1 |
--------------------------------------------------------------------------- |
2 |
Gentoo Weekly Newsletter |
3 |
http://www.gentoo.org/news/en/gwn/current.xml |
4 |
This is the Gentoo Weekly Newsletter for the week of March 10th, 2003. |
5 |
--------------------------------------------------------------------------- |
6 |
|
7 |
============== |
8 |
1. Gentoo News |
9 |
============== |
10 |
|
11 |
Summary |
12 |
------- |
13 |
|
14 |
* distcc in a nutshell |
15 |
* Remarkable response to our call for developers |
16 |
|
17 |
distcc in a nutshell |
18 |
-------------------- |
19 |
|
20 |
A question often asked by our readers is, "What is distcc?". In a |
21 |
nutshell, distcc[1] allows you to distribute compilation of C or C++ code |
22 |
across several machines on a network. For home users with multiple |
23 |
computers, this means you can distribute the load of compiling KDE 3.1 |
24 |
across all your Gentoo machines. For embedded devices or older computers, |
25 |
it means you can build packages on a faster machine (or group of machines) |
26 |
to take advantage of the increased processing power. distcc works closely |
27 |
with gcc to ensure that distcc distributed compiles produce the same |
28 |
result as using gcc directly. |
29 |
|
30 |
1. http://distcc.samba.org/ |
31 |
|
32 |
distcc 1.2.3 was recently marked as stable in the Portage tree, so users |
33 |
are encouraged to try it out and discover the wonders of distributed |
34 |
compiling. Obviously, there's a lot more to distcc than is described here. |
35 |
Users interested in learning more should check out the following |
36 |
resources: |
37 |
|
38 |
* distcc home page[1] |
39 |
* Using distcc with Portage[1] |
40 |
* Accelerating compilation, Part 2: distcc[1] |
41 |
|
42 |
Remarkable response to our call for developers |
43 |
---------------------------------------------- |
44 |
|
45 |
In last week's GWN[2], we posted a number of open positions[3] in the |
46 |
Gentoo Linux project. The response to this posting was remarkable, with |
47 |
nearly 75 responses received. As a result, Gentoo Linux now has the |
48 |
assistance of two new documentation editors and a new kernel developer. |
49 |
We're still sorting through the respondents to the Web Developer position |
50 |
and will be contacting folks with regards to that in the coming days. |
51 |
|
52 |
2. http://www.gentoo.org/news/en/gwn/20030303-newsletter.xml |
53 |
3. |
54 |
http://www.gentoo.org/news/en/gwn/20030303-newsletter.xml#doc_chap1_sect3 |
55 |
|
56 |
Where possible, we've tried to send individual responses to each of the |
57 |
respondents. If you haven't received a response, we apologize and thank |
58 |
you for offering to help Gentoo Linux. We'll continue to post open |
59 |
positions in future editions of the GWN, so keep an eye out for them. |
60 |
|
61 |
================== |
62 |
2. Gentoo Security |
63 |
================== |
64 |
|
65 |
Summary |
66 |
------- |
67 |
|
68 |
* GLSA: tcpdump |
69 |
* GLSA: snort |
70 |
* GLSA: mysqlcc |
71 |
* New Security Bug Reports |
72 |
* gentoo-security |
73 |
|
74 |
GLSA: sendmail |
75 |
-------------- |
76 |
|
77 |
A recently discovered vulnerability in sendmail could permit a remote user |
78 |
to gain root privileges on the server with a carefully crafted email |
79 |
message. A proof-of-concept exploit has been demonstrated, but no exploits |
80 |
in the wild have been reported. |
81 |
|
82 |
* Severity: Critical - Remote Root Exploit |
83 |
* Packages Affected: net-mail/sendmail versions prior to sendmail-8.12.8 |
84 |
* Rectification: Synchronize and emerge -u sendmail, emerge clean. |
85 |
* GLSA Announcement[4] |
86 |
* Advisory[5] |
87 |
|
88 |
4. http://forums.gentoo.org/viewtopic.php?t=39182 |
89 |
5. http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950 |
90 |
|
91 |
GLSA: snort |
92 |
----------- |
93 |
|
94 |
Snort contains a buffer overflow that may be exploited to run arbitrary |
95 |
code with the privileges of the Snort IDS process, potentially root. |
96 |
|
97 |
* Severity: Critical - Remote Execution of Code |
98 |
* Packages Affected: net-analyzer/snort versions prior to snort-1.9.1 |
