Menu
▾
▴
devil-linux-announce — just announcements (receive only)
You can subscribe to this list here.
| 2001 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(1) |
Nov
(3) |
Dec
(1) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2002 |
Jan
|
Feb
|
Mar
(1) |
Apr
|
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
(1) |
Oct
|
Nov
|
Dec
|
| 2003 |
Jan
|
Feb
(1) |
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(3) |
Nov
(2) |
Dec
(2) |
| 2004 |
Jan
(1) |
Feb
|
Mar
(3) |
Apr
(1) |
May
|
Jun
(1) |
Jul
(1) |
Aug
|
Sep
(1) |
Oct
(1) |
Nov
(3) |
Dec
|
| 2005 |
Jan
(1) |
Feb
(1) |
Mar
(1) |
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
|
| 2006 |
Jan
|
Feb
(1) |
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
(2) |
Nov
(1) |
Dec
|
| 2007 |
Jan
(1) |
Feb
|
Mar
(1) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
|
| 2008 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2009 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(1) |
| 2010 |
Jan
|
Feb
|
Mar
(1) |
Apr
|
May
|
Jun
(1) |
Jul
|
Aug
|
Sep
|
Oct
(1) |
Nov
(1) |
Dec
(1) |
| 2011 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(2) |
| 2012 |
Jan
|
Feb
(1) |
Mar
(2) |
Apr
(1) |
May
(1) |
Jun
|
Jul
|
Aug
(1) |
Sep
|
Oct
|
Nov
|
Dec
(1) |
| 2014 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(1) |
| 2015 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2016 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
(1) |
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2017 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2018 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Heiko Z. <he...@zu...> - 2006-11-05 05:58:31
|
Devil-Linux 1.2.11 is available for download ! Change highlights: Kernel 2.4.33.3, many program updates, better NFS and USB card reader support, updated all perl modules and added all modules required by spamassassin, ocr plugins can now be used with spamassassin, corrected the location of varios binaries and many more other changes (see the changelog for details) -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2006-10-20 12:53:18
|
Thank you for your feedback Victor.
I would appreciate if you could respond to your post on full-disclosure
and confirm that there was no problem with Devil-Linux. We need to limit
the damage this post has already caused.
I forwarded your email to our mailinglist, since non-subscriber emails get
deleted.
Thanks
Heiko
---------------------------- Original Message ----------------------------
Subject: Re: false accusations
From: "Victor Grishchenko" <gr...@pl...>
Date: Fri, October 20, 2006 04:57
To: "Heiko Zuerker" <he...@zu...>
Cc: dev...@li...
dev...@li...
dev...@li...
--------------------------------------------------------------------------
Hi Heiko.
On 19.10.2006, at 23:02, Heiko Zuerker wrote:
> I am the project leader of Devil-Linux.
> First of all our website is up and was not down at any time.
It was a coincidence; our proxy cached zero-sized reply for some
unknown reason.
> I don't know how this bot got on your system, but what you're
> writing does
> not make any sense.
> 1. There's no bot included in the DL sources
Yes, sorry. We had an intrusion.
> 2. I can never have been compiled on a running DL system, because
> there
> are no compilers included.
Indeed. The intruder downloaded a tar both with binaries and sources.
We mistakenly decided that he compiled it right on the site.
> 3. It can only have been introduced (compiled from source as you
> say) if
> the machine you compiled DL on, was compromised.
Unlikely. The intruder's bash_history from the DL host is attached.
> 4. The location you specify (/shm) is a ramdisk. So it must be
> copied onto
> the system after it boots up. This can only be the case if you have
> the
> system wide open and somebody can log in easily.
Yes. Most probably he logged in using public key login from another
intranet host. We found a DMZ host which is the most probable initial
point of the intrusion. Also, we've "seized" a ton of haxor tools.
The intrusion chain was non-obvious, so we mistakenly suspected DL.
The mail was sent to full-disclosure mostly because the DL site
appeared "down".
There are no problems with DevilLinux distro.
My excuses!
