From owner-freebsd-security@FreeBSD.ORG Sun Aug 12 16:34:55 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 1E2AC106566C for ; Sun, 12 Aug 2012 16:34:55 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: from mail-yx0-f182.google.com (mail-yx0-f182.google.com [209.85.213.182]) by mx1.freebsd.org (Postfix) with ESMTP id B3AF68FC0C for ; Sun, 12 Aug 2012 16:34:54 +0000 (UTC) Received: by yenl7 with SMTP id l7so3140416yen.13 for ; Sun, 12 Aug 2012 09:34:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dataix.net; s=rsa; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:content-transfer-encoding :in-reply-to; bh=HiZsO7hh/CeSiHp76XRH5OrzwfBcqG5VQ7PV1RrTIJg=; b=A6yO4RVieHPhBnBtGMCbf18wFpMbTy7QF61/BIqNxus6KCVUsHPdgjX2PFTA4qQwe3 Fm5QIWsfiUD/hit+gXu8nAhVCG9mcrdgSzL2xhKKhuMu6Ry6Rzw30TodRkWq2ntHMSqh cXuZGYRhi9dZ6OZ5Ay0+wmocfdFamPqC3lhz4= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:content-transfer-encoding :in-reply-to:x-gm-message-state; bh=HiZsO7hh/CeSiHp76XRH5OrzwfBcqG5VQ7PV1RrTIJg=; b=eyEE6PyZRcs3GY+RfPatc3Np25VXGetZUlKZaYEHhYfcg89FwTVv4aeDhwqFB/5pFr xN+/890tZ0YLQJd0Dt8HVukaI2L7T0bEOBNAk/dGfxq8edoctAM/chyne1Gdg9JCBokH FUiO5HP9gHQdc9HMRVqwjHPPH51I10RQGXNE2PqI3VOwusefg88Z/N0+NTEfziWsdazV Bsx53RdoUk4V5OeGGctGCGSXohmiCkkJQLMgqCPqU1dT0HF3wabWOP+U1lbWTM1LzrOd uep9NfsqOnvzputMF4KT53mHdLbymV3L6UofVFaK3pIzF8flNzOO8F7vgsXVi0L/wlmv I8eg== Received: by 10.42.100.203 with SMTP id b11mr1781275ico.38.1344789293642; Sun, 12 Aug 2012 09:34:53 -0700 (PDT) Received: from DataIX.net (adsl-99-181-144-179.dsl.klmzmi.sbcglobal.net. [99.181.144.179]) by mx.google.com with ESMTPS id hg1sm4318380igc.12.2012.08.12.09.34.52 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 12 Aug 2012 09:34:53 -0700 (PDT) Received: from DataIX.net (localhost [127.0.0.1]) by DataIX.net (8.14.5/8.14.5) with ESMTP id q7CGYodU089841 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 12 Aug 2012 12:34:50 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Received: (from jh@localhost) by DataIX.net (8.14.5/8.14.5/Submit) id q7CGYmEs089840; Sun, 12 Aug 2012 12:34:48 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Date: Sun, 12 Aug 2012 12:34:48 -0400 From: Jason Hellenthal To: Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= Message-ID: <20120812163448.GA88577@DataIX.net> References: <0B65D7562F9DA04FAC3F15C508BF67136B90E09E1F@ESESSCMS0355.eemea.ericsson.se> <001701cd7648$c2520350$46f609f0$@com> <5024f984.45ca320a.1838.4155SMTPIN_ADDED@mx.google.com> <86pq6xs0zb.fsf@ds4.des.no> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <86pq6xs0zb.fsf@ds4.des.no> X-Gm-Message-State: ALoCoQkR4xrO4R0o5relBPTZZMnVsGPlOsWwtcn3NsVvQuQEbJS9JQukz7vyd/ukSSkKTBzZEcaX Cc: freebsd-security@freebsd.org, Roberto , "Simon L. B. Nielsen" Subject: Re: getting the running patch level X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Aug 2012 16:34:55 -0000 On Sat, Aug 11, 2012 at 09:05:44PM +0200, Dag-Erling Smørgrav wrote: > "Simon L. B. Nielsen" writes: > > This has been discussed a number of time, but there are no nice and > > simple solution. > > There is a simple solution that, while not bulletproof, would work well > enough in most cases: have 'make installworld' create /etc/issue, which > would look like this: > > FreeBSD 9.0-RELEASE-p4 amd64/amd64 > Could I suggest... the same way that /etc/motd is already updated ? -- - (2^(N-1)) JJH48-ARIN From owner-freebsd-security@FreeBSD.ORG Sun Aug 12 17:39:19 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 226C21065672 for ; Sun, 12 Aug 2012 17:39:19 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: from mail-ob0-f182.google.com (mail-ob0-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id CC1C28FC15 for ; Sun, 12 Aug 2012 17:39:18 +0000 (UTC) Received: by obbun3 with SMTP id un3so7545024obb.13 for ; Sun, 12 Aug 2012 10:39:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dataix.net; s=rsa; h=date:from:to:cc:subject:message-id:mime-version:content-type :content-disposition:content-transfer-encoding; bh=+X779kYKEAZd4w5I4QEaoYXzaIZfMtwXyqq6huRl8kQ=; b=NRXwsS8iofUebhEU1xihmWfNe0pg9INbJPPQCLGeOi/QICz0tv6sHxwbP6FjL81WQM gPy6jhW3ye8xgTbUXRflQQf6ynKqaHhXNEaknnM3yz2fxNQ/9AsU+asoaPyPsiVo/oW3 oGMHhO/Rqxn7rffH6ydNKUOXzYw4Ej0ncJ3DI= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=date:from:to:cc:subject:message-id:mime-version:content-type :content-disposition:content-transfer-encoding:x-gm-message-state; bh=+X779kYKEAZd4w5I4QEaoYXzaIZfMtwXyqq6huRl8kQ=; b=GU9UKzN36ADbpTM1Wavubdwz2PIGdowTTZ2gHufRS6bHRSuliOyICH7lIIUr9Ng+Uj wATbc9LRrdEqAuLnxE4f4yJhMGMUDNWBuocshjgWuTkfTBkjePaiRAEM1qDF6pjRuR4K flFje5tRaBfijdU62Y81H6vb/6bYMPkXxScz1k8UU6lgDOwl6FzDA65aYYyv6g4PsOnx gwsdhWoUFHKFIfc+ENoePkh2GCuUM3vMVy/PCvgFY84lSlPz5XDHVlJBfSDgFXCVDkoE InnoCB+Xdxo69RpfMnRIDo+s+VNhaF+XfDGDkfMqil6sIcDqS09w+hMzfr+AryHvMww4 HghA== Received: by 10.50.46.232 with SMTP id y8mr3228304igm.57.1344793157631; Sun, 12 Aug 2012 10:39:17 -0700 (PDT) Received: from DataIX.net ([99.181.144.179]) by mx.google.com with ESMTPS id ua2sm9559550igb.7.2012.08.12.10.39.15 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 12 Aug 2012 10:39:16 -0700 (PDT) Received: from DataIX.net (localhost [127.0.0.1]) by DataIX.net (8.14.5/8.14.5) with ESMTP id q7CHdBfe021419 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 12 Aug 2012 13:39:11 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Received: (from jh@localhost) by DataIX.net (8.14.5/8.14.5/Submit) id q7CHdB8b021415; Sun, 12 Aug 2012 13:39:11 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Date: Sun, 12 Aug 2012 13:39:11 -0400 From: Jason Hellenthal To: freebsd-security@freebsd.org Message-ID: <20120812173910.GA17226@DataIX.net> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit X-Gm-Message-State: ALoCoQmO4Q26HJgOZ92aQa1GT7Z/I3JqGX/PsjDQjtRTE9YLBQ/OedybfHZwpwXHLqWU+gNG1kMG Cc: robertot@redix.it, postmaster@freebsd.org Subject: [robertot@redix.it: Please confirm your message] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Aug 2012 17:39:19 -0000 Could a clueful list admin take this d00f off the list... robertot@redix.it ----- Forwarded message from robertot@redix.it ----- Date: Sun, 12 Aug 2012 18:34:56 +0200 (CEST) From: robertot@redix.it To: jhellenthal@dataix.net Subject: Please confirm your message This message was created automatically by mail delivery software (TMDA). Your message attached below is being held because the address has not been verified. To release your message for delivery, please send an empty message to the following address, or use your mailer's "Reply" feature. robertot-confirm-1344789296.5815.4ff177@redix.it This confirmation verifies that your message is legitimate and not junk-mail. You should only have to