Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Mon 23 Oct 2017, 18:54
All times are UTC - 4
 Forum index » Advanced Topics » Puppy Derivatives
Carolina - 1.3
Moderators: Flash, JohnMurga
Post new topic   Reply to topic View previous topic :: View next topic
Page 118 of 121 [1808 Posts]   Goto page: Previous 1, 2, 3, ..., 116, 117, 118, 119, 120, 121 Next
Author Message
0xdawg


Joined: 18 Sep 2015
Posts: 33
Location: .de/

PostPosted: Sun 20 Sep 2015, 09:40    Post subject:  

Mike7 wrote:
Oxdawg-

What's the difference between openssl-1.0.1p-i586 and openssl-1.0.1p-i486? -x86 suffixes describe the chipset architecture the software was compiled upon. In your case an -i586 does match for your Atom N270.

Is anything besides openssl dependent on the openssl solibs? No. Dependency checker didn't report of missing dependencies.

(I really don't understand how openssl works and am just trying to make my system as secure as possible. I especially don't want to do anything that's going to screw up my OS or that isn't easily reversible.)

From my understanding the latest OpenSSL-version is rather a little more important when running a server. Clientwise it's also important but an up-to-date browser prevents from compromising your system.
Besides I have my PupSaveConfig set to +0 (ask at shutdown), this way I can test whatever I've installed on-the-fly before saving it. If anything doesn't work properly (last time it was OscarTalks Tor-browser package) I just don't save it.

M.

In your initial post you've asked for OpenSSL-1.0.1p

Mebbe you're waiting to be on the safe side and let Geoffrey or any other dev deliver

Could be I'm wrong with any-/everything I've posted so I am not gonna answer on this specific topic anymore .. 'cause I'm a novice user nor hacker // guru
./kthxbai
Back to top
View user's profile Send private message 
Geoffrey


Joined: 30 May 2010
Posts: 2302
Location: Queensland

PostPosted: Sun 20 Sep 2015, 23:20    Post subject:  

I've compiled openssl-1.0.2d and openssh-7.1p1 packages, you will need to install the both for ssh to work.

Please try these and report if this fixes any problems you have and I will then add them to the PPM, would pay to test this in a new savefile.

Thanks,

Geoff

_________________
Carolina: Recent Repository Additions

Back to top
View user's profile Send private message 
Mike7


Joined: 18 Feb 2013
Posts: 391

PostPosted: Mon 21 Sep 2015, 12:34    Post subject:  

Thanks, Oxdawg.

I haven't decided what to do about opensssl yet. I'm at a disadvantage because I don't understand these systems and because I'm using Carolite-1.2 rather than Carolina-1.3.

Every bit of info (like i586 being good on Atom N270) helps, though.

Cheers.

Mike

_________________
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.
Back to top
View user's profile Send private message 
Mike7


Joined: 18 Feb 2013
Posts: 391

PostPosted: Mon 21 Sep 2015, 12:46    Post subject:  

Hi, Geoffrey.

Quote:
I've compiled openssl-1.0.2d and openssh-7.1p1 packages, you will need to install the both for ssh to work.

-- Can I assume, then, that if all I want is openssl I can ignore openssh-7.1p1-i486?

-- Oxdawg said the i586 versions are compatible with my Atom N270 processor. Will this i486 version work also?

Quote:
Please try these and report if this fixes any problems you have and I will then add them to the PPM, would pay to test this in a new savefile.

My security problems have so far all been browser-related, and they are intermittent. That makes testing difficult. What I would ideally need for testing would be openssl that I could load and run on-the-fly, when the problems arise. Any suggestions?

M.

_________________
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.
Back to top
View user's profile Send private message 
0xdawg


Joined: 18 Sep 2015
Posts: 33
Location: .de/

PostPosted: Mon 21 Sep 2015, 14:57    Post subject:  

Mike7 wrote:

-- Oxdawg said the i586 versions are compatible with my Atom N270 processor. Will this i486 version work also?