Victor
--
Regards
Heiko Zuerker
http://www.devil-linux.org
|
|
From: Heiko Z. <he...@zu...> - 2006-10-19 17:02:47
|
Hi Victor, Victor Grishchenko <gritzko <at> plotinka.ru> writes: > While building and testing a customized version of DevilLinux router > distro I found an IRC bot onboard. As far as I understood, it was > EnergyMech compiled from source right there plus some executable named > "TODO" (for camouflage purposes). The stuff unfolds at /shm/sshd/ and > runs somehow. Sadly, I had no time for detailed investigation. It leaves > an overall impression of script kiddie's work. > Last days DevilLinux website seems to be dead. I am the project leader of Devil-Linux. First of all our website is up and was not down at any time. I don't know how this bot got on your system, but what you're writing does not make any sense. 1. There's no bot included in the DL sources 2. I can never have been compiled on a running DL system, because there are no compilers included. 3. It can only have been introduced (compiled from source as you say) if the machine you compiled DL on, was compromised. 4. The location you specify (/shm) is a ramdisk. So it must be copied onto the system after it boots up. This can only be the case if you have the system wide open and somebody can log in easily. 5. I verified the official 1.2.10 release and there's no bot to be seen. So it seems the problem does not like with Devil-Linux, but rather with your own system. Please stop spreading accusations like this, especially without properly analyzing the issue first. Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Bruce S. <bw...@ar...> - 2006-07-12 12:52:15
|
I'm proud to announce v1.2.10 of Devil-Linux has been released. This release includes many new packages, updates to newer versions for many existing packages, and various bug fixes. You may download it immediately from Sourceforge.net or the Devil-Linux FTP mirror sites. - BS |
|
From: Heiko Z. <he...@zu...> - 2006-02-04 16:57:24
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello everybody, we're in desperate search for a new main FTP server for Devil-Linux. If you got a few gigabytes diskspace and traffic to spare, can use ftp.devil-linux.org as the address and you're certain you can provide this service for years, then please contact me under he...@zu... - -- Regards Heiko Zuerker http://www.devil-linux.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iEYEARECAAYFAkPk3OkACgkQUcytMSbs+YU2PwCfdMdtvnSsbXCMw/kXvuIoaV5K +S8AnjlT0AFTdzH2Cy0TLP6IPdDsSaej =IWpO -----END PGP SIGNATURE----- |
|
From: Heiko Z. <he...@zu...> - 2005-11-17 02:08:58
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I'm proud to announce v1.2.8 of Devil-Linux. Save-config now works again with FAT media and various programs were updated. See the changelog for details. - -- Regards Heiko Zuerker http://www.devil-linux.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQFDe+YoUcytMSbs+YURAuMdAJ9pcVW1/OTmZ2DSFyP+pu+x9PYVLwCfaYsV gi1caKBoRisHy6OgA1csCtE= =1Emd -----END PGP SIGNATURE----- |
|
From: Heiko Z. <he...@zu...> - 2005-07-23 01:57:58
|
I'm proud to announce v1.2.6 of Devil-Linux. The changes include Kernel 2.4.31, various program updates and the addition of missing netfilter modules. See changelog for details. -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2005-03-18 02:43:46
|
I'm proud to announce v1.2.4 of Devil-Linux. The changes include a critical security fix for PAX, fixes for serial console support, various program updates and a few new Perl modules. See the changelog for details. -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2005-02-08 03:24:20
|
I'm proud to announce v1.2.3 of Devil-Linux. The changes include Kernel 2.4.29, addition of a tftp server, serial console support for install-on-usb, many program updates and many other changes. See the changelog for details. -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2005-01-04 02:16:14
|
I'm proud to announce v1.2.2 of Devil-Linux. The changes include nss_ldap support, ifenslave, , fixed init scripts, many program updates, and many other changes. See the changelog for details. -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Bruce S. <bw...@ar...> - 2004-11-29 03:52:13
|