confirm your address once. If you do not respond to this confirmation request within 14 days, your message will not be delivered. ==== Versione ITALIANO: ==== Questo e' un messaggio automatico (TMDA). Il tuo messaggio allegato e' stato bloccato perche' il mittente e' sconosciuto. Per permettere il recapito del tuo messaggio al destinatario, per favore invia un nuovo messaggio vuoto al seguente indirizzo: robertot-confirm-1344789296.5815.4ff177@redix.it oppure utilizza la funzione "Rispondi" del tuo programma di posta. Il messaggio di risposta permettera' il recapito del messaggio originale. Dovresti eseguire la conferma solo una volta. Se non riponderai a questa conferma entro 14 days, il messaggio originale non verra' consegnato al destinatario. Date: Sun, 12 Aug 2012 12:34:48 -0400 From: Jason Hellenthal To: Dag-Erling Smørgrav Cc: "Simon L. B. Nielsen" , freebsd-security@freebsd.org, Roberto Subject: Re: getting the running patch level On Sat, Aug 11, 2012 at 09:05:44PM +0200, Dag-Erling Smørgrav wrote: > "Simon L. B. Nielsen" writes: > > This has been discussed a number of time, but there are no nice and > > simple solution. > > There is a simple solution that, while not bulletproof, would work well > enough in most cases: have 'make installworld' create /etc/issue, which > would look like this: > > FreeBSD 9.0-RELEASE-p4 amd64/amd64 > Could I suggest... the same way that /etc/motd is already updated ? -- - (2^(N-1)) JJH48-ARIN ----- End forwarded message ----- -- - (2^(N-1)) JJH48-ARIN From owner-freebsd-security@FreeBSD.ORG Sun Aug 12 21:44:04 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1A246106564A for ; Sun, 12 Aug 2012 21:44:04 +0000 (UTC) (envelope-from pawel@dawidek.net) Received: from mail.dawidek.net (garage.dawidek.net [91.121.88.72]) by mx1.freebsd.org (Postfix) with ESMTP id D22028FC14 for ; Sun, 12 Aug 2012 21:44:03 +0000 (UTC) Received: from localhost (89-73-195-149.dynamic.chello.pl [89.73.195.149]) by mail.dawidek.net (Postfix) with ESMTPSA id A3362906; Sun, 12 Aug 2012 23:43:39 +0200 (CEST) Date: Sun, 12 Aug 2012 23:43:53 +0200 From: Pawel Jakub Dawidek To: Nikolay Denev Message-ID: <20120812214353.GJ1458@garage.freebsd.pl> References: <302630DD-E12A-4BA9-B82A-409326172423@gmail.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="mFHiwr52TKrxpkjc" Content-Disposition: inline In-Reply-To: <302630DD-E12A-4BA9-B82A-409326172423@gmail.com> X-OS: FreeBSD 10.0-CURRENT amd64 User-Agent: Mutt/1.5.21 (2010-09-15) Cc: freebsd-security@freebsd.org Subject: Re: Where is auditdistd? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Aug 2012 21:44:04 -0000 --mFHiwr52TKrxpkjc Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Aug 09, 2012 at 07:51:44AM +0300, Nikolay Denev wrote: > Hello all, >=20 > I've read a lot about the new secure audit log shipping daemon, there are= PDF-s, announcements, etc. > The project was supposed to be ready in february but I can't find a trace= of the source code? Any pointers? The code is available in the FreeBSD Perforce repository. It is not yet part of the FreeBSD, as the path here is to integrate it first into the OpenBSM project and then bring new OpenBSM to FreeBSD. This is being worked on. Also, during auditdistd development some bug were fixed and improvement were made to the audit framework in FreeBSD, which also have to be