Linux News for Mar 28, 2001
LinuxPR: CLIQ 2001 Set to Rock the Rockies!
(Mar 28, 2001, 23:34)
"Stellar speaker lineup will make this premiere event for the
Rocky Mountain region the best yet."
LinuxPR: SuSE Linux Releases SuSE Linux 7.1 PowerPC Edition
(Mar 28, 2001, 23:16)
"The PowerPC Edition of Europe's bestseller Linux available in
AllLinuxDevices PR: Sequiter Software announces support for CodeBase on Embedded Linux
(Mar 28, 2001, 23:15)
"Sequiter Software today announced full support for customers
using the CodeBase Database Engine to develop applications for
Embedded Linux systems."
LinuxPR: StressMy.com Announces Successful Deployment of LoanOrganizer.com Upgrade (Mar 28, 2001, 23:12)
"Downright Software announced that StressMy.com, its leading
LAMP (Linux, Apache, MySql, and Python) based testing solution,
successfully deployed LoanOrganizer.com's application upgrade."
SuSE Security Announcement: eperl (Mar 28, 2001, 22:26)
"Fumitoshi Ukai and Denis Barbier have found several potential
buffer overflows, which could lead to local privilege escalation if
installed setuid (note: it's not installed setuid per default) or
to remote compromise."
NetworkWorldFusion: Patent flap slows multilingual domain name plan (Mar 28, 2001, 22:14)
"Intellectual property claims have blindsided the Internet
Engineering Task Force and could derail the group's efforts to
develop a common scheme for supporting foreign-language domain
names across the Internet."
LWN: Singapore Linux Conference/LinuxWorld Singapore 2001 (Mar 28, 2001, 22:00)
"Now that the stock market craze is gone, the conference has
diminished to those who are already using Linux or are interested
in making money with Linux, that is, using Linux or other Open
Source software to make their companies more efficient, more
stable, more competitive, for less monetary outlay."
SuSE Security Announcement: joe (Mar 28, 2001, 21:52)
"An attacker could place a malicious joerc file in a public
writeable directory, like /tmp, to execute commands with the
privilege of any user (including root), which runs joe while being
in this directory."
DukeofURL: SuSE Linux 7.1 Review (Mar 28, 2001, 21:33)
"With their latest release, SuSE moves to the front of the pack.
SuSE Version 7.1 has emerged, incorporating features that users
have been clamoring for over the last few months."
Linux.com: Getting Started with Networking for Linux (Mar 28, 2001, 20:48)
"A network is made of several parts: physical wire and special
hardware is usually dependent on what type of connection media
you're using. An equally important component is the software that
"talks" over the network."
Red Hat Security Advisory: Updated Kerberos 5 and pam_krb5 packages available (Mar 28, 2001, 20:39)
"A race condition exists in libkrb4 which would allow a
malicious user to cause kerberized login services to overwrite the
contents of any file on the system. The destroyed file would
contain the kerberos credentials of an unsuspecting user who had
attempted to log in using the kerberized login service being
Conectiva Linux Security Announcement - sgml-tools (Mar 28, 2001, 20:29)
"Previous releases of the sgml-tools package create temporary
files with poor permissions, tipically allowing world-read
AllLinuxDevices: OEone To Build Operating Environment Platform Using Mozilla (Mar 28, 2001, 20:21)
"OEone Corporation, a leading software developer for a new class
of Internet devices, today announced that it is building its
Operating Environment platform on Mozilla Open-Source Internet
Linux Documentation Project Weekly News 2001-03-27 (Mar 28, 2001, 20:11)
"The Linux Documentation Project is developing free, high
quality documentation for the GNU/Linux operating system. This
includes the creation of HOWTOs and Guides, and collaboration with
other documentation groups."
Alan Cox: Linux 2.4.2-ac27 (Mar 28, 2001, 18:57)
Download links and changelog within.
Apache Today: Apache 2.0.15 released as an alpha (Mar 28, 2001, 18:03)
"This release is the first release to use the new release
process. This process allows the Apache developers to more easily
determine the quality of any release. Instead of tagging any
release as an alpha or beta from now on, all releases will be
available as numbered releases, and the release status will only be
available in the tarball name."