99 |
* Rectification: Synchronize and emerge -u snort, emerge clean. |
100 |
* GLSA Announcement[6] |
101 |
* Advisory[7] |
102 |
|
103 |
6. http://forums.gentoo.org/viewtopic.php?t=39625 |
104 |
7. http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21951 |
105 |
|
106 |
GLSA: tcpdump |
107 |
------------- |
108 |
|
109 |
TCPDump contains a vulnerability in the way it parses certain UDP packets |
110 |
that allows a carefully crafted packet to provoke an infinite loop. |
111 |
|
112 |
* Severity: High - Remote DOS |
113 |
* Packages Affected: net-analyzer/tcpdump versions prior to tcpdump-3.7.2 |
114 |
* Rectification: Synchronize and emerge -u tcpdump, emerge clean. |
115 |
* GLSA Announcement[8] |
116 |
* Advisory[9] |
117 |
|
118 |
8. http://forums.gentoo.org/viewtopic.php?t=39378 |
119 |
9. http://www.idefense.com/advisory/02.27.03.txt |
120 |
|
121 |
GLSA: mysqlcc |
122 |
------------- |
123 |
|
124 |
MySQLcc has its configuration and connection files set as world-readable. |
125 |
|
126 |
* Severity: Moderate - Local Information Exposure |
127 |
* Packages Affected: dev-db/mysqlcc versions prior to mysqlcc-0.8.10-r1 |
128 |
* Rectification: Synchronize and emerge -u mysqlcc, emerge clean. |
129 |
|
130 |
New Security Bug Reports |
131 |
------------------------ |
132 |
|
133 |
The following new security bugs were posted this week: |
134 |
|
135 |
* net-mail/mailbase[10] |
136 |
* net-www/netscape-flash[11] |
137 |
* sys-apps/file[12] |
138 |
|
139 |
10. http://bugs.gentoo.org/show_bug.cgi?id=16749 |
140 |
11. http://bugs.gentoo.org/show_bug.cgi?id=16851 |
141 |
12. http://bugs.gentoo.org/show_bug.cgi?id=16943 |
142 |
|
143 |
gentoo-security |
144 |
--------------- |
145 |
|
146 |
Arthur Britto started a persistent thread on the gentoo-security list by |
147 |
posting a message[13] complaining about GLSAs (Gentoo-Linux Security |
148 |
Announcements) being cross-posted to gentoo-security and gentoo-announce. |
149 |
The discussion quickly split into two camps - those arguing that |
150 |
redundancy in important messages was valuable and those insisting that a |
151 |
clearly defined single channel for GLSAs was more important. The |
152 |
conversation occasionally evolved into discussions about whether using |
153 |
filters and procmail to strip redundant messages was the right way to |
154 |
resolve it, and even included suggestions for setting up a third, |
155 |
dedicated, list for GLSAs. The thread finally concluded with a plea[14] |
156 |
for it to stop along with the official pronouncement that all GLSAs will |
157 |
in the future be posted only to gentoo-announce, and that gentoo-security |
158 |
should be confined to discussions about security issues rather than |
159 |
security announcements. |
160 |
|
161 |
13. http://marc.theaimsgroup.com/?l=gentoo-security&m=104680396930226&w=2 |
162 |
14. http://marc.theaimsgroup.com/?l=gentoo-security&m=104691695816397&w=2 |
163 |
|
164 |
================================= |
165 |
3. Featured Developer of the Week |
166 |
================================= |
167 |
|
168 |
Jared H. Hudson |
169 |
|
170 |
Figure 3.1: Jared H. Hudson |
171 |
http://www.gentoo.org/images/gwn/20030310_jhhudso.jpg |
172 |
Jared H. Hudson[15], whom we feature this week, is the x86 QA Coordintor |
173 |
and the x86 stages/GRPs Coordinator as of Gentoo Linux's latest 1.4_rc3 |
174 |
release candidate. This means he's responsible for making sure that the |
175 |
stages and GRPs work properly so that users can install Gentoo Linux. |
176 |
Jared's involvement with Gentoo (which happens to be the first OSS project |
177 |
he has worked on) began with his fixing a bug in a Gentoo package, |
178 |
impressing a senior developer. Accepting a subsequent invitation to join |
179 |
the team, Jared has been handling bug reports like the other developers, |
180 |
especially in PHP, DNS, emacs, and vim - his areas of expertise. He also |
181 |
created use.desc (located in /usr/portage/profiles/), which lists what the |
182 |
use flags in Gentoo do. |
183 |
|
184 |
15. jhhudso@g.o |
185 |
|
186 |
