DOCSLIB.ORG

Release Notes for Debian GNU/Linux 3.0 ('Woody'), Intel

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Release Notes for Debian GNU/Linux 3.0 ('Woody'), Intel Release Notes for Debian GNU/Linux 3.0 (‘woody’), Intel x86 Josip Rodin, Bob Hilliard, Adam Di Carlo, Anne Bezemer, Rob Bradford (current) <[email protected]> $Id: release-notes.en.sgml,v 1.1 2003/01/04 00:37:57 joy Exp $ i Contents 1 What’s New in Debian GNU/Linux 3.0 1 1.1 What’s New in the Installation System? ........................ 2 1.2 What’s New in the Distribution? ............................ 3 2 New Installations 5 3 Upgrades from Previous Releases 7 3.1 Detailed Changes to the System ............................. 7 3.1.1 Important program syntax changes ...................... 7 3.1.2 Note for users of virus scanners ........................ 7 3.1.3 Estonian Timezone ................................ 7 3.1.4 Upgrading PostgreSQL ............................. 8 3.1.5 Notes for users of sendmail/m4 ........................ 8 3.2 Preparing for the Upgrade ................................ 8 3.2.1 Checking Packages Status ............................ 9 3.2.2 Special Considerations for SSH Users ..................... 10 3.2.3 Directories Possibly Needing Attention .................... 10 3.3 Preparing Sources for APT ................................ 10 3.3.1 Adding APT Internet Sources .......................... 10 3.3.2 Adding APT Local Mirror Sources ....................... 11 3.3.3 Adding APT CD-ROM Sources ......................... 12 3.4 Upgrading using dselect ................................. 12 3.5 Upgrading using apt-get directly (not recommended) ................ 13 3.5.1 Possible Issues During or After Upgrade ................... 15 3.5.2 ToDo Before the Next Reboot .......................... 15 CONTENTS ii 4 More information on Debian GNU/Linux 19 4.1 Further Reading ...................................... 19 4.2 Getting Help ........................................ 19 4.2.1 Mailing lists .................................... 19 4.2.2 Internet Relay Chat ................................ 20 4.3 Reporting Bugs ...................................... 20 4.4 Contributing to Debian .................................. 20 5 Appendix 23 5.1 Renamed Packages .................................... 23 5.2 Split Packages ....................................... 25 5.3 Removed packages .................................... 27 5.3.1 Packages removed because of no maintainer ................. 27 5.3.2 Packages lacking upstream ........................... 28 5.3.3 Packages removed for other reasons ...................... 30 1 Chapter 1 What’s New in Debian GNU/Linux 3.0 [The most recent version of this document is always available at http://www.debian.org/ releases/stable/releasenotes. If your version is more than a month old, you might wish to download the latest version.] Previously Debian GNU/Linux 2.2 (’potato’) supported six computer architectures. In this release those six are joined by four more indicated by a trailing asterisk [*] below. Here is the full list of architectures for this release: • Intel x86 (’i386’) • Motorola 680x0 (’m68k’) • Alpha (’alpha’) • SPARC (’sparc’) • PowerPC (’powerpc’) • ARM (’arm’) • MIPS (’mips’ (Big endian) and ’mipsel’ (Little endian)) [*] • Intel Itanium (’ia64’) [*] • HP PA-RISC (’hppa’) [*] • S/390 (’s390’) [*] Debian GNU/Linux 3.0 for the Intel x86 architecture ships with kernel version 2.2.20. The 2.2 kernel series has been updated and developed extensively introducing several valuable changes both in the kernel and in other programs based on kernel features, along with a whole slew of new hardware drivers and bug fixes for existing drivers. A 2.4 kernel is also included in this release for optional installation by users. Although the 2.4 branch is considered by the kernel developers to be a stable kernel branch, the Debian GNU/Linux release team judged it not to have reached sufficient maturity for inclusion as the default kernel in this release. Chapter 1. What’s New in Debian GNU/Linux 3.0 2 1.1 What’s New in the Installation System? The new debootstrap tool downloads, unpacks and extracts Debian GNU/Linux packages for the base system installation. This is an improvement over the previous installation system which used a tarball containing the base system. The installation base system can be updated more dynamically with this system. The task system has been revamped. Tasks in the previous release consisted of meta pack- ages (packages which are simply collections of other packages). The new system uses special headers within the existing package system to designate any tasks to which each package may belong. This allows greater selection of tasks and it is much easier to only install selected components of tasks, instead of the whole thing. Almost all configuration at install time and for later reconfiguration is done using Debconf, which comes in a variety of flavours: a non-interactive method, dialog (curses-based), and a new GNOME frontend. Debconf’s engine has also been revamped and improved and is now more flexible than ever. In short, Debconf makes the world go around :) For full details on the Debian installation system, users are advised