Never mind, but that compatibility is given on any not too old x86 machine.
-> http://mindspill.net/computing/cross-platform-notes/a-description-of-i386-i486-i586-i686/
Back to top
View user's profile Send private message 
Geoffrey


Joined: 30 May 2010
Posts: 2302
Location: Queensland

PostPosted: Mon 21 Sep 2015, 18:25    Post subject:  

Mike7 wrote:

-- Can I assume, then, that if all I want is openssl I can ignore openssh-7.1p1-i486?


The current SSH doesn't work in Carolina as it was compile against a different version of SSL which wasn't added, my bad.

So it's best to install both if you intend to use SSH.

Quote:
-- Oxdawg said the i586 versions are compatible with my Atom N270 processor. Will this i486 version work also?


Should be fine.

Quote:
My security problems have so far all been browser-related, and they are intermittent. That makes testing difficult. What I would ideally need for testing would be openssl that I could load and run on-the-fly, when the problems arise. Any suggestions?


I don't feel I can help with that, not my forte.

_________________
Carolina: Recent Repository Additions

Back to top
View user's profile Send private message 
Mike7


Joined: 18 Feb 2013
Posts: 391

PostPosted: Mon 21 Sep 2015, 19:20    Post subject:  

0xdawg wrote:
Never mind, but that compatibility is given on any not too old x86 machine.
-> http://mindspill.net/computing/cross-platform-notes/a-description-of-i386-i486-i586-i686/

You've lost me, and that article isn't much help. I've googled this and come up with zilch. Can you point to some place where ixxx versions are correlated with CPUs?

M.

_________________
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.
Back to top
View user's profile Send private message 
Mike7


Joined: 18 Feb 2013
Posts: 391

PostPosted: Mon 21 Sep 2015, 19:29    Post subject:  

Geoffrey wrote:

So it's best to install both if you intend to use SSH.

Uy. I repeat: if all I want is openssl, can I ignore the openssh download?

Quote:
I don't feel I can help with that, not my forte.

I can't figure you out, Geoffrey. Didn't you write:

Quote:
Please try these and report if this fixes any problems you have. . . would pay to test this in a new savefile.

Is there some sort of breakdown in communication between us, or are you just kidding me along or something?

M.

_________________
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.
Back to top
View user's profile Send private message 
Geoffrey


Joined: 30 May 2010
Posts: 2302
Location: Queensland

PostPosted: Mon 21 Sep 2015, 21:36    Post subject:  

Mike7 wrote:
Geoffrey wrote:

So it's best to install both if you intend to use SSH.

Uy. I repeat: if all I want is openssl, can I ignore the openssh download?


I said this as it wasn't just aimed at you, others might like to update and have a working SSH

Why wouldn't you want to fix a broken SSH Confused

Quote:
I can't figure you out


There's nothing to figure out

Quote:
Quote:
Please try these and report if this fixes any problems you have. . . would pay to test this in a new savefile.

Is there some sort of breakdown in communication between us, or are you just kidding me along or something?


There wasn't a intercommunication to begin with, in my initial post the packages were not aimed at any particular person,
I generally see that there are problems and try to remedy them.
I found that SSH was giving a SSL version error and wouldn't run, by compiling new versions of both SSL and SSH fixed the problem.
By me asking for it to be tested and suggesting on a new save is common practice.

Quote:
I don't feel I can help with that, not my forte.


Is in reference to you having a security problem,
I personally don't run any firewalls or worry to much about security.
I make sure I don't go to any sites that could possibly be dangerous and don't save banking details or passwords.


To answer your question SSH is reliant on the version of SSL, so it should be ok if you want to only install the SSL package.

Cheers,

Geoff

_________________
Carolina: Recent Repository Additions

Back to top
View user's profile Send private message 
Mike7


Joined: 18 Feb 2013
Posts: 391

PostPosted: Mon 21 Sep 2015, 23:28    Post subject:  

Geoffrey wrote:
I said this as it wasn't just aimed at you, others might like to update and have a working SSH

Your reply was addressed to me, and it quite naturally confused me.