Jared's last job was as a Linux sysadmin for a web hosting company that |
187 |
went bankrupt; now he's seeking employment. He lives in Fayetteville, |
188 |
Arkansas (though he would like to move to Europe) with two cats: Script |
189 |
(she's a script kitty) and Frankie, and a dual Athlon 1200 box running |
190 |
Waimea, and often xmms, emacs, gcc, mozilla, and gaim. Jared loves reading |
191 |
and has been playing Magic: the Gathering lately. |
192 |
|
193 |
========================= |
194 |
4. Heard In The Community |
195 |
========================= |
196 |
|
197 |
Web Forums |
198 |
---------- |
199 |
|
200 |
1.4-rc3-triggered Newbie Influx |
201 |
|
202 |
Even the oldest hands seem to wear a badge saying "I'm friendly to |
203 |
newbies" these days, setting aside an extraordinary amount of patience and |
204 |
helpful advice for the many newcomers attracted by the third release |
205 |
candidate. Is it safe to use? Will it do what my <insert prior Linux |
206 |
distribution> could do? Will it change my life, water the plants, walk the |
207 |
dog? Just ask, somebody will answer without patronizing or spitting |
208 |
gratuitous flames at you: |
209 |
|
210 |
* Is 1.4 rc3 okay to use?[15] |
211 |
* major probs with rc3[15] |
212 |
* Gentoo 1.4rc3 and problems with Realtek 8139too driver[15] |
213 |
* Install on a7n8x, network problem, rc3[15] |
214 |
|
215 |
New Dutch Forum Moderator Needed |
216 |
|
217 |
The Dutch forum is in need of someone to crack the whip from time to time. |
218 |
Don't worry, they usually behave exceptionally well. It's all about |
219 |
spotting the occasional duplicate thread, making important announcements |
220 |
sticky and looking over the forum's well-being in general. Post |
221 |
applications to this thread or send a personal message to the site admin |
222 |
who originated the call: |
223 |
|
224 |
* New moderator needed[16] |
225 |
|
226 |
16. http://forums.gentoo.org/viewtopic.php?t=37394 |
227 |
|
228 |
gentoo-user |
229 |
----------- |
230 |
|
231 |
Gentoo and the LSB |
232 |
|
233 |
A hot discussion[17] took place recently regarding Gentoo's compliance |
234 |
with the LSB. Currently there are two issues holding Gentoo from being an |
235 |
"LSB Compliant" distribution. The first being that LSB requires the |
236 |
ability to install RPMs on a system. The second offender is that KDE and |
237 |
Gonome are in different directories, and that the LSB standard can easily |
238 |
be scrutinized ATM. A few suggestions[18] on handling the directory |
239 |
hiearchy of the GUI desktops made their way into the thread, which lead to |
240 |
worthwhile explanations of the different parts of a *nix file system. |
241 |
Remembering that both Gentoo and the LSB are new and developing projects, |
242 |
hopes of a brighter future will come. For now, the LSB experiences mixed |
243 |
attitudes within the Gentoo-user community, from enthusiasts to claims |
244 |
that the LSB is, and will always be a " straight jacket[19]". |
245 |
|
246 |
17. http://marc.theaimsgroup.com/?l=gentoo-user&m=104673605702478&w=2 |
247 |
18. http://marc.theaimsgroup.com/?l=gentoo-user&m=104673347822883&w=2 |
248 |
19. http://marc.theaimsgroup.com/?l=gentoo-user&m=104674827412985&w=2 |
249 |
|
250 |
CFLAGS... Get your CFLAGS... |
251 |
|
252 |
As long as there is Gentoo, there will be questions about CFLAGS and |
253 |
compiler optimizations. Due to the fact that Gentoo is a source based |
254 |
distribution, and that these sources are likely to be compiled under the |
255 |
direction of a tweaked out penguin, a lot of emphasis is placed on |
256 |
choosing the best set of options for the system's hardware. For most of us |
257 |
the decision is made quickly by using one of the many examples available |
258 |
for all sorts of hardware. To delve further into the subject, and make |
259 |
sense of what these flags actually mean provides a very insightful read. |
260 |
Jason Giangrande's thread[20] not only surfaced many examples[21] , but |
261 |
provided some links to great explanatory resources.[22] |
262 |
|
263 |
20. http://marc.theaimsgroup.com/?l=gentoo-user&m=104681036605977&w=2 |
264 |