to read the Debian instal- lation guide included on the first CD or at http://www.debian.org/releases/stable/ installmanual Kernel images are available in various “flavors”. These flavors each support a different set of hardware. The flavors available in Debian GNU/Linux 3.0 for Intel x86 are: ‘vanilla’ The standard kernel package available in Debian. This includes almost all drivers supported by Linux built as modules. Including drivers for network devices, SCSI de- vices, sound cards, Video4Linux devices, etc. The ‘vanilla’ flavor includes one rescue, one root and four driver disks. ‘ide’ Very similar to ‘vanilla’, except it includes Andre Hedrick’s IDE patches to support UDMA66 devices. ‘compact’ Like ‘vanilla’, but with many of the less-frequently-use drivers removed (sound, Video4Linux, etc). In addition, it has built-in support for several popular PCI ethernet devices: NE2000, 3COM 3c905, Tulip, Via-Rhine and Intel EtherExpress Pro100. These built in drivers allow you to take full advantage of the Debian installer’s net install fea- ture to install the driver and/or base system over a network so that only the root and rescue disks need to be made. Finally, ‘compact’ also supports several common RAID controllers: DAC960, and Compaq’s SMART2 RAID controllers. The ‘compact’ flavor includes one rescue, one root and two driver disks. ‘idepci’ The ‘idepci’ kernel supports only IDE and PCI devices (and a very small number of ISA devices). This kernel should be used if the SCSI drivers in the other flavors cause your system to hang on startup (probably because of resource conflicts, or a misbehaving driver/card in your system). The ‘idepci’ flavor also has a built-in ide-floppy driver so that you can install from LS120 or ZIP devices. Chapter 1. What’s New in Debian GNU/Linux 3.0 3 ‘bf2.4‘ This is an experimental flavor which uses a special version of the kernel-image-2.4 package. It contains support for some new hardware which does not exist in the (more stable) other flavors. It supports more USB hardware, modern IDE controllers, newer network cards and Ext3 and Reiser filesystems. Compared to the driver set of our main kernel-image-2.4.x-yz packages, some non-essential drivers have been removed in order to minimize the number of floppy disks needed. The kernel config files for these flavors can be found in their respective directories in a file named ’kernel-config’. 1.2 What’s New in the Distribution? The Debian package management tools apt and dpkg have been improved considerably in this release. Now apt supports “pinning” in which the user can opt to download certain packages from different distributions, e.g. testing or unstable, while still keeping the bulk of packages in the stable distribution. APT will automagically download and install appropriate dependent packages from the advanced distribution as required. An APT “pinning” howto (http:// www.debian.org/doc/manuals/apt-howto/ch-apt-get) is available. Build dependencies have been added to aid the compilation of source packages. The “build- dep” apt-get method can be used to retrieve all packages needed for a build before compilation is commenced. To replace the aging, much-maligned, yet still popular dselect, many apt frontends have been in development during the woody release cycle. Interested users should investigate the aptitude package. This release of Debian GNU/Linux contains the much improved XFree86 4.1 release, which includes support for a greater range of hardware, better autodetection support, and improved support for advanced technologies such as Xinerama and 3D acceleration. XFree86 3.3.6 is available as an option, to support older hardware that is not supported by XFree86 4.1. Debian 3.0 is much more secure than previous releases. The base installation provides fewer unnecessary services that might be the target of attack. Debian 3.0 includes many more security-oriented applications such as firewall administration, server hardening, and intru- sion detection. The packaging system has also been improved so it can be configured to auto- matically check digital signatures. When configured, it will refuse to install Debian packages if the digital signature doesn’t match. This limits the possibility of trojan horse installation and makes it easier and safer for systems to automatically upgrade themselves over the In- ternet. Lastly, Debian now provides intensive documentation for the security-aware adminis- trator including the ’Securing Debian Manual’ (http://www.debian.org/doc/manuals/ securing-debian-howto/) from the Debian Documentation Project (also available in the harden-doc package). Debian 3.0 is also much more internationalized (http://www.debian.org/ international/) than previous releases thanks to the ongoing work of free software translation teams. Debian includes default settings for more languages than previous releases, Chapter 1. What’s New in Debian GNU/Linux 3.0 4 and more of its programs are international-ready. This includes the boot-floppies installation which has been translated to a number of languages. There is extensive support for French, German, Italian, Japanese, Portuguese, Spanish, Catalan and Danish, and there are more than fifteen active translation teams.