Quote:
Why wouldn't you want to fix a broken SSH Confused

I don't have openssh.

Quote:
There wasn't a intercommunication to begin with

You replied to my post. I call that communication.

Quote:
Quote:
I don't feel I can help with that, not my forte.


Is in reference to you having a security problem

My query there was about testing and making a new savefile for an intermittent problem. Since you suggested doing these two things (testing and making a new savefile), I naturally thought you might have some suggestions about testing and savefile techniques for intermittent security problems.

Quote:
I personally don't run any firewalls or worry to much about security.
I make sure I don't go to any sites that could possibly be dangerous and don't save banking details or passwords.

Openssl isn't related to security issues? You're putting me on, right?

M.

_________________
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.
Back to top
View user's profile Send private message 
Geoffrey


Joined: 30 May 2010
Posts: 2302
Location: Queensland

PostPosted: Tue 22 Sep 2015, 00:53    Post subject:  

@Mike7

What ever, you were in communication with 0xdawg about ssl and couldn't find it in the PPM, I pointed that there was openssl-1.0.1j-i486.

At no point did I discuss with you anything to do with security, you mentioned that
Quote:
My security problems have so far all been browser-related, and they are intermittent. That makes testing difficult. What I would ideally need for testing would be openssl that I could load and run on-the-fly, when the problems arise. Any suggestions?

Which I responded
Quote:
I don't feel I can help with that, not my forte.


Quote:
I don't have openssh.


If you running Carolite-1.2 then you have SSH, it should be working, it isn't working in Carolina 1.3, but if you only update SSL then SSH is not going to work.

I mentioned that any apps that require SSL would need to be recompiled, SSH wasn't working due to a version conflict, so I fixed the problem for 1.3.


Quote:
Openssl isn't related to security issues? You're putting me on, right?


I couldn't tell you, to repeat myself, I don't feel I can help with that, not my forte.

All I asked was for the packages to be tested by anyone that know how to use them, I'm no expert on the subject.

Cheers,

Geoff

_________________
Carolina: Recent Repository Additions

Back to top
View user's profile Send private message 
0xdawg


Joined: 18 Sep 2015
Posts: 33
Location: .de/

PostPosted: Tue 22 Sep 2015, 06:11    Post subject:  

@Mike7,

open bash
Code:
ssh -V

update those packages if your machine isn't up-to-date.
(http://www.openssh.com/ && http://openssl.org/ to see their latest version)

See if Firefox is updated: Help -> About Firefox
If this doesn't install the latest version automatically, download and install from here ->
https://www.mozilla.org/en-US/firefox/new/


For your security concerns you may want to have a look at this distro ->
http://distrowatch.com/chromixium
Back to top
View user's profile Send private message 
Mike7


Joined: 18 Feb 2013
Posts: 391

PostPosted: Tue 22 Sep 2015, 10:49    Post subject:  

Geoffrey wrote:
If you running Carolite-1.2 then you have SSH,

I didn't know that. How do I check for it? Is there a terminal command that will tell me if openssh is present, like the openssl command does? (I did a system search with Pfind and found no references to openssh anywhere, whereas Pfind did find openssl.)

Quote:
it should be working

Likewise for whether it is working (a command?).

Quote:
it isn't working in Carolina 1.3, but if you only update SSL then SSH is not going to work.

Does it matter? Do I need SSH?

Quote:
I mentioned that any apps that require SSL would need to be recompiled,

So that alone precludes my updating openssl, since I am not competent to compile or recompile anything?

I am now thoroughly confused about openssl and openssh, what they do, if they are necessary, if they are present in my OS, if I need to update one or the other or both, etc.

And as usual, when I get this confused, I do nothing, which could be a mistake.

But in order for me to do the right thing, I need real help, geared to my level of understanding.