21. http://marc.theaimsgroup.com/?l=gentoo-user&m=104681166407519&w=2 |
265 |
22. http://marc.theaimsgroup.com/?l=gentoo-user&m=104686400117843&w=2 |
266 |
|
267 |
gentoo-dev |
268 |
---------- |
269 |
|
270 |
Cruft detecting script |
271 |
|
272 |
Andy Arbon proposed[23] the creation of a cruft detecting script, i.e. a |
273 |
script that would detect all the files that Portage has lost track of and |
274 |
therefore will lay in the filesystem as long as we do not do something |
275 |
about it. A quick hack[24] was posted by Evan Powers but more tuning and |
276 |
exploring seems to be needed with this useful utility. |
277 |
|
278 |
23. http://article.gmane.org/gmane.linux.gentoo.devel/7227 |
279 |
24. http://article.gmane.org/gmane.linux.gentoo.devel/7243 |
280 |
|
281 |
Open Gentoo Linux Development Positions |
282 |
|
283 |
John P. Davis posted an announcement saying[25] that Gentoo Linux is |
284 |
recruiting new developers. |
285 |
|
286 |
25. http://article.gmane.org/gmane.linux.gentoo.devel/7245 |
287 |
|
288 |
man vs. man-db |
289 |
|
290 |
James H. Cloos Jr. mentioned[26] that Gentoo is currently using man[27] |
291 |
which seems quite outdated and that man-db[28] seems a better alternative |
292 |
and it is being used by popular GNU/Linux distributions like Debian and |
293 |
Suse. |
294 |
|
295 |
26. http://article.gmane.org/gmane.linux.gentoo.devel/7266 |
296 |
27. http://freshmeat.net/projects/man/?topic_id=905 |
297 |
28. http://man-db.sourceforge.net/ |
298 |
|
299 |
======================= |
300 |
5. Gentoo International |
301 |
======================= |
302 |
|
303 |
Vienna Meeting Report |
304 |
|
305 |
Fortunately, improvisation is second nature for Gentoo users: If you don't |
306 |
know how to solve a problem, you're not worthy of having one in the first |
307 |
place. Last week, the Vienna Gentoo user crowd had to change the venue for |
308 |
their meeting on the fly because the original location's staff, |
309 |
("presumably blonde"), had managed to misplace the reservation. As it |
310 |
turned out, the neighboring Community Center of the Austrian Communist |
311 |
Party, Cafe 7Stern, was more hospitable, featuring a waitress with strong |
312 |
beliefs ("Better take a beer like everyone else, laddie") and a wacko lady |
313 |
occasionally visiting the Gentoo table asking why the show on stage wasn't |
314 |
about to begin. Latecomers missed the fun because of the location change, |
315 |
but everybody else was visibly enjoying the meeting, and they're already |
316 |
discussing follow-ups. The full account (in German) is posted here[29]. |
317 |
|
318 |
29. http://forums.gentoo.org/viewtopic.php?t=9161 |
319 |
|
320 |
Figure 5.1: Gentoo users meet in Vienna |
321 |
http://www.gentoo.org/images/gwn/20030310_viennagentooers.jpg |
322 |
New: Romanian IRC Channel |
323 |
|
324 |
On Thursday last week, Panzerboy[30] announced the creation of a channel |
325 |
for Romanian Gentoo users on the same IRC network as the others: |
326 |
#gentoo-ro on irc.freenode.net. Feel free to /join... |
327 |
|
328 |
30. http://forums.gentoo.org/profile.php?mode=viewprofile&u=6290 |
329 |
|
330 |
================ |
331 |
6. Portage Watch |
332 |
================ |
333 |
|
334 |
The following stable packages were added to portage this week |
335 |
------------------------------------------------------------- |
336 |
|
337 |
* app-emulation/goosnes : A GTK+ frontend for Snes9X |
338 |
http://bard.sytes.net/goosnes/ |
339 |
* app-emulation/qmamecat : mame catalog and frontend |
340 |
http://www.mameworld.net/mamecat/ |
341 |
* app-emulation/visualboyadvance : gameboy, gameboy color, and gameboy |
342 |
advance emulator http://vboy.emuhq.com/ |
343 |
* app-games/poopmup : You are now free to fly around the city and poop on |
344 |
passers-by http://sourceforge.net/projects/poopmup/ |
345 |
* app-games/zoom : A fast, clean, modern Z-code interpreter for X |
346 |
http://www.logicalshift.demon.co.uk/unix/zoom/ |
347 |
* app-games/toppler : reimplemention of Nebulus using SDL |
348 |
http://toppler.sourceforge.net/ |
349 |
* app-games/adonthell : roleplaying game engine |
350 |