Load more

Recommended publications
  • Customizable Multimedia Devices in Virtual Environments
    Customizable Multimedia Devices in Virtual Environments Ankur Pai, Balasubramanian Seshasayee, Himanshu Raj and Karsten Schwan Center for Experimental Research in Computer Systems Georgia Institute of Technology Atlanta, Georgia 30332–0250 fpaiankur, bala, rhim, [email protected] Abstract—The separation of logical from physical devices maintain a consistent view of physical devices by presenting provided by modern virtualization techniques can be used to only a common minimal set of device features is too limiting enhance device functionality, including by emulating non-native and worse, it cannot account for changes in the environmental device functions in software. Such logically extended devices are particularly promising in the mobile domain, for embedded conditions or contexts in which devices are used. machines, handhelds, or phones. Challenges arise, however, from We argue that device sharing and interoperation in mobile the highly heterogeneous nature of portables and the devices with systems requires models and interfaces with which virtual- which they can interact. This suggests that device extensions ization infrastructures can dynamically change device func- should be dynamic, varied at runtime to adjust to new user needs and/or changes in environmental conditions. This paper tionality to account for runtime changes in device use, con- presents a model for runtime device extension and for then using ditions, and contexts. This paper presents such a model. It such extended devices. The model provides uniform interfaces to implements the safe, runtime extension of device functionality, native and extended devices, permits the safe runtime extension by enabling the virtualization layer, guest operating systems, of device functionality, and can be shown to operate across both or applications to safely specify and deploy custom code that stationary and mobile platforms, and arbitrary operating systems and applications.
    [Show full text]
  • Automated IT Service Fault Diagnosis Based on Event Correlation Techniques
    Automated IT Service Fault Diagnosis Based on Event Correlation Techniques Dissertation an der Fakultat¨ fur¨ Mathematik, Informatik und Statistik der Ludwig-Maximilians-Universitat¨ Munchen¨ vorgelegt von Andreas Hanemann Tag der Einreichung: 22. Mai 2007 1. Berichterstatter: Professor Dr. Heinz-Gerd Hegering, Ludwig-Maximilians-Universit¨at M¨unchen 2. Berichterstatterin: Professor Dr. Gabrijela Dreo Rodosek, Universit¨at der Bundeswehr M¨unchen Automated IT Service Fault Diagnosis Based on Event Correlation Techniques Dissertation an der Fakultat¨ fur¨ Mathematik, Informatik und Statistik der Ludwig-Maximilians-Universitat¨ Munchen¨ vorgelegt von Andreas Hanemann Tag der Einreichung: 22. Mai 2007 Tag der m¨undlichen Pr¨ufung: 19. Juli 2007 1. Berichterstatter: Professor Dr. Heinz-Gerd Hegering, Ludwig-Maximilians-Universit¨at M¨unchen 2. Berichterstatterin: Professor Dr. Gabrijela Dreo Rodosek, Universit¨at der Bundeswehr M¨unchen Acknowledgments This thesis has been written as part of my work as a researcher at the Leib- niz Supercomputing Center (Leibniz-Rechenzentrum, LRZ) of the Bavarian Academy of Sciences and Humanities which was funded by the German Re- search Network (DFN-Verein) as well as in cooperation with the research group of Prof. Dr. Heinz-Gerd Hegering. Apart from the LRZ, this research group called MNM-Team (Munich Network Management Team) is located at the University of Munich (LMU), the Munich University of Technology (TUM) and the University of Federal Armed Forces in Munich. At first, I would like to thank my doctoral advisor Prof. Dr. Heinz-Gerd Hegering for his constant support and helpful advice during the whole prepa- ration time of this thesis. I would also like to express my special gratefulness to my second advisor, Prof.
