VectorLinux

The nuts and bolts => Networking & Security => Topic started by: CrazyDog on September 05, 2013, 01:12:49 am

Title: Interesting Article. Is Vector safe from this?
Post by: CrazyDog on September 05, 2013, 01:12:49 am
http://www.linuxbsdos.com/2013/09/03/hand-of-thief-trojan-and-your-favorite-linux-distribution/
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 05, 2013, 04:56:49 am
This one is a Trojan, meaning that the attacker needs to trick you into executing it. We can protect ourselves from this one by just not executing untrusted programs (harder than it sounds.)
That said, looks like Vector does use the safe setting for ptrace mentioned in the article. You can check with:

Code: [Select]
$ cat /proc/sys/kernel/yama/ptrace_scope
0 is the more permissive setting, and 1 is the safer one (from https://wiki.ubuntu.com/SecurityTeam/Roadmap/KernelHardening#ptrace)
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 05, 2013, 08:07:50 am
Quote
You can check with:

Code:

$ cat /proc/sys/kernel/yama/ptrace_scope



Rodrigo, I get a "command not found"

Do you know what I need to add or change in my system to enable ptrace?
Title: Re: Interesting Article. Is Vector safe from this?
Post by: wigums on September 05, 2013, 08:57:46 am
Quote
One question I wanted to have the researcher answer for me is this: Why did SELinux not stop the trojan from functioning on Fedora 19?

things that make you say hmmmmm
(dont forget who wrote selinux)
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 05, 2013, 09:52:07 am
Quote
You can check with:

Code:

$ cat /proc/sys/kernel/yama/ptrace_scope



Rodrigo, I get a "command not found"

Do you know what I need to add or change in my system to enable ptrace?

Hi John,

Maybe you didnt remove the "$" character? Thats justva  convention that means "run the following command in a terminal". The command would be:

Code: [Select]
cat /proc/sys/kernel/yama/ptrace_scope
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 05, 2013, 06:19:22 pm
Like John, it also doesn't show up on my computer.  

Code: [Select]
vector:/~
mark:$ cat /proc/sys/kernel/yama/ptrace_scope
cat: /proc/sys/kernel/yama/ptrace_scope: No such file or directory
vector:/~
mark:$
Title: Re: Interesting Article. Is Vector safe from this?
Post by: CrazyDog on September 05, 2013, 07:14:41 pm
Thanks for the replies everybody.  I appreciate it.  I do some financial stuff with my bank online and just wanted to make sure I was safe.  I believe that Vector is the safest choice out there.  :)
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 06, 2013, 04:04:34 am
Like John, it also doesn't show up on my computer.  

Code: [Select]
vector:/~
mark:$ cat /proc/sys/kernel/yama/ptrace_scope
cat: /proc/sys/kernel/yama/ptrace_scope: No such file or directory
vector:/~
mark:$

Maybe. John was getting "Command not found". Your kernel doesnt seem to have ptrace scope enabled, whats the output of "uname -r" in your system? I am in 7.1 and it is enabled here. I will check it out, we could build a new kernel for 7.0 if needed. If anyone wants to experiment with this in 7.0 please let me know.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: vincent2 on September 06, 2013, 04:39:08 am
Quote
$ uname -r

3.10.10


$  cat /proc/sys/kernel/yama/ptrace_scope
1

better install kernel 3.10.10, you'll be more secure!

kernel 3.11 could be more
Title: Re: Interesting Article. Is Vector safe from this?
Post by: retired1af on September 06, 2013, 06:44:20 am

kernel 3.11 could be more

And why should we do that when 3.10 is the stable tree? Hmmm?
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 06, 2013, 08:34:06 am
Code: [Select]
vector:/~
mark:$ uname -r
3.0.8

Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 06, 2013, 08:47:51 am
Thanks Mark, we will have 3.10 packages to test in a couple of hours.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 06, 2013, 10:59:40 pm
I updated the kernel once and it worked, but forgot how.  I think I followed the instructions in:

http://forum.vectorlinux.com/index.php?topic=10385.msg66371#msg66371

Do they still work?  I see the new kernel in untested but I may not try it this weekend as I am pretty busy with the computer and don't want to screw it up.



Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 07, 2013, 11:30:50 am
Those instructions look like they're for a system using lilo rather than grub.  Perhaps they would work with just skipping the lilo step.  Anyway, I think I'll wait for the announcement that a new kernel has made it to testing, as rbistolfi mentioned.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 07, 2013, 12:37:32 pm
I use lilo, but I think your suggestion to wait a good one.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 08, 2013, 05:11:26 am
Hi guys.

