Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-gwn

From: Ulrich Plate <plate@g.o>
To: gentoo-gwn@l.g.o
Subject: [gentoo-gwn] Gentoo Weekly Newsletter 13 March 2006
Date: Mon, 13 Mar 2006 08:06:55
Message-Id: 20060313083336.c02548aa.plate@gentoo.org
1 ---------------------------------------------------------------------------
2 Gentoo Weekly Newsletter
3 http://www.gentoo.org/news/en/gwn/current.xml
4 This is the Gentoo Weekly Newsletter for the week of 13 March 2006.
5 ---------------------------------------------------------------------------
6
7 ==============
8 1. Gentoo news
9 ==============
10
11 Gentoo store: 2006.0 release media available
12 --------------------------------------------
13
14 Official 2006.0 CD releases[1] have hit the Gentoo store this week! Five
15 USD from every CD sale goes to the Gentoo Foundation[2], presenting a
16 clever way to financially support the development of Gentoo Linux through
17 purchasing the release media directly from the project.
18
19 1. http://www.cafepress.com/officialgentoo/1227454
20 2. http://foundation.gentoo.org
21
22 Gentoo community directory
23 --------------------------
24
25 It's increasingly difficult to keep track of the multitude of
26 international activities in and around the Gentoo project. Developers,
27 power users and enthusiasts around the globe organize Gentoo-related
28 events, hold classes at their universities, and man Gentoo booths at trade
29 fairs and conferences. To keep up with what's going on internationally,
30 the GWN team is actively looking for Gentoo user groups, associations,
31 clubs or study circles that represent users or developers in their own
32 town or country. If you're running a Gentoo-related website, a forum, a
33 monthly user meeting or other events, please submit a short description of
34 your activities and your contact details to our feedback address[3] so we
35 can start setting up a Gentoo community directory. Thanks a lot in
36 advance!
37
38 3. gwn-feedback@g.o
39
40 =========================
41 2. Heard in the community
42 =========================
43
44 Web forums
45 ----------
46
47 glibc 2.4
48
49 glibc 2.4 officially hit the Portage tree. Forum users were surprised to
50 see that it got straight into ~arch instead of being hard masked first.
51 However, they did quite a lot of tests, like rebuilding the toolchain and
52 all seemed to go well. Some of them even tried it with GCC 4.1 and
53 experienced no problems. Nevertheless, they did find some minor issues
54 when building nptl-only applications:
55
56 * GLIBC 2.4 now officially in portage[4]
57 4. https://forums.gentoo.org/viewtopic-t-442247.html
58
59
60
61
62 Forum veteran taskara[5] just released a custom Gentoo LiveCD that
63 provides Xgl support. Users who tried it are rather pleased with that kind
64 of 3D hardware support on a LiveCD. Links and torrents are inside the
65 thread, and of course you can discuss it right there:
66
67 5. https://forums.gentoo.org/profile.php?mode=viewprofile&u=90
68
69 * Xgl Demo Live CD available (Gentoo based, of course!)[6]
70 6. https://forums.gentoo.org/viewtopic-t-441235.html
71
72
73 =======================
74 3. Gentoo international
75 =======================
76
77 India: Open-source event in Calicut this weekend
78 ------------------------------------------------
79
80 Gentoo developer Shyam Mani[7] will give an introductory talk about Gentoo
81 during the FOSS.NITC[8] event at the National Institute of Technology in
82 Calicut (Kerela) on 18 and 19 March. Together with fellow Gentoo
83 enthusiast Ashish V, he plans to hold a Gentoo BoF (Birds of a Feather)
84 session as well sometime during the event. Check the event schedule[9] for
85 details.
86
87 7. fox2mike@g.o
88 8. http://www.foss.nitc.ac.in/
89 9. http://www.foss.nitc.ac.in/web/schedule.html
90
91 Germany: Gentoo user meeting in Leipzig
92 ---------------------------------------
93
94 On Friday, 17 March 2006, a group of Gentooists from the Leipzig and Halle
95 area in Saxony will meet for an evening at the Stuk[10] (Studentenkeller).