    [Show full text]
  • Version 7.8-Systemd
    Linux From Scratch Version 7.8-systemd Created by Gerard Beekmans Edited by Douglas R. Reno Linux From Scratch: Version 7.8-systemd by Created by Gerard Beekmans and Edited by Douglas R. Reno Copyright © 1999-2015 Gerard Beekmans Copyright © 1999-2015, Gerard Beekmans All rights reserved. This book is licensed under a Creative Commons License. Computer instructions may be extracted from the book under the MIT License. Linux® is a registered trademark of Linus Torvalds. Linux From Scratch - Version 7.8-systemd Table of Contents Preface .......................................................................................................................................................................... vii i. Foreword ............................................................................................................................................................. vii ii. Audience ............................................................................................................................................................ vii iii. LFS Target Architectures ................................................................................................................................ viii iv. LFS and Standards ............................................................................................................................................ ix v. Rationale for Packages in the Book .................................................................................................................... x vi. Prerequisites
    [Show full text]
  • Linux Administrators Security Guide LASG - 0.1.1
    Linux Administrators Security Guide LASG - 0.1.1 By Kurt Seifried ([email protected]) copyright 1999, All rights reserved. Available at: https://www.seifried.org/lasg/. This document is free for most non commercial uses, the license follows the table of contents, please read it if you have any concerns. If you have any questions email [email protected]. A mailing list is available, send an email to [email protected], with "subscribe lasg-announce" in the body (no quotes) and you will be automatically added. 1 Table of contents License Preface Forward by the author Contributing What this guide is and isn't How to determine what to secure and how to secure it Safe installation of Linux Choosing your install media It ain't over 'til... General concepts, server verses workstations, etc Physical / Boot security Physical access The computer BIOS LILO The Linux kernel Upgrading and compiling the kernel Kernel versions Administrative tools Access Telnet SSH LSH REXEC NSH Slush SSL Telnet Fsh secsh Local YaST sudo Super Remote Webmin Linuxconf COAS 2 System Files /etc/passwd /etc/shadow /etc/groups /etc/gshadow /etc/login.defs /etc/shells /etc/securetty Log files and other forms of monitoring General log security sysklogd / klogd secure-syslog next generation syslog Log monitoring logcheck colorlogs WOTS swatch Kernel logging auditd Shell logging bash Shadow passwords Cracking passwords John the ripper Crack Saltine cracker VCU PAM Software Management RPM dpkg tarballs / tgz Checking file integrity RPM dpkg PGP MD5 Automatic
    [Show full text]
  • Camera Driver Development.Pptx
    CAMERA DRIVER DEVELOPMENT Kyle Xu OUTLINE Prepare the Hardware Set up Environment Write a Camera Driver Solve Remaining Problems PREPARE THE HARDWARE TI OMAP4 Pandaboard Aptina AR0832 Image Sensor Ominivision OV5650 Image Sensor Pandaboard Adapters and Connectors Datasheets AR0832 OV5650 PREPARE THE HARDWARE System Setup OUTLINE Prepare the Hardware Set up Environment Write a Camera Driver Solve Remaining Problems SET UP ENVIRONMENT Install Ubuntu 12.04 on Pandaboard Powerful and fast server for cross compilation 32-core 5 min on server vs. 5 hours on Pandaboard Understand Data Path and Interfaces DATA PATH Camera Serial Interface (CSI-2) Image Sub-System (ISS) Image Sensor INTERFACE: CSI-2 N data lanes and one data clock lane Each lane is a pair of +/- lines. I2C standard control interface (CCI) SCL SDA INTERFACE: Hardware Level Pandaboard Camera Expansion Connector (J-17) 5 CSI-2 lanes (including one CLK lane) I2C control lines (SCL, SDA) Other lines for battery power, camera clock, GPIO… Image Sensor 2 CSI-2 data lanes + 1 CSI-2 clock lane I2C control lines (as slave) Powered from on board battery OUTLINE Prepare the Hardware Set up Environment Write a Camera Driver Solve Remaining Problems WRITE A CAMERA DRIVER Describe the camera to the board Write the driver file a. Voltage Regulator and Clock b. I2C Bus c. V4L2 d. Driver Framework e. Complete Template Implement the driver to Linux Kernel DESCRIBE THE CAMERA TO THE BOARD Create ar0832.h to describe camera’s platform information struct ar0832_platform_data containing fields about voltage regulator, clock, power on/off methods Edit board-omap4panda-camer.c Assign values or functions to ar0832_platform_data’s fields.
