREFIX/bin/apachectl start". I did that and received an error. Tried just typing apachectl start, and it worked. Upon my surprise it loaded Apache 2.2 (mine was a 1.3 release), and of course is Fedora-branded.
My questions are as follows:
Do I know somehow how two versions of Apache on? How do I start up the 1.3 one if so?
If not - How can I remove the 2.2, and what will have become of the 1.3 I installed?
View 3 Replies
View Related
Jun 9, 2009
I'm wondering if anyone can give me some tips about this.I have very little fedora experiee and wanna start playing with it now.I'v bin using it for some short time a long ago but nothing much.Now I could use some help with this:Can I and how, instal Fedora11, while having Windows7 instaleed allready and then have them both with dual boot. I guess it should be possible but some tips / guide would be great so I don't kill my windows and have to reinstal all over again, as i wanna keep windows as main OS for work but have fedora to learn as well.By the way, I have 2x640Gb in raid0, 1st partition 100gb with Windows7 on it, and the rest on another partition. Both have data on them. If that means anything for instalation
View 9 Replies
View Related
Jan 6, 2010
My suspend-to-disk and suspend-to-RAM stopped working months ago. I've grasped at straws about why ever since, but I really don't think it's a software problem, because I've reinstalled my system (MEPIS) repeatedly. What sort of hardware failures could cause this? What should I be looking for? I notice that at boot, Linux always says "no resume image found," even if I left the system in suspension or hibernation. I can post parts of the dmesg if someone tells me what to look for; I can't display the whole thing because it's too long to fit here.
View 7 Replies
View Related
Apr 25, 2010
I want to upgrade my 9.10 from Wubi to a full install (my 30 gigs is almost filled) without losing my files and settings(like my panel apps and options). but how?
View 2 Replies
View Related