96 This first Leipzig GUM will start at 19:00, and if you're interested in
97 attending, please tell the organizers via their Forum thread[11].
98
99 10. http://www.stuk-leipzig.de/
100 11. https://forums.gentoo.org/viewtopic-t-405786.html
101
102 Germany: Report from Chemnitz
103 -----------------------------
104
105 As in 2005, the Linuxtage in Chemnitz (4 and 5 March 2006) were not only
106 visited by Gentoo developers, but you could also visit them at their booth
107 for a little chat. You could see an SGI Octane constantly compile stuff,
108 but at the end of the second day, finally xorg was running. Of course
109 devotional objects such as stickers or a DVD with the 2006.0 release plus
110 some extra goodies like stage archives and a lot of source packages could
111 be purchased at the stand. Tobias Scherbaum[12] also gave a speech about
112 Gentoo.
113
114 12. dertobi123@g.o
115
116 Figure 3.1: Left to right: booth staffers tuxus, dertobi123 and Mr. Big
117 http://www.gentoo.org/images/gwn/200600313_chemnitz.jpg
118
119 ======================
120 4. Gentoo in the press
121 ======================
122
123 Linux Magazin (4/2006, in German)
124 ---------------------------------
125
126 The April edition of Germany's Linux Magazin dedicates its cover story and
127 half a dozen in-depth articles inside the printed magazine to
128 virtualization in all its forms. One article features Gentoo developer
129 Benedikt Böhm[13] and the vserver project for Linux, based on the
130 vserver-sources and utilities provided in Gentoo. The magazine is
131 available at news stands in German-speaking countries.
132
133 13. hollow@g.o
134
135 Opensourcejahrbuch (March 2006)
136 -------------------------------
137
138 Last week we published a reference to an interview with Bill Hilf,
139 Microsoft's open-source lab director. Now the full publication is
140 available, the 2006 edition of the Open-Source Jahrbuch[14] can be
141 downloaded for free, or purchased in print for a moderate fee.
142
143 14. http://www.opensourcejahrbuch.de/2006/english.html
144
145 ==================
146 5. Tips and tricks
147 ==================
148
149 Iproute2 instead of ifconfig/route
150 ----------------------------------
151
152 For many, ifconfig and route are still the preferred commands for
153 configuring a network through the command line. However, in modern network
154 environments, ifconfig has its drawbacks. And as you would expect from a
155 Free Software community, improved packages have been developed. iproute2
156 is one of them and is getting increasingly popular.
157
158 The default command to work with iproute2 is ip. Clean, simple to remember
159 and extremely powerful. But its power is well described in many documents,
160 including the iproute2 document[15] and the Guide to IP Layer Network
161 Administration with Linux[16]. In this short introduction, we'll stay with
162 the simplest basics that most people use just to show you how easy it is
163 to "migrate" from ifconfig (sys-apps/net-tools) to ip (sys-apps/iproute2).