    [Show full text]
  • Linux Kernal II 9.1 Architecture
    Page 1 of 7 Linux Kernal II 9.1 Architecture: The Linux kernel is a Unix-like operating system kernel used by a variety of operating systems based on it, which are usually in the form of Linux distributions. The Linux kernel is a prominent example of free and open source software. Programming language The Linux kernel is written in the version of the C programming language supported by GCC (which has introduced a number of extensions and changes to standard C), together with a number of short sections of code written in the assembly language (in GCC's "AT&T-style" syntax) of the target architecture. Because of the extensions to C it supports, GCC was for a long time the only compiler capable of correctly building the Linux kernel. Compiler compatibility GCC is the default compiler for the Linux kernel source. In 2004, Intel claimed to have modified the kernel so that its C compiler also was capable of compiling it. There was another such reported success in 2009 with a modified 2.6.22 version of the kernel. Since 2010, effort has been underway to build the Linux kernel with Clang, an alternative compiler for the C language; as of 12 April 2014, the official kernel could almost be compiled by Clang. The project dedicated to this effort is named LLVMLinxu after the LLVM compiler infrastructure upon which Clang is built. LLVMLinux does not aim to fork either the Linux kernel or the LLVM, therefore it is a meta-project composed of patches that are eventually submitted to the upstream projects.
    [Show full text]
  • Ispmail Tutorial for Debian Lenny
    6.10.2015 ISPmail tutorial for Debian Lenny ISPmail tutorial for Debian Lenny Add new comment 223533 reads This tutorial is for the former stable version "Debian Lenny". If you are using "Debian Squeeze" then please follow the new tutorial. A spanish translation of this tutorial is also available ­ courtesy of José Ramón Magán Iglesias. What this tutorial is about You surely know the internet service providers that allow you to rent a domain and use it to receive emails. If you have a computer running Debian which is connected to the internet permanently you can do that yourself. You do not even need to have a fixed IP address thanks to dynamic DNS services like dyndns.org. All you need is this document, a cup of tea and a little time. When you are done your server will be able to... receive and store emails for your users from other mail servers let your users retrieve the email through IMAP and POP3 ­ even with SSL to encrypt to connection receive and forward ("relay") email for your users if they are authenticated offer a webmail interface to read emails in a web browser detect most spam emails and filter them out or tag them License/Copyright This tutorial book is copyrighted 2009 Christoph Haas (email@christoph­haas.de). It can be used freely under the terms of the GNU General Public License. Don't forget to refer to this URL when using it. Thank you. Changelog 17.6.09: Lenny tutorial gets published. 19.6.09: The page on SPF checks is temporarily offline.
    [Show full text]
  • The Complete Freebsd
    The Complete FreeBSD® If you find errors in this book, please report them to Greg Lehey <grog@Free- BSD.org> for inclusion in the errata list. The Complete FreeBSD® Fourth Edition Tenth anniversary version, 24 February 2006 Greg Lehey The Complete FreeBSD® by Greg Lehey <[email protected]> Copyright © 1996, 1997, 1999, 2002, 2003, 2006 by Greg Lehey. This book is licensed under the Creative Commons “Attribution-NonCommercial-ShareAlike 2.5” license. The full text is located at http://creativecommons.org/licenses/by-nc-sa/2.5/legalcode. You are free: • to copy, distribute, display, and perform the work • to make derivative works under the following conditions: • Attribution. You must attribute the work in the manner specified by the author or licensor. • Noncommercial. You may not use this work for commercial purposes. This clause is modified from the original by the provision: You may use this book for commercial purposes if you pay me the sum of USD 20 per copy printed (whether sold or not). You must also agree to allow inspection of printing records and other material necessary to confirm the royalty sums. The purpose of this clause is to make it attractive to negotiate sensible royalties before printing. • Share Alike. If you alter, transform, or build upon this work, you may distribute the resulting work only under a license identical to this one. • For any reuse or distribution, you must make clear to others the license terms of this work. • Any of these conditions can be waived if you get permission from the copyright holder. Your fair use and other rights are in no way affected by the above.