Beginning with version 1.2.1 of Devil-Linux, the official precompiled packages available for download have changed. Now available are: o) i486 single processor o) i586 SMP o) i686 SMP - server edition. The new "server edition" is almost the same software selections as the others, with the exception that "grsecurity" is not included. This is because grsecurity has been known to cause problems by killing some server processes. Because of expected lower demand for the i486 package, it will not be available on sourceforge mirrors. It is only on ftp.devil-linux.org and other Devil-Linux mirror sites. -- Regards Bruce Smith http://www.devil-linux.org |
|
From: Bruce S. <bw...@ar...> - 2004-11-29 03:22:42
|
I'm proud to announce the release of Devil-Linux v1.2.1. The changes include Kernel 2.4.28, enabled sasl+ldap+mysql for postfix, dramatically reduced size of etc.tar.bz2, many program updates, and many other changes. See changelog for complete details. -- Regards Bruce Smith http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2004-11-19 01:06:40
|
I'm happy to announce that we're finally able to offer you commercial support for those users located in North America. <http://www.pantek.com/linux.php> The Pantek Team of world class Linux engineers provides expert technical support and security services for Devil-Linux and a wide range of Linux and Open Source software applications, distributions, and systems. Services are available 24/7/365, and a one hour response time is available for mission-critical emergency situations. Pantek has been supporting the open source community, as well as enterprises embracing the open source philosophy, since 1995. -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2004-10-17 01:48:10
|
I'm proud to announce v1.2 of Devil-Linux. The changes include Kernel 2.4.27, many program updates, printing support,32 MB systems are supported again, Apache HTTP Servr, PHP, and many many other changes. See the changelog for details. -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2004-09-11 20:37:21
|
Hello everybody, Devil-Linux v1.2-RC1 is available for download. This release brings Kernel 2.4.27 and many progam updates, furthermore DL now runs fine again on systems with only 32 MB of RAM. See the Changelog at the end of this email for details. -- Regards Heiko Zuerker http://www.devil-linux.org 1.2rc1 - updated loop-AES to v2.2a - added perl GD library v2.16 - DL now works fine again on 32 MB systems - unpacking of /var now uses less memory during uncompression - save-config now uses less memory during compression - removed squidguard blacklist (has to be freshly downloaded anyway) - removed clamav virus signatures (has to be freshly downloaded anyway) - updated ncftp to 3.1.8 (bs) - added mpeg_encode for motion to create movies (bs) - updated rsync to v2.6.2 - updated openldap to v2.2.15 - replace patch-o-matic with patch-o-matic-ng 20040823 - updated iptables to v1.2.11 - added missing squid configuration files - removed support for updating the Philips Webcam driver (development is now discontinued) - updated RFC2385 patch to correctly apply under kernel 2.4.27 - updated ebtables patch to v7 - updated gradm to v2.0.1 - updated grsecurity-2.0.1 to v2.4.27 - updated linux to v2.4.27 - updated frox to v0.7.15 - updated syslinux to v2.11 - create build time log as csv file ( tmp/LOGS/build_time.csv ) - added missing openssl and iconv extensions to php - updated openssh to v3.9p1 - updated cdrtools to v2.01a37 - updated clamav to v0.75.1 - updated samba to v3.0.6 - updated hdparm to v5.6 - updated busybox to v1.0rc3 - updated Mail-SpamAssassin to v2.64 - updated apcupsd to v3.10.15 - updated automake to v1.9 - updated distcc to v2.17 - updated dnsmasq to v2.13 - updated e100 to v3.0.27 - updated e1000 to v5.3.19 - updated ipsec-tools to v0.4b1 - updated lftp to v3.0.7 - updated libpng to v1.2.6rc5 - updated libtool to v1.5.8 - updated procps to v3.2.3 - updated python-ldap to v2.0.2 - updated rrdtool to v1.0.49 - updated sagator to v0.5.2 - updated sysstat to v5.0.6 - use correct ebtables kernel patch (module was missing) - auto-select /etc/init.d/boot.local during upgrades - process /etc/sysctl.conf on boot if it exists (bs) |
|
From: Heiko Z. <he...@zu...> - 2004-07-31 16:26:21
|