merged. --=20 Pawel Jakub Dawidek http://www.wheelsystems.com FreeBSD committer http://www.FreeBSD.org Am I Evil? Yes, I Am! http://tupytaj.pl --mFHiwr52TKrxpkjc Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.19 (FreeBSD) iEYEARECAAYFAlAoI5gACgkQForvXbEpPzQSwACdErDHr2DzJeQ8uecrnaNg5/rN 8EQAoIaSsxb/MpKiLvODkchr90dIXvZ2 =A7N+ -----END PGP SIGNATURE----- --mFHiwr52TKrxpkjc-- From owner-freebsd-security@FreeBSD.ORG Mon Aug 13 04:42:33 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 80B8E106566B; Mon, 13 Aug 2012 04:42:33 +0000 (UTC) (envelope-from ndenev@gmail.com) Received: from mail-wi0-f172.google.com (mail-wi0-f172.google.com [209.85.212.172]) by mx1.freebsd.org (Postfix) with ESMTP id DCA208FC08; Mon, 13 Aug 2012 04:42:32 +0000 (UTC) Received: by wicr5 with SMTP id r5so1665243wic.13 for ; Sun, 12 Aug 2012 21:42:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:mime-version:content-type:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to:x-mailer; bh=0+AuleZ18ic3EHcOji0Yh3HQIynAeMoVNbgxTC8vXrE=; b=xI/amqVIEBiWbAQxtUQ7o4Oq+fMy3Hm/K9UctRipkVLk4gFN4MINW+gATAbDo0uQKI ApSwJRwMxo1XTAsDeBUlp+GA+k+KjNwbDlwk7xyqUje+6e8PLQQ0EEIRPgRRmevTePHr NHyHVkHE3S71rykESo0C7m4dMeglwm8AorgnbHGDcKXQTejTt+2gHqsjYpGia6KJ+NjH rglMcsor0G+WJ/VX6InD07TDU+16OKM5rpcW4jAw2o2g9yRfQxBdYDYGSak14sDnI+Pe 04EUA3Leo0t/hsmng0v1dgMTZ70cccLFAz3Y5hu3zIaga83My0WPgoYAe84zdVH1Z7PY ZLTg== Received: by 10.180.99.196 with SMTP id es4mr15207936wib.18.1344832951129; Sun, 12 Aug 2012 21:42:31 -0700 (PDT) Received: from [10.0.0.86] ([93.152.184.10]) by mx.google.com with ESMTPS id fr4sm20837983wib.8.2012.08.12.21.42.29 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 12 Aug 2012 21:42:29 -0700 (PDT) Mime-Version: 1.0 (Mac OS X Mail 6.0 \(1485\)) Content-Type: text/plain; charset=us-ascii From: Nikolay Denev In-Reply-To: <20120812214353.GJ1458@garage.freebsd.pl> Date: Mon, 13 Aug 2012 07:42:28 +0300 Content-Transfer-Encoding: quoted-printable Message-Id: <6AED268A-2354-4A0B-950F-AAB8853DCDE4@gmail.com> References: <302630DD-E12A-4BA9-B82A-409326172423@gmail.com> <20120812214353.GJ1458@garage.freebsd.pl> To: Pawel Jakub Dawidek X-Mailer: Apple Mail (2.1485) X-Mailman-Approved-At: Mon, 13 Aug 2012 04:50:24 +0000 Cc: freebsd-security@freebsd.org Subject: Re: Where is auditdistd? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Aug 2012 04:42:33 -0000 On Aug 13, 2012, at 12:43 AM, Pawel Jakub Dawidek = wrote: > On Thu, Aug 09, 2012 at 07:51:44AM +0300, Nikolay Denev wrote: >> Hello all, >>=20 >> I've read a lot about the new secure audit log shipping daemon, there = are PDF-s, announcements, etc. >> The project was supposed to be ready in february but I can't find a = trace of the source code? Any pointers? >=20 > The code is available in the FreeBSD Perforce repository. > It is not yet part of the FreeBSD, as the path here is to integrate it > first into the OpenBSM project and then bring new OpenBSM to FreeBSD. > This is being worked on. Also, during auditdistd development some bug > were fixed and improvement were made to the audit framework in = FreeBSD, > which also have to be merged. >=20 > --=20 > Pawel Jakub Dawidek http://www.wheelsystems.com > FreeBSD committer http://www.FreeBSD.org > Am I Evil? Yes, I Am! http://tupytaj.pl I see, thank You for the update! Regards, Nikolay.