Community: The Aureal Linux Driver Petition (Mar 28, 2001, 18:00)
A reader wrote in to let us know about a petition drive for
Aureal sound chipsets. Beta Linux drivers were in progress when
Aureal folded not too long ago, and incompatibilities with VIA
chipsets requires access to driver source, now in the hands of
The Register: Risks from hybrid Linux / Windows virus low
(Mar 28, 2001, 16:33)
"David Millard, technical manger of Command Software (a seperate
anti-virus firm to Central Command), said there were fewer than 10
viruses that infect Linux systems and he said the bug should be
treated as a "proof of concept" rather than anything more
LinuxPlanet: .comment: Little-Iron Chef (Mar 28, 2001, 16:19)
When is Linux like "Iron Chef" and "Junkyard Wars"? When you're
spending your days playing with old hardware and a bleeding edge
distro. Dennis Powell picked up some old toys for a song and was
reminded after ten epic days of struggle that sometimes yesterday's
software is best for yesterday's hardware. Read about Dennis' visit
to the hardware boneyard, and learn why he says Linux distributions
can no longer claim to run on minimal hardware.
The Register: Highly destructive Linux worm mutating
(Mar 28, 2001, 15:31)
"The recently discovered Lion worm, which attacks Linux BIND
(DNS) servers, is turning out to be one nasty little package which
leaves infected victims with no choice but to re-format their
entire systems and rebuild from scratch."
Survey Results from SuSE: Users Believe Linux is more stable, 23% Will Consider Switch
(Mar 28, 2001, 13:53)
"German Linux company SuSE and market research firm TNS EMNID
have released some of the results of a survey that indicates 23
percent of the PC users interviewed will consider switching to
Linux when they upgrade their equipment."
The Register: MS proprietary tech undermines HailStorm - analyst
(Mar 28, 2001, 12:36)
A couple of days ago a reader asked "has the Kerberos solution
within Hailstorm become more open?" The Register says no and notes
Bloor Research, which comments that through Kerberos, Hailstorm
could be "one of the biggest lock-ins the industry has seen.
Effectively Microsoft will be able to exploit and leverage their
client server base straight through the data-center right the way
up to the cloud."
Australian IT: Restricting DVDs 'illegal' (Mar 28, 2001, 09:05)
"Regional restrictions on DVDs could be an anti-competitive
practice and a breach of the Trade Practices Act, the Australian
Competition and Consumer Commission has warned."
Yahoo/Reuters: First Virus to Infect Both Windows, Linux Emerges (Mar 28, 2001, 09:04)
"A computer virus that can infect PCs running either the
ubiquitous Windows operating system or the increasingly popular
Linux operating system emerged on Tuesday, which its discoverers
say is a world first."
The Register: WinXP Blade: MS' plan to kill off Linux Web servers (Mar 28, 2001, 09:03)
"It's what they're designed to kill that's most interesting
though - it's Linux....Blade servers are intended to be cheap,
slam-in-and-go boxes that Web hosting operations can just peel off
the roll (almost) and shove in whenever they need more server
ZDNet: SuSE 7.1 Professional Still in Minor Leagues (Mar 28, 2001, 09:03)
Jeremy Allison of the Samba team wrote in to let us know about
ZDNet's review of SuSE Linux 7.1. He writes: "The interesting thing
is they say Linux is still in the minor leagues as a desktop OS and
only recommend it for "Microsoft haters" and "cash strapped
companies" but they give no *reasons* for saying this, other than
"the cost of retraining from Windows would be prohibitive."
Immunix OS Security Advisory: kernel (Mar 28, 2001, 08:53)
"The 2.2.19 kernel release fixes numerous security problems
including the ptrace/execve race condition bug."
Conectiva Linux Security Announcement - licq (Mar 28, 2001, 07:49)
"Previous versions have two vulnerabilities that could be
exploited by a remote attacker to execute arbitrary commands on the
Linux-Mandrake Security Update Advisory: vim update (Mar 28, 2001, 07:43)
"Users could embed malicious VIM control codes into a file, and
as soon as any user opened that file in vim-enhanced or vim-X11
with the status line option enabled in .vimrc, the commands would
be executed as that user."