SMP UML, OpenSSL, Systrace Policies, and Apache Configurationby chromatic
Linux Newsletter for 03/03/2003
Good afternoon, from your editor's horribly biased west coast USA perspective. Welcome to another edition of the Linux newsletter.
If you hurry, you can be one of the first people to read Jerry Cooperstein's new article, Testing SMP Kernel Modules with UML. Not only does User Mode Linux let you run an instance of Linux under a running instance, but you can also simulate a multiprocessor box with it.
In his latest Security Alerts column, Noel Davis explores a timing-based attack against OpenSSL. Other vulnerabilities include Oracle,
pam_xauth, VNC, and Nethack and Rogue. Keep safe and check your systems.
Michael Lucas returns to
systrace with Creating Systrace Policies. Though there are repositories of useful policies, some applications and circumstances require you to create your own. By the way, the program is now portable to even more Unixy operating systems. It's downright nifty.
Finally, Peter Laurie, fresh from updating the third edition of Apache: The Definitive Guide, offers a guided tour of an Apache configuration file. Though the file is extensively commented, it's helpful to have a guru perspective to explain the less obvious nooks and crannies. Read more in Creating an Apache Site with Public and Secure Access.
To subscribe to the Linux newsletter (or any O'Reilly Network newsletters), visit https://epoch.oreilly.com/account/default.orm and select the newsletters you wish to receive in your user profile (you'll need to log in with your existing O'Reilly Network account -- if you don't yet have an account, you'll need to create one).
To change your newsletter subscription options, please visit https://epoch.oreilly.com/account/default.orm and click the"Manage My Newsletters" link. For assistance, send email to
At the risk of feeling silly, your editor would like to point out a followup to his previous weblog. Free, free, and 'Free': the BSDs Certainly Are offers an explanation and an apology for any confusion caused by a poorly stated (and half-baked) sentence.
That's it for today. Here's to a wonderful March!
All the best,
ONLamp.com and Linux DevCenter Top Five Articles Last Week
Getting, Installing, and Running Apache
How to install the web server from scratch, binary, or using Red Hat Package Manager.
Last time, Dru Lavigne introduced one time passwords. Rather than an all-or-nothing approach, most free Unixes support several different authentication methods. This time, Dru explores PAM (Pluggable Authentication Modules), which allow you to govern how users log on and authenticate themselves.
SimPy: Simulating Systems in Python
Do you have a complex system with limited resources and random events? Maybe a simulation will help you uncover essential truths. Klaus Müller and Tony Vignaux introduce SimPy, a simulation package for Python.
Distributing Your CA to Client Browsers
In a follow-up to his article on "Creating Your Own CA," Rob Flickenger, author of Linux Server Hacks, shows you how to distribute your new Certificate Authority to a client's browser. He also offers some key advice on accepting a new CA in your browser.
OpenSSL Timing Attack
Noel Davis looks at problems in OpenSSL, Oracle, mod_php, MySQL, pam_xauth, VNC, apcupsd, nethack, Rogue, and BitchX.
Return to the list of Linux Newsletters.
Return to the Linux DevCenter.