Hello everybody , I'm proud to announce Devil-Linux v1.2 Beta 2 ! The new release fixes all the reported problems from the previous Beta and adds various program updates. Get it from one of our download locations, you'll like it ! Please report any problems/suggestions to our mailinglists. Heiko http://www.devil-linux.org 1.2b2 - updated heartbeat to v1.2.2 - updated dnsmasq to v2.10 - updated cyrus-imapd to v2.2.7 - updated clamav to 0.75 - updated cyrus-sasl to 2.1.19 - updated distcc to 2.16 - updated dovecot to 0.99.10.7 - updated gd to 2.0.28 - updated libxml2 to 2.6.11 - updated libxslt to 1.1.8 - updated pcmcia-cs to 3.2.8 - updated php to 4.3.8 - updated procps to 3.2.2 - updated razor-agents to 2.61 - updated samba to 3.0.5 - updated sed to 4.1.1 - updated shorewall to 2.0.6 - added sample jail configuration for seti@home - clamav prints success if database was updated or is up-to-date (Heiko / Roland Pabel) - cosmetic fixes of boot message (Heiko / Roland Pabel) - updated apache httpd to v2.0.50 - updated thttpd to v2.25b - updated ipac-ng to v1.30 - updated openswan to v1.0.6 - updated nano to v1.2.4 - updated usb id database - updated pci id database - updated hostap-driver to v0.1.3 - updated hostap-utils to v0.1.3 - updated hostapd to v0.1.3 - updated mysql to v4.0.20 - updated snort to v2.1.3 - added script to execute files in /etc/cron.{hourly,daily,weekly,monthly} - updated perl to v5.8.4 - updated dhcpd to v3.0.1rc14 - updated cdrtools to v2.01a32 - replaced super-freeswan with openswan v1.0.5 - added kernel patch for 2.4.26 to close the clear_cpu vulnerability - alsa-driver init script now supports saving/restoring of mixer settings (Heiko / Roland Pabel) - custom-cd now correctly used ziso format (Heiko / Roberto) - updated syslinux to v2.10 - updated sed to v4.1 - updated pptpd to v1.2.1 - updated postfix to v2.1.3 - updated ipac-ng to v1.29 - updated dovecot 0.99.10.6 - updated dnsmasq to v2.9 - updated cyrus-imapd to v2.2.6 - updated sagator to v0.5.0 - removed rpm from standard ISO - hotplug init script can now be disabled (Heiko + Holger Mueller) - heartbeat init script can now be disabled (Heiko + Holger Mueller) - added missing directory /var/log/samba (Heiko + Holger Mueller) - postgresql: fixed problem if you move the PGDATA dir to another location (Heiko + Holger Mueller) - ez-ipupdate: fixed typo, should be started as daemon and after named/dnsmasq (Heiko + Holger Mueller) - added traceroute fix for -s parameter (Heiko + Peter Jannesen) - postfix jail now links /var/spool/postfix correctly (Heiko / Moray McConnachie) - added new command LINKROOT to jail configs (Heiko / Moray McConnachie) - updated openvpn to v1.6.0 - updated vim to v6.3 - updated sysstat to v5.0.5 - updated shfs to v0.35 - updated mdadm to v1.6.0 - updated LOOP-AES v2.1b - updated lm_sensors to v2.8.7 - updated i2c to v2.8.7 - updated grub to v0.95 - updated gnugk to 2.0.8 - updated eagle-usb to v1.9.8 - updated cyrus-imapd to v2.2.5 - updated cvs to v1.12.9 - updated clamav to v0.73 - updated bridge-utils to v1.0.4 - updated lftp to 3.0.6 (bs) - updated lftp to 3.0.5 (bs) - security patch for squid NTLM module (bs) |
|
From: Heiko Z. <he...@zu...> - 2004-06-04 02:11:22
|
... something happend to our website: http://www.devil-linux.org Regards DL Team |
|
From: Heiko Z. <he...@zu...> - 2004-04-17 22:41:17
|
Hello everybody, I just uploaded Devil-Linux v1.0.6 to the FTP and Sourceforge servers. cu Heiko 1.0.6 - added latest mremap and vmalloc kernel patches - fixed kernel ext3 info leak - fixed kernel iso9660 vulnerability - disabled netfilter optimization patches in the default profile as the pptp nat- and conntrack modules is killing the machine with them applied (fl) - fixed a long standing problem in that the netfilter patches did not get applied (fl) |
|
From: Heiko Z. <he...@zu...> - 2004-03-29 19:33:31
|
Hello everybody, we're currently preparing a new website for DL and we're looking for companies or organizations who would be interested to be listed as references. It would be awesome if some of you could even write a short testimonial, which we can post. Just a few sentences how awesome DL is and for what you use it. Please reply to me directly, since this is a read-only mailinglist. Thanks for your help! -- Regards Heiko Zuerker http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2004-03-20 22:26:19
|
Howdy folks, Devil-Linux 1.0.5a is available for download. The only change in this release is the update to OpenSSL v0.9.7d to close the latest vulnerability. cu Heiko http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2004-03-16 01:56:18
|