Here are the packages:

http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/kernel-3.10.10-x86-1vl70.txz
http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/kernel-modules-3.10.10-x86-1vl70.txz
http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/kernel-src-3.10.10-x86-1vl70.txz

If you need the bcm drivers: http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/bcm_wimax-0.1_3.10.10-x86-1vl70.txz

The instructions by Uel still work, but use grub-update instead vliloconf if you use Grub.
Please do not remove your old kernel until you are sure the new one works.
Reboot and pick the new Kernel, test again for the ptrace setting.
Let us know how that goes.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: retired1af on September 08, 2013, 06:06:32 am
Ima gonna give this one a shot with SOHO, too.  ;D
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 07:46:41 am
Okay, so I enabled the untested repository, and via Gslapt did an update followed by "mark all upgrades".  Is this correct?  Some other packages besides the kernel ones are marked, so should I proceed, or should I just specifically upgrade the kernel packages and not touch the others?  The others being p11-kit 0.14-i586-1vl70, gnutls 3.10.10-x86-1vl70, php 5.4.19-i586-1vl70.

Title: Re: Interesting Article. Is Vector safe from this?
Post by: retired1af on September 08, 2013, 07:58:32 am
Never, ever do an upgrade all. Select ONLY those packages you need to update.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: vincent2 on September 08, 2013, 08:01:22 am
for your sytem securities,you'd better chose all and go ahead..
p11-kit 0.14-i586-1vl70, gnutls 3.10.10-x86-1vl70, php 5.4.19-i586-1vl70.help securities for ur pc..
nothing to worry about
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 08, 2013, 08:43:49 am
Okay, so I enabled the untested repository, and via Gslapt did an update followed by "mark all upgrades".  Is this correct?  Some other packages besides the kernel ones are marked, so should I proceed, or should I just specifically upgrade the kernel packages and not touch the others?  The others being p11-kit 0.14-i586-1vl70, gnutls 3.10.10-x86-1vl70, php 5.4.19-i586-1vl70.



Mark, we dont use gslapt for kernel upgrades, because gslapt replaces the old package with the new one, and if the new kernel doesnt work you cant boot anymore.
You need to follow the procedure described by Uel in the link provided by Sledge. Please post back if you find any problems.

EDIT: you can apply the other updates anyway, they are safe and they fix a number of security advisories, they will be moved to patches soon.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 09:10:53 am
Uh oh, conflicting advice...  

I won't use Gslapt, and instead will specifically install the kernel packages rather than upgrade them, to keep the old ones just in case.  So, I'll start with the kernel packages, then test, and then upgrade php and gnutls and add p11-kit after.  Well, here goes.....

Code: [Select]
root:# slapt-get --no-upgrade -i kernel kernel-modules kernel-stripped-src  

Well, seems okay so far.  Nothing exploded.

Step two:

Code: [Select]
vector://home/mark
root:# grub-update
Generating grub.cfg ...
Found background image: silent-1024x768.jpg
Found linux image: /boot/vmlinuz-3.10.10
Found initrd image: /boot/initrd
Found linux image: /boot/vmlinuz-3.0.8
Found initrd image: /boot/initrd
  No volume groups found
Found VectorLinux (Vector Linux 7.0 STD) on /dev/sdb1
done
Grub has been updated. Have a nice day!
vector://home/mark
root:#

"dev/sdb1" is an older secondary hard drive.  On the primary hard drive, it seemed to work, though I don't know if the message "No volume groups found" is something I should worry about.  Well, I'll know soon enough.

The next step is confusing me a bit:

Code: [Select]
vector://home/mark
root:# ls /var/log/packages/*$(uname -r)*
/var/log/packages/broadcom-sta-5.100.82.112_3.0.8-i586-2vl70
/var/log/packages/kernel-3.0.8-i686-1vl70
/var/log/packages/kernel-modules-3.0.8-i686-1vl70
/var/log/packages/kernel-stripped-src-3.0.8-i686-1vl70
/var/log/packages/ndiswrapper-1.56_3.0.8-i586-2vl70
/var/log/packages/rsync-3.0.8-i486-1
vector://home/mark

vector://home/mark
root:# slapt-get --show broadcom*
No such package: broadcom*
vector://home/mark
root:# installpkg broadcom-sta-5.100.82.112_3.10.10-i586-1vl70
ERROR: File not found: broadcom-sta-5.100.82.112_3.10.10-i586-1vl70
vector://home/mark
root:# installpkg broadcom-sta-5.100.82.112_3.10.10-i586-1vl70.tlz
ERROR: File not found: broadcom-sta-5.100.82.112_3.10.10-i586-1vl70.tlz
vector://home/mark

Hmm, I checked here (http://vectorlinux.osuosl.org/veclinux-7.0/kernels/drivers/) and here (http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/), but didn't see any corresponding 3.10.10 files for the drivers.  Hmm.  Well, guess that eliminates that step.

Next:

Code: [Select]
 vector://home/mark
root:# depmod -aq 3.10.10

Seemed to work.

Well, guess I need to reboot now.  Well, here goes....