http://adonthell.linuxgames.com/ |
351 |
* app-games/fbg : A tetris-clone written in OpenGL |
352 |
http://home.attbi.com/~furiousjay/code/fbg.html |
353 |
* app-games/fortune-mod-kernelcookies : A collection of funny lines from |
354 |
the Linux kernel http://unattached.i-no.de/software-misc.shtml |
355 |
* app-games/geki3-KXL : 2D length scroll shooting game http://kxl.hn.org/ |
356 |
* app-games/gnocatan : A clone of the popular board game The Settlers of |
357 |
Catan http://gnocatan.sourceforge.net/ |
358 |
* app-games/gnubg : GNU BackGammon |
359 |
http://www.gnu.org/software/gnubg/gnubg.html |
360 |
* app-games/grande-KXL : It is a ZANAC type game http://kxl.hn.org/ |
361 |
* app-games/pyddr : Dance Dance Revolution! You need this game more than |
362 |
Frozen Bubble http://www.icculus.org/pyddr/ |
363 |
* app-games/pyddr-songs : Music for the pyDDR game |
364 |
http://icculus.org/pyddr/ |
365 |
* app-games/tuxmathscrabble : math-version of the popular board game for |
366 |
children 4-10 http://sourceforge.net/projects/tuxmathscrabble/ |
367 |
* app-games/wastesedge : role playing game to showcase the adonthell |
368 |
engine http://adonthell.linuxgames.com/ |
369 |
* app-games/wtf : translates acronyms for you http://www.mu.org/~mux/wtf/ |
370 |
* app-games/wumpus : Classic Hunt the Wumpus Adventure Game |
371 |
http://cvsweb.netbsd.org/bsdweb.cgi/src/games/wump/ |
372 |
* app-games/crimson : tactical war game in the tradition of Battle Isle |
373 |
http://www.lanipage.de/jens/ |
374 |
* app-games/groundhog : Kids card/puzzle game |
375 |
http://home-2.consunet.nl/~cb007736/groundhog.html |
376 |
* app-games/matritsa : Kids card/puzzle game |
377 |
http://imagic.weizmann.ac.il/~dov/freesw/matritsa.html |
378 |
* app-i18n/imhangul : Gtk+-2.0 Hangul Input Modules |
379 |
http://imhangul.kldp.net/ |
380 |
* app-i18n/imhangul_status_applet : Status Applet for imhangul |
381 |
http://imhangul.kldp.net/ |
382 |
* app-misc/banner : The well known banner program for linux |
383 |
http://cedar-solutions.com |
384 |
* app-misc/cdctl : Utility to control your cd/dvd drive |
385 |
http://cdctl.sourceforge.net/ |
386 |
* dev-db/mysqlcc : a MySQL GUI Client http://www.mysql.com/ |
387 |
* dev-libs/dvacm4 : dvacm4 provides autoconf macros used by the dv* C++ |
388 |
utilities http://tinf2.vub.ac.be/~dvermeir/software/dv/dvacm/html/ |
389 |
* dev-libs/dvcgi : dvcgi provides a C++ interface for C++ cgi programs |
390 |
http://tinf2.vub.ac.be/~dvermeir/software/dv/dvcgi/html/ |
391 |
* dev-libs/dvenv : dvenv provides polymorphic tree-structured |
392 |
environments, generalizing the Dv::Util::Props class |
393 |
http://tinf2.vub.ac.be/~dvermeir/software/dv/dvenv/html/ |
394 |
* dev-libs/dvmysql : dvmysql provides a C++ interface to mysql |
395 |
http://tinf2.vub.ac.be/~dvermeir/software/dv/dvmysql/html/ |
396 |
* dev-libs/dvnet : dvnet provides an interface wrapping sockets into |
397 |
streams http://tinf2.vub.ac.be/~dvermeir/software/dv/dvnet/html/ |
398 |
* dev-libs/dvssl : dvssl provides a simple interface to openssl |
399 |
http://tinf2.vub.ac.be/~dvermeir/software/dv/dvssl/html/ |
400 |
* dev-libs/dvthread : dvthread provides classes for threads and monitors, |
401 |
wrapped around the posix thread library |
402 |
http://tinf2.vub.ac.be/~dvermeir/software/dv/dvthread/html/ |
403 |
* dev-libs/dvutil : dvutil provides some general C++ utility classes for |
404 |
files, directories, dates, property lists, reference counted pointers, |
405 |
number conversion etc. |
406 |
http://tinf2.vub.ac.be/~dvermeir/software/dv/dvutil/html/ |
407 |
* dev-tcltk/tclgpgme : Tcl/Tk libraries to gpgme. |
408 |
http://beepcore-tcl.sourceforge.net/ |
409 |
* dev-tcltk/tcllib : Tcl Standard Library. |
410 |
http://www.tcl.tk/software/tcllib/ |
411 |
* dev-tcltk/tclxml-expat : Tcl wrapper libraries for expat XML parser. |
412 |
http://tclxml.sourceforge.net/ |
413 |
* dev-tcltk/tkTheme : Tcl/Tk Theming library. |
414 |
http://www.xmission.com/~georgeps/Tk_Theme/other/ |
415 |
* dev-tcltk/tkXwin : Tcl/Tk library to detect idle periods of an X |
416 |
session. http://beepcore-tcl.sourceforge.net/ |