164
165 15. http://www.policyrouting.org/iproute2.doc.html
166 16. http://linux-ip.net/html/
167
168 To configure a host to use IP address 192.168.0.102, netmask 255.255.255.0
169 and default gateway 192.168.0.1, the "old" commands were:
170
171 +-------------------------------------------------------------------------+
172 | Code Listing 5.1: |
173 | Using ifconfig and route |
174 +-------------------------------------------------------------------------+
175 | |
176 |# ifconfig eth0 192.168.0.102 netmask 255.255.255.0 up |
177 |# route add default gw 192.168.0.1 |
178 | |
179 +-------------------------------------------------------------------------+
180
181 Using iproute2, this becomes:
182
183 +-------------------------------------------------------------------------+
184 | Code Listing 5.2: |
185 | Using iproute2's ip command |
186 +-------------------------------------------------------------------------+
187 | |
188 |# ip address 192.168.0.102/24 dev eth0 |
189 |# ip route add default via 192.168.0.1 |
190 | |
191 +-------------------------------------------------------------------------+
192
193 The syntax isn't all that difficult, is it? Let's take a look at our
194 current routing table. With route you would run route -n:
195
196 +-------------------------------------------------------------------------+
197 | Code Listing 5.3: |
198 | Using route |
199 +-------------------------------------------------------------------------+
200 | |
201 |# route -n |
202 |Kernel IP routing table |
203 |Destination Gateway Genmask Flags Metric Ref Use |
204 Iface
205 |192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 |
206 eth0
207 |127.0.0.0 127.0.0.1 255.0.0.0 UG 0 0 0 lo|
208 |0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 |
209 eth0
210 | |
211 +-------------------------------------------------------------------------+
212
213 With ip, you ask it to show the routes:
214
215 +-------------------------------------------------------------------------+
216 | Code Listing 5.4: |
217 | Using ip to show the routing table |
218 +-------------------------------------------------------------------------+
219 | |
220 |# ip route show |
221 |192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.121 |
222 |127.0.0.0/8 via 127.0.0.1 dev lo scope link |
223 |default via 192.168.0.1 dev eth0 |
224 | |
225 +-------------------------------------------------------------------------+
226
227 You might find this output strange; however, it gives a lot of useful
228 information. For instance, scope link means that the network is reachable
229 while proto kernel informs us that the kernel has added this routing as
230 part of bringing the interface up.
231
232 Using ip within Gentoo isn't difficult either. The Gentoo
233 sys-apps/baselayout package supports both formats (ifconfig and ip):
234
235 +-------------------------------------------------------------------------+
236 | Code Listing 5.5: |
237 | Configuring the network through /etc/conf.d/net |
238 +-------------------------------------------------------------------------+
239 | |
240 |(Old-style configuration) |
241 |config_eth0=( "192.168.0.102 netmask 255.255.255.0" ) |
242 |routes_eth0=( "default gw 192.168.0.1" ) |
243 | |
244 |(Using iproute2 -- don't forget to emerge it first) |
245 |modules=( "iproute2" ) |
246 |config_eth0=( "192.168.0.102/24" ) |
247 |routes_eth0=( "default via 192.168.0.1" ) |
248 | |
249 +-------------------------------------------------------------------------+
250
251 Note: For more /etc/conf.d/net magic, please read the commented file
252 /etc/conf.d/net.example.
253
254 That's it for now; have fun with Gentoo !
255
256 =========================
257 6. Gentoo developer moves
258 =========================
259
260 Moves
261 -----
262
263 The following developers recently left the Gentoo project:
264
265 * None this week
266
267 Adds
268 ----
269
270 The following developers recently joined the Gentoo project:
271
272 * Emanuele Giaquin (exg) - Gentoo/OS X and PPC
273 * Alfredo Tupone (Tupone) - Games herd
274
275 Changes
276 -------
277
278 The following developers recently changed roles within the Gentoo project:
279
280 * None this week
281
282 ==================
283 7. Gentoo Security
284 ==================
285
286 IMAP Proxy: Format string vulnerabilities
287 -----------------------------------------
288
289 Format string vulnerabilities in IMAP Proxy may lead to the execution of
290 arbitrary code when connected to malicious IMAP servers.
291
292 For more information, please see the GLSA Announcement[17]
293
294 17. http://www.gentoo.org/security/en/glsa/glsa-200603-04.xml
295
296 zoo: Stack-based buffer overflow
297 --------------------------------
298
299 A stack-based buffer overflow in zoo may be exploited to execute arbitrary
300 code through malicious ZOO archives.
