FreeBSD Security Advisories | 10 Oct 15:03 2002
Picon

FreeBSD Security Notice FreeBSD-SN-02:06


=============================================================================
FreeBSD-SN-02:06                                              Security Notice
                                                          The FreeBSD Project

Topic:          security issues in ports
Announced:      2002-10-10

I.   Introduction

Several ports in the FreeBSD Ports Collection are affected by security
issues.  These are listed below with references and affected versions.
All versions given refer to the FreeBSD port/package version numbers.
The listed vulnerabilities are not specific to FreeBSD unless
otherwise noted.

These ports are not installed by default, nor are they ``part of
FreeBSD'' as such.  The FreeBSD Ports Collection contains thousands of
third-party applications in a ready-to-install format.  FreeBSD makes
no claim about the security of these third-party applications.  See
<URL:http://www.freebsd.org/ports/> for more information about the
FreeBSD Ports Collection.

II.  Ports

+------------------------------------------------------------------------+
Port name:      apache13, apache13+ipv6, apache13-fp, apache13-modssl and
                apache13-ssl 
Status:         Fixed (apache13, apache13+ipv6, apache13-fp and apache13-modssl)
                Not fixed (apache13-ssl)
(Continue reading)

Murray Stokely | 10 Oct 16:47 2002
Picon

FreeBSD 4.7 Now Available


I am happy to announce the availability of FreeBSD 4.7-RELEASE, the
latest release of the FreeBSD -STABLE development branch.  Since
FreeBSD 4.6-RELEASE in June 2002, we have updated a number of software
programs in the base system, such as GCC and sendmail.  Several new
drivers have been added for USB devices and disk controllers.  We have
also incorporated updates for XFree86 and our Linux compatibility
libraries.

FreeBSD 4.7 also incorporates all of the security and bug fixes from
4.6.2 (released in August 2002), including several ATA-related
bugfixes, updates for OpenSSL and OpenSSH, and fixes to address
several security advisories.

For a complete list of new features and known problems, please see the
release notes and errata list, available here:

     http://www.FreeBSD.org/releases/4.7R/relnotes.html
     http://www.FreeBSD.org/releases/4.7R/errata.html

For more information about FreeBSD release engineering activities
(including information about the upcoming FreeBSD 5.0), please see:

     http://www.FreeBSD.org/releng/

Availability
------------

FreeBSD 4.7-RELEASE supports the i386 and alpha architectures and can
be installed directly over the net using the boot floppies or copied
(Continue reading)

Chris Coleman | 12 Oct 05:32 2002

BSD Print Magazine

Daemon News is pleased to announce issue #7 of the print magazine. 

The Daemon News print magazine is an excellent resource for BSD sysadmins
to read and use on the job, or just to have lying around the office for
others to pickup and take an interest in BSD.  The print magazine includes
articles that have not appeared on the online ezine as well as really cool
artwork that you won't see anywhere else.

Table of Contents: 
  * Securing BSD: An ssh Primer - Chris Coleman
  * Wrangling Processes with sysctl on NetBSD - Sean Davis
  * Java & Jakarta Tomcat on FreeBSD - Victoria Chan and Hiten Pandya
  * Friendlier Disk Quotas - Tom Rhodes
  * Managing Websites with OpenBSD - Peter Schmiedeskamp
  * Installing Webpages with Make - Nik Clayton

Featured Artwork:
  * Cover -- Daemon Crop Circle (Yes our staff was abducted.)
  * Sysctl -- Cowboy Daemon Wrangling
  * Jakarta -- Tom Cat sipping Java w/BSD t-shirt
  * Securing BSD -- BSD Daem protected by secret service Daemons.

  http://www.bsdmall.com/magazines.html

BTW: Issue 2 and Issue 4 are in very limited supply, so if you are
interested in the back issues, you need to order today. I expect they
could be gone by the time this e-mail gets fully delivered, so it's first
come first served.  When they are out, there aren't anymore.

  Issue 2 - http://www.bsdmall.com/dnmagis2jan.html
(Continue reading)

Robert Bruce | 20 Oct 04:51 2002

FreeBSD 4.7 CDROMs / DVDs

FreeBSD Mall is happy to announce that the FreeBSD 4.7 CDROMs are
now available and shipping.  You can order your four-disc set at
http://www.freebsdmall.com.

Most of the USA subscriptions shipped today (Saturday) via Priority
Mail.  The remainder (mostly California addresses) will ship on Monday
by Media Mail.  So USA residents should all have their discs by
Wednesday.  All Canada/Mexico orders will ship on Monday.  All other
International orders will ship on either Monday or Tuesday, and should
arrive in 7 to 10 days.  If you have any questions about your
subscription please email info <at> freebsdmall.com.

The FreeBSD 4.7 DVDs are not available yet, but should be ready
to ship next week.  You can pre-order a FreeBSD 4.7 DVD at
http://www.freebsdmall.com/cgi-bin/fm/bsddvd4.7

In addition to CD and DVD products, we also have a large collection of
FreeBSD shirts, hats, jackets, boxer shorts, stickers, case-plates,
mugs, mouse pads, and other promotional materials.

        -bob

bob <at> freebsdmall.com
http://www.freebsdmall.com
A Daemon on Every Desktop

This is the moderated mailing list freebsd-announce.
The list contains announcements of new FreeBSD capabilities,
important events and project milestones.
See also the FreeBSD Web pages at http://www.freebsd.org
(Continue reading)


Gmane