417 |
* dev-tcltk/tls : TLS OpenSSL extension to Tcl. |
418 |
http://tls.sourceforge.net/ |
419 |
* media-libs/fmod : music and sound effects library, and a sound |
420 |
processing system http://www.fmod.org/ |
421 |
* gnome-extra/fontilus : Fontviewer for Nautilus http://www.gnome.org/ |
422 |
* net-im/tkabber : Featurefull Jabber client for tcl/tk. |
423 |
http://www.jabber.ru/projects/tkabber/index_en.html |
424 |
* net-irc/konversation : A user friendly IRC Client for KDE3.x |
425 |
http://konversation.sourceforge.net |
426 |
* net-news/knews : A threaded newsreader for X. |
427 |
http://www.matematik.su.se/~kjj/ |
428 |
* net-www/mini_httpd : Small forking webserver with optional ssl and ipv6 |
429 |
support http://www.acme.com/software/mini_httpd/ |
430 |
* net-www/monkeyd : fast, efficient, (REALLY) small, and easy to |
431 |
configure web server http://monkeyd.sourceforge.net/ |
432 |
* sys-kernel/gaming-sources : Full sources for the Gentoo |
433 |
gaming-optimized kernel http://members.optusnet.com.au/ckolivas/kernel/ |
434 |
* x11-terms/kuake : A Quake-style terminal emulator |
435 |
http://www.nemohackers.org/index.php?p=kuake |
436 |
* media-sound/id3ed : id3ed is an ID3 tag editor for mp3 files. You can |
437 |
set tags interactively or from the command line, or a combination of both. |
438 |
id3ed can set genre by name or number. You can also remove or view tags. |
439 |
http://www.azstarnet.com/~donut/programs/id3ed.html |
440 |
* media-sound/liteamp : Liteamp - yet another light-weight ogg and mp3 |
441 |
player for gnome http://liteamp.kldp.net |
442 |
* media-sound/takcd : Command line CD player http://bard.sytes.net/takcd/ |
443 |
* media-sound/timidity++ : A handy MIDI to WAV converter with OSS and |
444 |
ALSA output support http://www.goice.co.jp/member/mo/timidity/ |
445 |
* media-sound/waif : Why Another Infernal Frontend -- console front end |
446 |
for various media-players http://eds.org/~straycat |
447 |
* media-video/filmgimp : motion picture editing tool used for painting |
448 |
and retouching of movies http://filmgimp.org/ |
449 |
/usr/portage/media-video/gqcam |
450 |
* media-video/gxine : GTK+ Front-End for libxine |
451 |
http://xine.sourceforge.net/ /usr/portage/media-video/kino |
452 |
* media-video/kmplayer : MPlayer frontend for KDE |
453 |
http://www.xs4all.nl/~jjvrieze/kmplayer.html |
454 |
|
455 |
Updates to notable packages |
456 |
--------------------------- |
457 |
|
458 |
* sys-apps/portage - portage-2.0.47-r8.ebuild; |
459 |
* sys-devel/gcc - gcc-3.2.2-r3.ebuild; |
460 |
* sys-libs/glibc - glibc-2.3.2.ebuild; |
461 |
* x11-base/xfree - xfree-4.3.0.ebuild; |
462 |
* sys-kernel/* - ac-sources-2.4.21_pre5-r1.ebuild; |
463 |
ac-sources-2.4.21_pre5-r2.ebuild; ck-sources-2.4.20-r4.ebuild; |
464 |
development-sources-2.5.64.ebuild; gaming-sources-2.4.20.ebuild; |
465 |
gs-sources-2.4.21_pre5.ebuild; lolo-sources-2.4.20.2_pre3.ebuild; |
466 |
lolo-sources-2.4.20.2_pre4.ebuild; mm-sources-2.5.63-r2.ebuild; |
467 |
mm-sources-2.5.64-r1.ebuild; mm-sources-2.5.64-r2.ebuild; |
468 |
ppc-sources-benh-2.4.20-r7.ebuild; ppc-sources-benh-2.4.20-r8.ebuild; |
469 |
redhat-sources-2.4.20.2.48-r1.ebuild; sparc-sources-2.4.20-r4.ebuild; |
470 |
usermode-sources-2.4.19-r49.ebuild; usermode-sources-2.4.19-r50.ebuild; |
471 |
usermode-sources-2.4.19-r51.ebuild; usermode-sources-2.4.20-r1.ebuild; |
472 |
* dev-db/mysql - mysql-3.23.54a-r1.ebuild; mysql-4.0.11a.ebuild; |
473 |
* sys-devel/perl - perl-5.8.0-r10.ebuild; |
474 |
* dev-db/postgresql - postgresql-7.3.2.ebuild; |
475 |
* app-admin/gentoolkit - gentoolkit-0.1.19-r1.ebuild; |
476 |
gentoolkit-0.1.19-r2.ebuild; gentoolkit-0.1.19.ebuild; |
477 |
|
478 |
New USE variables |
479 |
----------------- |
480 |
|
481 |
* dvb - Enables support for Digital Video Broadcast (DVB) cable/satelite |
482 |
TV cards |
483 |
|
484 |
=========== |
485 |
7. Bugzilla |
486 |
=========== |
487 |
|
488 |
Summary |
489 |
------- |
490 |
|
491 |
* Statistics |
492 |
* Closed Bug Ranking |
493 |
* New Bug Rankings |
494 |
|
495 |
Statistics |
496 |
---------- |
497 |
|
498 |
The Gentoo community uses Bugzilla (bugs.gentoo.org[31]) to record and |