    [Show full text]
  • Projeto Final
    UNIVERSIDADE CATÓLICA DE BRASÍLIA PRÓ-REITORIA DE GRADUAÇÃO TRABALHO DE CONCLUSÃO DE CURSO Bacharelado em Ciência da Computação e Sistemas de Informação CRIAÇÃO DE UM CORREIO ELETRÔNICO CORPORATIVO COM POSTFIX Autores: Davi Eduardo R. Domingues Luiz Carlos G. P. C. Branco Rafael Bispo Silva Orientador: MSc. Eduardo Lobo BRASÍLIA 2007 Criação de um Servidor de Correio Eletrônico Corporativo com Postfix 2 / 111 DAVI EDUARDO R. DOMINGUES LUIZ CARLOS G. P. C. BRANCO RAFAEL BISPO SILVA CRIAÇÃO DE UM SERVIDOR DE CORREIO ELETRÔNICO CORPORATIVO COM POSTFIX Monografia apresentada ao Programa de Graduação da Universidade Católica de Brasília, como requisito para obtenção do Título de Bacharelado em Ciência da Computação. Orientador: MSc. Eduardo Lobo Brasília 2007 Criação de um Servidor de Correio Eletrônico Corporativo com Postfix 3 / 111 TERMO DE APROVAÇÃO Dissertação defendida e aprovada como requisito parcial para obtenção do Título de Bacharel em Ciência da Computação, defendida e aprovada, em 05 de dezembro de 2007, pela banca examinadora constituída por: _______________________________________________________ Professor Eduardo Lobo – Orientador do Projeto _______________________________________________________ Professor Mário de Oliveira Braga Filho – Membro Interno _______________________________________________________ Professor Giovanni – Membro Interno Brasília UCB Criação de um Servidor de Correio Eletrônico Corporativo com Postfix 4 / 111 Dedico este trabalho primeiramente a Deus que me deu a vida e paciência para chegar a este nível de estudo que me encontro. Em especial a minha mãe que acreditou em mim, aos bons valores que me ensinou e pelo apoio a toda minha vida acadêmica e me compreendeu pelos momentos de ausência ao seu lado. Davi Eduardo R. Domingues Criação de um Servidor de Correio Eletrônico Corporativo com Postfix 5 / 111 Dedico a minha família que sempre acreditou em mim, também aos meus grandes amigos e aos grandes amigos que se foram, aqueles que nos deixam saudades e uma vontade de continuar seus trabalhos.
