[TriLUG] The Black Magic of Updating
Sinner from the Prairy
sinner at escomposlinux.org
Fri Jul 5 11:51:51 EDT 2002
Hi there,
Recently,a series of flaws have been discovered on Apache, OpenSSH,
bind, bitchX... This means that you need to update your machine *right
now*, unless you want to be "owned" by root-kits/scipt kiddies/
blackhat hackers/crackers.
The danger is real. Fortunately, it's (fairly) easy to keep your system
up to date. How do you update your machine? This is
distribution-dependant.
Red Hat users surely know and use up2date, either with RedHatNetwork or
with Current. Check your system needs at https://rhn.redhat.com/
Debian users should know how to keep their system updated with "apt-get
update". Check your debian advisory: http://www.debian.org/security/
Mandrake users should use the MandrakeUpdate[*] utility...except in
Kernel updates. A good explanation on Mandrake updating can be found
here:
http://www.mandrakesecure.net/en/docs/magic.php
The advisories can be found here:
http://www.mandrakelinux.com/en/security/mdk-updates.php3?dis=8.2
[*] MandrakeUpdate utility can be called directly through the command
(as root, on an xterm) "MandrakeUpdate" or through thr Mandrake
Software Manager "rpmrake", clicking on the "Mandrake Update" icon.
Because some Mandrake updating sources do not seem to be working, I can
tell you my current configuration:
Type of Source: Security Updates
SourceName: Security82
URL:
ftp://mirrors.secsup.org/pub/linux/mandrake/Mandrake/updates/8.2/RPMS
Relative path to synthesis or hdlist:
../base/hdlist.cz
For SuSE users, YAST2 will solve the update process.
Anyway, any other distribution update method that you can share?
Salut,
Sinner
--
http://www.ibiblio.org/sinner/ Linux User # 89976
Running on Mandrake 8.2 - Kernel 2.4.18-6mdk Linux Machine # 38068
More information about the TriLUG
mailing list