Howdy folks, Devil-Linux 1.0.5 is available for download. The changes are the following: - don't try to restart klogd when doing a "/etc/init.d/syslog reload" - updated bind to v9.2.3 (Heiko / Oliver Jehle) - updated linux-wlan-ng to v0.2.1-pre16 - added Super-FreeS/WAN v1.99.8 - removed the standard FreeS/WAN + Patches - added Kernel patch to fix new mremap vulnerability - added Kernel patch for "Rusty's broken brain" error/failure. - IPv6 is now compiled as modules - update_src now checks the md5 checksums of the files - updated zebra to 0.94 (fl / compile testing by Thomas Eder) - menuconfig now correctly sets any missing list values in the config file - fixed named start problem when jail disabled (fl) cu Heiko http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2004-01-06 22:31:25
|
Howdy folks, due to the new Kernel vulnerability I released version 1.0.4 of Devil-Linux. http://www.devil-linux.org Regards Heiko 1.0.4 - removed gcc, binutils, distcc from standard - backported Kernel 2.4.24 patches (rtc info leak, mremap vulnerability) - upgrade-config now correctly sets directory permissions and owner/group - jail script has new command DELETE - domino jail script now empties the lib and etc directories before creating the jail - fixed the corner case when an empty directory is being copied to the jail dir (fl) - postfix jail script now empties the lib and etc directories before creating the jail - better handling of subdirectories & links in jail script (fl) - stunnel was missing on the CD - upgrade-config now correctly handles symlinks |
|
From: Heiko Z. <he...@zu...> - 2003-12-29 16:16:18
|
Hello everybody, we are currently reviewing our donations and want to create a list of all donations we received so far. To make sure our data is accurate, please respond to me personally ( he...@de... ) when you donated hardware, money or bought a CD (including which one) in the past. If you prefer to stay anonymous, just mention this in your reply email and we will respect this. Thank you for your ongoing support ! Heiko |
|
From: Heiko Z. <he...@zu...> - 2003-12-22 02:51:29
|
Hello everybody, it's time for another maintenance release of Devil-Linux. We mainly updated some sources because of vulnerabilities and fixed some minor issues. Here are the details: - jail script now works fine with subdirectories - updated zlib to v1.2.1 - updated vsftpd to v1.2.1 - updated sagator to v20031201 - updated pcmcia-cs to v3.2.7 - updated lftp to v2.6.10 - updated iANS to v2.3.63b - updated e1000 to v5.2.22 - updated e100 to v2.3.33 - updated cyrus-sasl to v2.1.17 - updated cyrus-imapd to v2.1.16 - updated SpamAssassin to v2.61 - updated cvs to v1.12.4 - ownership of /etc isn't changed anymore to root during boot - updated poptop to v1.1.4b4 - updated Kernel mppe patch (fixes pptp problems) - added kernel patch against do_brk vulnerability - updated openvpn to v1.5.0 - fixed dhcrelay init script Download your version as usual from one of our FTP mirrors or from Sourceforge. cu Heiko http://www.devil-linux.org |
|
From: Heiko Z. <he...@zu...> - 2003-11-24 22:52:37
|
Hello everybody, version 1.0.2b of Devil-Linux ( http://www.devil-linux.org ) is available, which fixes a bunch of bugs and adds support for older computers which require ISAPNP support. Regards Heiko 1.0.2b - added missing file upgrade-config - updated iptables to v1.29-cvs-20031119 (fixes problem with stack smashing protector) 1.0.2 - updated ppp to cvs-20031002 and applied debian patches (except ATM) - enabled basic support for ATM in Kernel (Note: no drivers or full support yet!) - updated wget to v1.9.1 - added ebtables v2.0.6 - added ebtables patch ebtables-brnf-3_vs_2.4.22.diff (now you can build a bridging firewall again) - added group users - removed /etc/logrotate.d/logrotate.cron - updated snort to v2.0.4 - updated sagator to v20031031 - updated clamav to v0.65 - updated findutils to v4.1.20 - added isapnptools v1.26 - locate uses now correct directory /var/locatedb - ISAPNP support is now directly on kernel (no more module) - added EISA support to the kernel - added menu driven configuration update (bs) - updated vlan to v1.8 - updated mdadm to v1.40 - updated syslog-ng to v1.60rc4 - updated libol to v0.3.11 - updated iptables to v1.2.9 - updated libxml2 to v2.6.2 - update binutils to v2.14 1.0.1 - fixed setup to configure NIC's with correct BROADCAST address. (bs) - added ipcalc for setup program (bs) - disabled stack smashing protector for iptables - updated thttpd to v2.24 |