= From owner-freebsd-security@FreeBSD.ORG Mon Aug 13 19:28:07 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 8EA6E106564A; Mon, 13 Aug 2012 19:28:07 +0000 (UTC) (envelope-from des@des.no) Received: from smtp.des.no (smtp.des.no [194.63.250.102]) by mx1.freebsd.org (Postfix) with ESMTP id 4B0EF8FC12; Mon, 13 Aug 2012 19:28:06 +0000 (UTC) Received: from ds4.des.no (smtp.des.no [194.63.250.102]) by smtp.des.no (Postfix) with ESMTP id A09686E86; Mon, 13 Aug 2012 21:28:00 +0200 (CEST) Received: by ds4.des.no (Postfix, from userid 1001) id 6181780C2; Mon, 13 Aug 2012 21:28:00 +0200 (CEST) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Jason Hellenthal References: <0B65D7562F9DA04FAC3F15C508BF67136B90E09E1F@ESESSCMS0355.eemea.ericsson.se> <001701cd7648$c2520350$46f609f0$@com> <5024f984.45ca320a.1838.4155SMTPIN_ADDED@mx.google.com> <86pq6xs0zb.fsf@ds4.des.no> <20120812163448.GA88577@DataIX.net> Date: Mon, 13 Aug 2012 21:27:59 +0200 In-Reply-To: <20120812163448.GA88577@DataIX.net> (Jason Hellenthal's message of "Sun, 12 Aug 2012 12:34:48 -0400") Message-ID: <86vcgm7fsw.fsf@ds4.des.no> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: freebsd-security@freebsd.org, Roberto , "Simon L. B. Nielsen" Subject: Re: getting the running patch level X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Aug 2012 19:28:07 -0000 Jason Hellenthal writes: > Could I suggest... the same way that /etc/motd is already updated ? You could, but it wouldn't be very helpful, since /etc/rc.d/motd uses uname(1), which returns the kernel version. On the contrary, once /etc/issue is in place, we should use that instead of uname(1) to update /etc/motd. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no From owner-freebsd-security@FreeBSD.ORG Mon Aug 13 19:59:21 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C0226106564A for ; Mon, 13 Aug 2012 19:59:21 +0000 (UTC) (envelope-from sonic2000gr@gmail.com) Received: from mail-wg0-f50.google.com (mail-wg0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id 4612D8FC12 for ; Mon, 13 Aug 2012 19:59:20 +0000 (UTC) Received: by wgbds11 with SMTP id ds11so3630626wgb.31 for ; Mon, 13 Aug 2012 12:59:20 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=gPROj3OnsGfFRZ1qMWBt6Ka80A7XD2CiArta3vNLMXI=; b=ZMTJfxeu/yQXQkq3q/5bVDrIf+dvEUjPo26+LvDYmTc/0oq43UuPUeRARUyofiWwqh ZWYCwoU0t1XZdEoquOL51ndoitH/Ya6GUTSvPWQzBo3ejI7hLIHA5JtreZrCZvgQCxby bVKYkuk3UUZdxqBzV/52xczDdHcnEQWCDt3MZHTl7q/RJ5xbV4Zt8oHWvImPkSG+YFO3 BaAha/LxD9YgflbkGjleRIDTZwTkJp8jsfTlRUSZ7vsy+Yt20xQa+b4j7X/F1nRa4t+j 9Eey+CqSWSQal73V9Mjp4byY9cKifvQN6QAv6HWRILOxbqpiXsV338XdwwQg2Men4Kg/ 1bbA== Received: by 10.216.136.72 with SMTP id v50mr6536116wei.203.1344887960017; Mon, 13 Aug 2012 12:59:20 -0700 (PDT) Received: from pegasus.dyndns.org (athedsl-4365190.home.otenet.gr. [79.130.11.118]) by mx.google.com with ESMTPS id ef5sm26442528wib.3.2012.08.13.12.59.18 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 13 Aug 2012 12:59:19 -0700 (PDT) Message-ID: <50295C95.7020301@gmail.com> Date: Mon, 13 Aug 2012 22:59:17 +0300 From: Manolis Kiagias User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:12.0) Gecko/20120722 Thunderbird/12.0.1 MIME-Version: 1.0 To: freebsd-security@freebsd.org References: <0B65D7562F9DA04FAC3F15C508BF67136B90E09E1F@ESESSCMS0355.eemea.ericsson.se> <001701cd7648$c2520350$46f609f0$@com> <5024f984.45ca320a.1838.4155SMTPIN_ADDED@mx.google.com> <86pq6xs0zb.fsf@ds4.des.no> <20120812163448.GA88577@DataIX.net> <86vcgm7fsw.fsf@ds4.des.no> In-Reply-To: <86vcgm7fsw.fsf@ds4.des.no> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit Subject: Re: getting the running patch level X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Aug 2012 19:59:21 -0000 On 13/08/2012 22:27, Dag-Erling Smørgrav wrote: > Jason Hellenthal writes: >> Could I suggest... the same way that /etc/motd is already updated ? > You could, but it wouldn't be very helpful, since /etc/rc.d/motd uses > uname(1), which returns the kernel version. On the contrary, once > /etc/issue is in place, we should use that instead of uname(1) to update > /etc/motd. > > DES One could also set the environment variable UNAME_r to the correct value (either in system wide e.g. /etc/profile or to a specific user dot files). Only problem of course it would have to be updated to the correct value manually. Or, since the correct value is always in newvers.sh, if src is present in the system a periodic script could update it automatically. The manual updating will cause more confusion in the long run - people tend to forget these things... From owner-freebsd-security@FreeBSD.ORG Mon Aug 13 20:07:07 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A7008106564A for ; Mon, 13 Aug 2012 20:07:07 +0000 (UTC) (envelope-from des@des.no) Received: from smtp.des.no (smtp.des.no [194.63.250.102]) by mx1.freebsd.org (Postfix) with ESMTP id 6213F8FC12 for ; Mon, 13 Aug 2012 20:07:06 +0000 (UTC) Received: from ds4.des.no (smtp.des.no [194.63.250.102]) by smtp.des.no (Postfix) with ESMTP id 51D616EB4; Mon, 13 Aug 2012 22:07:05 +0200 (CEST) Received: by ds4.des.no (Postfix, from userid 1001) id 2631E80D5; Mon, 13 Aug 2012 22:07:05 +0200 (CEST) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Manolis Kiagias References: <0B65D7562F9DA04FAC3F15C508BF67136B90E09E1F@ESESSCMS0355.eemea.ericsson.se> <001701cd7648$c2520350$46f609f0$@com> <5024f984.45ca320a.1838.4155SMTPIN_ADDED@mx.google.com> <86pq6xs0zb.fsf@ds4.des.no> <20120812163448.GA88577@DataIX.net> <86vcgm7fsw.fsf@ds4.des.no> <50295C95.7020301@gmail.com> Date: Mon, 13 Aug 2012 22:07:05 +0200 In-Reply-To: <50295C95.7020301@gmail.com> (Manolis Kiagias's message of "Mon, 13 Aug 2012 22:59:17 +0300") Message-ID: <867gt27dzq.fsf@ds4.des.no> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: freebsd-security@freebsd.org Subject: Re: getting the running patch level X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Aug 2012 20:07:07 -0000 Manolis Kiagias writes: > One could also set the environment variable UNAME_r to the correct > value (either in system wide e.g. /etc/profile or to a specific user > dot files). If your goal is to have uname(1) return the correct value, yes, except it won't always work. For instance, sudo(1) (and probably also su(1), but I never use it) will strip it from the environment and will *not* run /etc/profile before the requested command. > Or, since the correct value is always in newvers.sh, if src is present > in the system a periodic script could update it automatically. We can't assume that src is present. > The manual updating will cause more confusion in the long run - > people tend to forget these things... Nobody suggested manually updating anything. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no