499 |
track bugs, notifications, suggestions and other interactions with the |
500 |
development team. In the last 7 days, activity on the site has resulted in: |
501 |
|
502 |
31. http://bugs.gentoo.org |
503 |
|
504 |
* 263 new bugs this week |
505 |
* 459 bugs closed or resolved this week |
506 |
* 7 previously closed bugs were reopened this week. |
507 |
* 1971 total bugs currently marked 'new' |
508 |
* 485 total bugs currently assigned to developers |
509 |
|
510 |
There are currently 2517 bugs open in bugzilla. Of these: 60 are labeled |
511 |
'blocker', 92 are labelled 'critical', and 174 are labelled 'major'. |
512 |
|
513 |
Closed Bug Rankings |
514 |
------------------- |
515 |
|
516 |
The developers and teams who have closed the most bugs this week are: |
517 |
|
518 |
* The Games Team[31], with 44 closed bugs[31] |
519 |
* The Sparc Team[31], with 20 closed bugs[31] |
520 |
* The Gnome Team[31], with 19 closed bugs[31] |
521 |
* Martin Schlemmer[31], with 12 closed bugs[31] |
522 |
* Arcady Genkin[31], with 11 closed bugs[31] |
523 |
|
524 |
New Bug Rankings |
525 |
---------------- |
526 |
|
527 |
The developers and teams who have been assigned the most new bugs this |
528 |
week are: |
529 |
|
530 |
|
531 |
* The x86 Kernel Team[31], with 64 new bugs[31] |
532 |
* Martin Schlemmer[31], with 19 new bugs[31] |
533 |
* Jay Pfeifer[31], with 18 new bugs[31] |
534 |
* Nicholas Jones[31], with 16 new bugs[31] |
535 |
* Seemant Kulleen[31], with 11 new bugs[31] |
536 |
|
537 |
================== |
538 |
8. Tips and Tricks |
539 |
================== |
540 |
|
541 |
Creating a Certificate Authority (CA) |
542 |
|
543 |
This week's tip shows you how to create your own Certificate Authority |
544 |
used for signing SSL certificates. |
545 |
|
546 |
The first step is to create your new CA certificate. |
547 |
--------------------------------------------------------------------------- |
548 |
| Code Listing 8.1: | |
549 |
| Establishing CA certificates | |
550 |
--------------------------------------------------------------------------- |
551 |
| | |
552 |
|# cd /etc/ssl | |
553 |
|# ./misc/CA.pl -newca | |
554 |
|CA certificate filename (or enter to create) | |
555 |
| | |
556 |
|Making CA certificate ... | |
557 |
|Using configuration from /etc/ssl/openssl.cnf | |
558 |
|Generating a 1024 bit RSA private key | |
559 |
|............++++++ | |
560 |
|............................................++++++ | |
561 |
|writing new private key to './demoCA/private/cakey.pem' | |
562 |
|Enter PEM pass phrase:<your password> | |
563 |
|Verifying password - Enter PEM pass phrase:<your password (again)> | |
564 |
|----- | |
565 |
|You are about to be asked to enter information that will be incorporated | |
566 |
|into your certificate request. | |
567 |
|What you are about to enter is what is called a Distinguished Name or a | |
568 |
|DN. | |
569 |
|There are quite a few fields but you can leave some blank | |
570 |
|For some fields there will be a default value, | |
571 |
|If you enter '.', the field will be left blank. | |
572 |
|----- | |
573 |
|Country Name (2 letter code) [AU]:<your country> | |
574 |
|State or Province Name (full name) [Some-State]:<your state/province> | |
575 |
|Locality Name (eg, city) []:<your city> | |
576 |
|Organization Name (eg, company) [Internet Widgets Pty Ltd]:<your company | |
577 |
|name> | |
578 |
|Organizational Unit Name (eg, section) []:<your department> | |
579 |
|Common Name (eg, YOUR name) []:<your name> | |
580 |
|Email Address []:<your email> | |
581 |
| | |
582 |
--------------------------------------------------------------------------- |
583 |
|
584 |
You now have your own CA with which to sign certificates. Your CA public |
585 |
key is /etc/ssl/demoCA/cacert.pem and your private key is |
586 |
/etc/ssl/demoCA/private/cakey.pem. |
587 |
|
588 |
When using a certificate signed by your CA, you may get an error about |
589 |
an untrusted CA. In this case, you'll need to publish your CA public key |
590 |
to the client. |
591 |
|
592 |
========================== |
593 |
9. Moves, Adds and Changes |
594 |