301
302 For more information, please see the GLSA Announcement[18]
303
304 18. http://www.gentoo.org/security/en/glsa/glsa-200603-05.xml
305
306 GNU tar: Buffer overflow
307 ------------------------
308
309 A malicious tar archive could trigger a Buffer overflow in GNU tar,
310 potentially resulting in the execution of arbitrary code.
311
312 For more information, please see the GLSA Announcement[19]
313
314 19. http://www.gentoo.org/security/en/glsa/glsa-200603-06.xml
315
316 flex: Potential insecure code generation
317 ----------------------------------------
318
319 flex might generate code with a buffer overflow, making applications using
320 such scanners vulnerable to the execution of arbitrary code.
321
322 For more information, please see the GLSA Announcement[20]
323
324 20. http://www.gentoo.org/security/en/glsa/glsa-200603-07.xml
325
326 GnuPG: Incorrect signature verification
327 ---------------------------------------
328
329 GnuPG may erroneously report a modified or unsigned message has a valid
330 digital signature.
331
332 For more information, please see the GLSA Announcement[21]
333
334 21. http://www.gentoo.org/security/en/glsa/glsa-200603-08.xml
335
336 SquirrelMail: Cross-site scripting and IMAP command injection
337 -------------------------------------------------------------
338
339 SquirrelMail is vulnerable to several cross-site scripting vulnerabilities
340 and IMAP command injection.
341
342 For more information, please see the GLSA Announcement[22]
343
344 22. http://www.gentoo.org/security/en/glsa/glsa-200603-09.xml
345
346 Cube: Multiple vulnerabilities
347 ------------------------------
348
349 Cube is vulnerable to a buffer overflow, invalid memory access and remote
350 client crashes, possibly leading to a Denial of Service or remote code
351 execution.
352
353 For more information, please see the GLSA Announcement[23]
354
355 23. http://www.gentoo.org/security/en/glsa/glsa-200603-10.xml
356
357 ===========
358 8. Bugzilla
359 ===========
360
361 Statistics
362 ----------
363
364 The Gentoo community uses Bugzilla (bugs.gentoo.org[24]) to record and
365 track bugs, notifications, suggestions and other interactions with the
366 development team. Between 05 March 2006 and 12 March 2006, activity on the
367 site has resulted in:
368
369 24. http://bugs.gentoo.org
370
371 * 849 new bugs during this period
372 * 413 bugs closed or resolved during this period
373 * 25 previously closed bugs were reopened this period
374
375 Of the 9683 currently open bugs: 62 are labeled 'blocker', 155 are labeled
376 'critical', and 539 are labeled 'major'.
377
378 Closed bug rankings
379 -------------------
380
381 The developers and teams who have closed the most bugs during this period
382 are:
383
384 * Xavier Neys[25], with 22 closed bugs[26]
385 * Gentoo Security[27], with 20 closed bugs[28]
386 * Gentoo Games[29], with 17 closed bugs[30]
387 * NX Server Herd[31], with 16 closed bugs[32]
388 * GNU Emacs Herd[33], with 16 closed bugs[34]
389 * media-video herd[35], with 11 closed bugs[36]
390 * Portage team[37], with 10 closed bugs[38]
391 * Gentoo's Team for Core System packages[39], with 10 closed bugs[40]
392 25. neysx@g.o
393 26.
394 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=neysx@g.o
395 27. security@g.o
396 28.
397 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=security@g.o
398 29. games@g.o
399 30.
400 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=games@g.o
401 31. nx@g.o
402 32.
403 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=nx@g.o
404 33. emacs@g.o
405 34.
406 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=emacs@g.o
407 35. media-video@g.o
408 36.
409 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=media-video@g.o
410 37. dev-portage@g.o
411 38.
412 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=dev-portage@g.o
413 39. base-system@g.o
414 40.
