[TriLUG] The Black Magic of Updating

Sinner from the Prairy sinner at escomposlinux.org
Fri Jul 5 11:51:51 EDT 2002


Hi there,

Recently,a  series of flaws have been discovered on Apache, OpenSSH, 
bind, bitchX... This means that you need to update your machine *right 
now*, unless you want to be "owned"  by root-kits/scipt kiddies/ 
blackhat hackers/crackers.

The danger is real. Fortunately, it's (fairly) easy to keep your system 
up to date. How do you update your machine? This is 
distribution-dependant.

Red Hat users surely know and use up2date, either with RedHatNetwork or 
with Current. Check your system needs at https://rhn.redhat.com/

Debian users should know how to keep their system updated with "apt-get 
update".  Check your debian advisory: http://www.debian.org/security/

Mandrake users should use the MandrakeUpdate[*]  utility...except in 
Kernel updates. A good explanation on Mandrake updating can be found 
here:
http://www.mandrakesecure.net/en/docs/magic.php

The advisories can be found here: 
http://www.mandrakelinux.com/en/security/mdk-updates.php3?dis=8.2

[*] MandrakeUpdate utility can be called directly through the command 
(as root, on an xterm) "MandrakeUpdate" or through thr Mandrake 
Software Manager "rpmrake", clicking on the "Mandrake Update" icon.

Because some Mandrake updating sources do not seem to be working, I can 
tell you my current configuration:

Type of Source: Security Updates
SourceName: Security82
URL: 
ftp://mirrors.secsup.org/pub/linux/mandrake/Mandrake/updates/8.2/RPMS

Relative path to synthesis or hdlist:
../base/hdlist.cz

For SuSE users, YAST2 will solve the update process.



Anyway, any other distribution update method that you can share?



Salut,
Sinner
-- 
http://www.ibiblio.org/sinner/     Linux User # 89976
Running on Mandrake 8.2 - Kernel  2.4.18-6mdk     Linux Machine # 38068



More information about the TriLUG mailing list