Mike7

_________________
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.
Back to top
View user's profile Send private message 
Geoffrey


Joined: 30 May 2010
Posts: 2302
Location: Queensland

PostPosted: Tue 22 Sep 2015, 18:33    Post subject:  

Hi Mike,

Mike7 wrote:
Geoffrey wrote:
If you running Carolite-1.2 then you have SSH,

I didn't know that. How do I check for it? Is there a terminal command that will tell me if openssh is present, like the openssl command does? (I did a system search with Pfind and found no references to openssh anywhere, whereas Pfind did find openssl.)


I had a look in Carolite, the command isn't openssh, they are "openssl " and " ssh ", the open refers to them being FREE versions.

Code:
# ssh
usage: ssh [-1246AaCfgKkMNnqsTtVvXxYy] [-b bind_address] [-c cipher_spec]
           [-D [bind_address:]port] [-e escape_char] [-F configfile]
           [-I pkcs11] [-i identity_file]
           [-L [bind_address:]port:host:hostport]
           [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port]
           [-R [bind_address:]port:host:hostport] [-S ctl_path]
           [-W host:port] [-w local_tun[:remote_tun]]
           [user@]hostname [command]
#

Code:
# openssl version
OpenSSL 1.0.d 8 Feb 2011


Quote:
Quote:
it isn't working in Carolina 1.3, but if you only update SSL then SSH is not going to work.

Does it matter? Do I need SSH?


If you intend on doing a secure login to a remote location then yes, you need it.

Code:
# ssh user@hostname


Quote:
Quote:
I mentioned that any apps that require SSL would need to be recompiled,

So that alone precludes my updating openssl, since I am not competent to compile or recompile anything?

I am now thoroughly confused about openssl and openssh, what they do, if they are necessary, if they are present in my OS, if I need to update one or the other or both, etc.

And as usual, when I get this confused, I do nothing, which could be a mistake.

But in order for me to do the right thing, I need real help, geared to my level of understanding.

Mike7


I'm none the wiser about it to, I have no idea what goes on under the hood other than both are needed to make secure connections.

There is nothing to compile, the pets I posted should work, but like I said try them with a new save file first to be sure they are functioning correctly.

Like everything I do it comes with this warning, Use at your own peril Wink

_________________
Carolina: Recent Repository Additions

Back to top
View user's profile Send private message 
Mike7


Joined: 18 Feb 2013
Posts: 391

PostPosted: Wed 23 Sep 2015, 07:04    Post subject:  

Hi, Geoffrey.

Quote:
I had a look in Carolite, the command isn't openssh, they are "openssl " and " ssh

Thanks. I knew to use openssl as a command, but not ssh. I get the same responses as you:

Code:
# openssl version
OpenSSL 1.0.0d 8 Feb 2011

Code:
# ssh
usage: ssh [-1246AaCfgKkMNnqsTtVvXxYy] [-b bind_address] [-c cipher_spec]
           [-D [bind_address:]port] [-e escape_char] [-F configfile]
           [-I pkcs11] [-i identity_file]
           [-L [bind_address:]port:host:hostport]
           [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port]
           [-R [bind_address:]port:host:hostport] [-S ctl_path]
           [-W host:port] [-w local_tun[:remote_tun]]
           [user@]hostname [command]

So I assume that the ssh is the same version as the openssl.

These are pretty ancient versions (from 2011). I wonder how important it is to update them, when, like me, you are not using any remote connections? Do you know if openssl is used frequently with many websites to interact? Perhaps it is imperative to update it.

What about apps that depend on ssl needing to be re-compiled when updating to 1.0.2? Do you know if there are some? Which ones? If not, maybe someone else here can help with this, please?

I will also post the query to another thread.

Mike7

_________________
Carolite-1.2 w/FF38 on bootable 16G flash drive; Asus eeePC 1000HA, Atom CPU, 2G RAM, 160G HDD.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 118 of 121 [1808 Posts]   Goto page: Previous 1, 2, 3, ..., 116, 117, 118, 119, 120, 121 Next
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Advanced Topics » Puppy Derivatives
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0893s ][ Queries: 14 (0.0189s) ][ GZIP on ]