415 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2006-03-05&chfieldto=2006-03-12&resolution=FIXED&assigned_to=base-system@g.o
416
417
418 New bug rankings
419 ----------------
420
421 The developers and teams who have been assigned the most new bugs during
422 this period are:
423
424 * Default Assignee for New Packages[41], with 34 new bugs[42]
425 * Gentoo KDE team[43], with 12 new bugs[44]
426 * Gentoo Games[45], with 12 new bugs[46]
427 * Mozilla Gentoo Team[47], with 9 new bugs[48]
428 * Gentoo Science Related Packages[49], with 8 new bugs[50]
429 * AMD64 Project[51], with 8 new bugs[52]
430 * Gentoo Toolchain Maintainers[53], with 7 new bugs[54]
431 * Python Gentoo Team[55], with 7 new bugs[56]
432 41. maintainer-wanted@g.o
433 42.
434 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=maintainer-wanted@g.o
435 43. kde@g.o
436 44.
437 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=kde@g.o
438 45. games@g.o
439 46.
440 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=games@g.o
441 47. mozilla@g.o
442 48.
443 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=mozilla@g.o
444 49. sci@g.o
445 50.
446 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=sci@g.o
447 51. amd64@g.o
448 52.
449 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=amd64@g.o
450 53. toolchain@g.o
451 54.
452 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=toolchain@g.o
453 55. python@g.o
454 56.
455 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2006-03-05&chfieldto=2006-03-12&assigned_to=python@g.o
456
457
458 ===============
459 9. GWN feedback
460 ===============
461
462 Please send us your feedback[57] and help make the GWN better.
463
464 57. gwn-feedback@g.o
465
466 ================================
467 10. GWN subscription information
468 ================================
469
470 To subscribe to the Gentoo Weekly Newsletter, send a blank email to
471 gentoo-gwn+subscribe@g.o.
472
473 To unsubscribe to the Gentoo Weekly Newsletter, send a blank email to
474 gentoo-gwn+unsubscribe@g.o from the email address you are
475 subscribed under.
476
477 ===================
478 11. Other languages
479 ===================
480
481 The Gentoo Weekly Newsletter is also available in the following languages:
482
483 * Danish[58]
484 * Dutch[59]
485 * English[60]
486 * German[61]
487 * French[62]
488 * Korean[63]
489 * Japanese[64]
490 * Italian[65]
491 * Polish[66]
492 * Portuguese (Brazil)[67]
493 * Portuguese (Portugal)[68]
494 * Russian[69]
495 * Spanish[70]
496 * Turkish[71]
497 58. http://www.gentoo.org/news/da/gwn/gwn.xml
498 59. http://www.gentoo.org/news/nl/gwn/gwn.xml
499 60. http://www.gentoo.org/news/en/gwn/gwn.xml
500 61. http://www.gentoo.org/news/de/gwn/gwn.xml
501 62. http://www.gentoo.org/news/fr/gwn/gwn.xml
502 63. http://www.gentoo.org/news/ko/gwn/gwn.xml
503 64. http://www.gentoo.org/news/ja/gwn/gwn.xml
504 65. http://www.gentoo.org/news/it/gwn/gwn.xml
505 66. http://www.gentoo.org/news/pl/gwn/gwn.xml
506 67. http://www.gentoo.org/news/pt_br/gwn/gwn.xml
507 68. http://www.gentoo.org/news/pt/gwn/gwn.xml
508 69. http://www.gentoo.org/news/ru/gwn/gwn.xml
509 70. http://www.gentoo.org/news/es/gwn/gwn.xml
510 71. http://www.gentoo.org/news/tr/gwn/gwn.xml
511
512
513 Ulrich Plate <plate@g.o> - Editor
514 Ioannis Aslanidis <deathwing00@g.o> - Author
515 Wernfried Haas <amne@g.o> - Author
516 Shyam Mani <fox2mike@g.o> - Author
517 Sven Vermeulen <swift@g.o> - Author
518
519 --
520 gentoo-gwn@g.o mailing list
Report Message
Find on MARC Find on Google Groups