========================== |
595 |
|
596 |
Moves |
597 |
----- |
598 |
|
599 |
The following developers recently left the Gentoo team: |
600 |
|
601 |
* none this week |
602 |
|
603 |
Adds |
604 |
---- |
605 |
|
606 |
The following developers recently joined the Gentoo Linux team: |
607 |
|
608 |
* Jay Pfeifer (pfeifer) -- core system/kernel |
609 |
* Lars Weiler (pylon) -- Gentoo/PPC |
610 |
* Carl Anderson (carl) -- Gentoo Documentation |
611 |
* Jorge Paulo (peesh) -- Gentoo Documentation |
612 |
|
613 |
Changes |
614 |
------- |
615 |
|
616 |
The following developers recently changed roles within the Gentoo Linux |
617 |
project. |
618 |
|
619 |
* none this week |
620 |
|
621 |
===================== |
622 |
10. Contribute to GWN |
623 |
===================== |
624 |
|
625 |
Interested in contributing to the Gentoo Weekly Newsletter? Send us an |
626 |
email[32]. |
627 |
|
628 |
32. gwn-feedback@g.o |
629 |
|
630 |
================ |
631 |
11. GWN Feedback |
632 |
================ |
633 |
|
634 |
Please send us your feedback[33] and help make GWN better. |
635 |
|
636 |
33. gwn-feedback@g.o |
637 |
|
638 |
=================== |
639 |
12. Other Languages |
640 |
=================== |
641 |
|
642 |
The Gentoo Weekly Newsletter is also available in the following languages: |
643 |
|
644 |
* Dutch |
645 |
* English |
646 |
* German |
647 |
* French |
648 |
* Japanese |
649 |
* Italian |
650 |
* Portuguese (Brazil) |
651 |
* Portuguese (Portugal) |
652 |
* Spanish |
653 |
|
654 |
Kurt Lieber <klieber@g.o> - Editor |
655 |
AJ Armstrong <aja@×××××××××××××.com> - Contributor |
656 |
Brice Burgess <nesta@×××××××.net> - Contributor |
657 |
Yuji Carlos Kosugi <carlos@g.o> - Contributor |
658 |
Rafael Cordones Marcos <rcm@×××××××.net> - Contributor |
659 |
David Narayan <david@×××××××.net> - Contributor |
660 |
Ulrich Plate <plate@g.o> - Contributor |
661 |
Peter Sharp <mail@××××××××××××××.net> - Contributor |
662 |
Mathy Vanvoorden <matje@×××××××.be> - Dutch Translation |
663 |
Tom Van Laerhoven <tom.vanlaerhoven@××××××.be> - Dutch Translation |
664 |
Roel Adriaans <roel@××××××××.cx> - Dutch Translation |
665 |
Peter Dijkstra <phj.dijkstra@××××.nl> - Dutch Translation |
666 |
Nicolas Ledez <nicolas.ledez@××××.fr> - French Translation |
667 |
Guillaume Plessis <gui@×××××××××.com> - French Translation |
668 |
John Berry <anfini@××××.fr> - French Translation |
669 |
Martin Prieto <riverdale@×××××××××.org> - French Translation |
670 |
Michael Kohl <citizen428@g.o> - German Translation |
671 |
Steffen Lassahn <madeagle@g.o> - German Translation |
672 |
Matthias F. Brandstetter <haim@g.o> - German Translation |
673 |
Thomas Raschbacher <lordvan@g.o> - German Translation |
674 |
Marco Mascherpa <mush@××××××.net> - Italian Translation |
675 |
Claudio Merloni <paper@×××××××.it> - Italian Translation |
676 |
Daniel Ketel <kage-chan@g.o> - Japanese Translation |
677 |
Yoshiaki Hagihara <hagi@×××.com> - Japanese Translation |
678 |
Andy Hunne <andy@×××××××××.com> - Japanese Translation |
679 |
Yuji Carlos Kosugi <carlos@g.o> - Japanese Translation |
680 |
Yasunori Fukudome <yasunori@××××××××××××××××.uk> - Japanese Translation |
681 |
Ventura Barbeiro <venturasbarbeiro@××××××.br> - Portuguese (Brazil) |
682 |
Translation |
683 |
Bruno Ferreira <blueroom@××××××××××××.net> - Portuguese (Portugal) |
684 |
Translation |
685 |
Gustavo Felisberto <gustavo@××××××××××.net> - Portuguese (Portugal) |
686 |
Translation |
687 |
Ricardo Jorge Louro <rjlouro@×××××××.org> - Portuguese (Portugal) |
688 |
Translation |
689 |
Lanark <lanark@××××××××××.ar> - Spanish Translation |
690 |
Rafael Cordones Marcos <rcm@×××××××.net> - Spanish Translation |
691 |
Julio Castillo <julio@×××××××××××××.com> - Spanish Translation |
692 |
Sergio Gómez <s3r@××××××××××××.ar> - Spanish Translation |
693 |
Pablo Pita Leira <pablo.leira@×××××××××.com> - Spanish Translation |
694 |
Carlos Castillo <carlos@×××××××××××××.com> - Spanish Translation |
695 |
Tirant <tirant@×××××.net> - Spanish Translation |
696 |
Jaime Freire <jfreire@××.com> - Spanish Translation |
697 |
Lucas Sallovitz <krusty_ar@×××××.com> - Spanish Translation |