    [Show full text]
  • CSCE 451/851 Operating Systems Principles the UNIX Operating System Processes &
    Page 1 The UNIX Operating System History ◆ The original UNIX 1 » An experimental operating system developed by Ken Thompson & Dennis Ritchie in the late ‘60s ◆ Main variants (“Standards”) »System V »POSIX ❖developed by AT&T, now ❖IEEE/ISO owned by UNIX International »FreeBSD » 4.4 BSD ❖ Open Software Foundation »Linux ◆ Commercial products » Ultrix, DEC UNIX — DEC » AIX — IBM » SunOS, Solaris — Sun » Xenix — Microsoft » HP/UX — Hewlett Packard » ... 2 Lecture 4 Steve Goddard [email protected] Processes & IPC The UNIX OperatingThe System http://www.cse.unl.edu/~goddard/Courses/CSCE451 CSCE 451/851 Operating Systems Principles CSCE 451/851 Steve Goddard Lecture 4 Page 2 CSCE 451/851 CSCE Steve Goddard The UNIX Operating System The UNIX Operating System Processes Processes ◆ A process is created by the fork() system call ◆ Alternatively, processes can be “created” by an exec() » creates a new address space that is a duplicate of the callers » replaces the memory image of the caller with a new program Parent address space “parent” “child” main (argc, argv) address space address space int childpid; main() prog() childpid = 1 { { { switch (childpid = fork()) { exec( prog) case 0: /* child */ } } child_func(); exit(0); default: /* parent */ ◆ This is how the shell executes commands parent_func(); while(wait((int *) 0) != childpid); »a fork() followed by an exec() exit(0); Child address space case -1: /* oops */ csh wait() error("fork:%s\n",sys_errlist[errno]); childpid = 0 fork() } } csh ls exec() 3 4 CSCE 451/851 CSCE 451/851 Steve Goddard
    [Show full text]
  • An E-Mail Quarantine with Open Source Software
    An e-mail quarantine with open source software Using amavis, qpsmtpd and MariaDB for e-mail filtering Daniel Knittel Dirk Jahnke-Zumbusch HEPiX fall 2016 NERSC, Lawrence Berkeley National Laboratory United States of America October 2016 e-mail services at DESY > DESY is hosting 70+ e-mail domains, most prominent: ▪ desy.de — of course :) ▪ xfel.eu — European XFEL ▪ belle2.org — since summer 2016 ▪ cfel.de — Center for Free-Electron Laser Science ▪ cssb-hamburg.de — Center for Structural Systems Biology > mixed environment of open source software and commercial products ▪ Zimbra network edition with web access and standard clients (Outlook, IMAP, SMTP) ▪ Postfix for MTAs ▪ SYMPA for mailing list services ▪ Sophos and Clearswift‘s MIMEsweeper for SMTP > currently ~6.500 fully-fledged mailboxes, some 1000s extra with reduced functionality (e.g. no Outlook/ActiveSync/EWS access) > daily ~300.000 delivered e-mails 2 DESY e-mail infrastructure 1b 3 4 1 2 5 > 1 DMZ filtering ▪ restrictive filtering, reject e-mails from very suspicious MTAs ▪ 1b soon: DESY’s NREN (DFN) will be integrated into e-mail flow with virus- and SPAM-scanning > 2 filter for bad content ➔ suspicious e-mails into quarantine > 3 2nd-level SPAM-scan based on mail text and own rules > 4 distribution of e-mails to mailbox servers, mailing list servers or DESY-external destinations > 5 throttling of e-mail flow to acceptable rates (individual vs. newsletter) ▪ think “phishing” ➔ high rates trigger an alarm > mixed HW/VM environment 3 e-mail at DESY – attachment filtering & quarantine > policy: e-mail traffic is filtered ▪ block “bad” e-mails in the first place ➔ viruses are blocked ➔ executable content is blocked ▪ also block e-mails originating from DESY if they contain malicious or suspicious content ▪ up to now: commercial solution > additional measures ▪ mark e-mails with a high SPAM-score (2nd-level SPAM-filtering) ▪ monitor outgoing e-mail-flow ▪ throttle if over a specific rate ➔ this is sender-specific and customizable (e.g.
    [Show full text]
  • Release Notes for X11R7.5 the X.Org Foundation 1
    Release Notes for X11R7.5 The X.Org Foundation 1 October 2009 These release notes contains information about features and their status in the X.Org Foundation X11R7.5 release. Table of Contents Introduction to the X11R7.5 Release.................................................................................3 Summary of new features in X11R7.5...............................................................................3 Overview of X11R7.5............................................................................................................4 Details of X11R7.5 components..........................................................................................5 Build changes and issues..................................................................................................10 Miscellaneous......................................................................................................................11 Deprecated components and removal plans.................................................................12 Attributions/Acknowledgements/Credits......................................................................13 Introduction to the X11R7.5 Release This release is the sixth modular release of the X Window System. The next full release will be X11R7.6 and is expected in 2010. Unlike X11R1 through X11R6.9, X11R7.x releases are not built from one monolithic source tree, but many individual modules. These modules are distributed as individ- ual source code releases, and each one is released when it is ready, instead
    [Show full text]