ETA:  Was typing the above before I got rbistolfi's latest message.  So, I did maintain the older kernel images, and I'll now upgrade the newer packages of php and gnutls and add the p11-kit package too.

ETA:
Hmm, I'm thinking I made an error even using "slapt-get --no-upgrade -i" to do it.  Before rebooting, I'll try instead to exactly follow the steps outlined in HOWTO: Upgrade Kernel link, which I should have done from the start.  

ETA:  Okay, so I reinstalled all the older 3.0.8 kernel stuff via installpkg, and reran grub-update.  Hopefully I'll still have the 3.0.8 option if the newer kernel install doesn't work.  Yeah, I should have strictly followed the HOWTO from the beginning.  Anyway, I'll now reboot, and see how it works.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 10:48:50 am
Okay, I shut down my system.  Then I restarted it.  Grub gave me several new choices.  

Code: [Select]
### BEGIN /etc/grub.d/10_linux ###
menuentry "VectorLinux GNU/Linux, Linux 3.10.10" {
insmod part_msdos
insmod ext2
set root='(hd0,msdos1)'
linux16 /boot/vmlinuz-3.10.10 root=/dev/sda1 ro splash=silent vga=791  
initrd16 /boot/initrd
}
menuentry "VectorLinux GNU/Linux, Linux 3.10.10 (TUI)" {
insmod part_msdos
insmod ext2
set root='(hd0,msdos1)'
linux16 /boot/vmlinuz-3.10.10 root=/dev/sda1 ro splash=silent vga=791 2
initrd16 /boot/initrd
}
menuentry "VectorLinux GNU/Linux, Linux 3.0.8" {
insmod part_msdos
insmod ext2
set root='(hd0,msdos1)'
linux16 /boot/vmlinuz-3.0.8 root=/dev/sda1 ro splash=silent vga=791  
initrd16 /boot/initrd
}
menuentry "VectorLinux GNU/Linux, Linux 3.0.8 (TUI)" {
insmod part_msdos
insmod ext2
set root='(hd0,msdos1)'
linux16 /boot/vmlinuz-3.0.8 root=/dev/sda1 ro splash=silent vga=791 2
initrd16 /boot/initrd
}

So, I chose the first one, which seemed to work.  However, it wouldn't let me into X, for reasons I can't recall (maybe because the drivers weren't there).  So, I rebooted, and went to 3.0.8, which fortunately was still there, and does still work (allowing me to post here).  I'll once again reboot, and from the command line in 3.10.10, try the "cat /proc/sys/kernel/yama/ptrace_scope" command to test.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 11:19:52 am
Okay, on my second rendezvous into 3.10.10, I did the command...
Code: [Select]
cat /proc/sys/kernel/yama/ptrace_scope
1
I typed the above from memory rather than copying it since I'm now in a different (3.0.8) kernel.  Anyway, I did get the "1" response, which is good.  Here's some other feedback I got (again, typed here from handwritten notes)
Code: [Select]
no suitable security driver could be found.

FATAL:  Module nvidia not found.

(EE)  Screen(s) found, but none have usable configurations.

Note:  I have not installed the "bcm drivers".  So, maybe that would help me.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: nightflier on September 08, 2013, 11:26:37 am
FATAL:  Module nvidia not found.

The nvidia module must match your running kernel. You need to install the kernel sources for the new kernel, then re-run the nvidia installation. When you get it working on that one, it may not work on the old one. That's proprietary, binary blob drivers for you.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 11:34:53 am
Okay, I'll have to go back and figure out what I did to get nvidia going, and do that over again, I figure.  I'll take another look.  Seems I'm close, anyway.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 12:47:11 pm
Tried to install the NVIDIA driver (96.43.23) that works with the 3.0.8 kernel on my system (for GeForce4 MX 4000 card), but I was unable to for the 3.10.10 kernel.  I then tried the nouveau driver, but this also didn't work.  So, I can't get X going with the new kernel.

ETA:  I have kernel-stripped-src-3.10.10-x86-1vl70 installed, but not kernel-src-3.10.10-x86-1vl70.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 08, 2013, 01:54:51 pm
Well, I took the plunge and it worked:

Quote
vector:/~
johwhi:$ uname -r
3.10.10
vector:/~
johwhi:$ cat /proc/sys/kernel/yama/ptrace_scope
1
vector:/~

Only thing that doesn't seem to work on first use is wicd wirednetwork.  Wireless works fine.  My wired, I think, is eth0 so I will likely figure that out.  I may find other problems and will post if I do.

Thanks for all the help.

John
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 02:12:05 pm
Congratulations sledgehammer.

For mine, it worked, but I cannot get the nvidia driver (http://www.nvidia.com/object/linux-display-ia32-96.43.23-driver.html) installed.  I got the following feedback:

Quote
ERROR:  Unable to load the kernel module 'nvidia.ko'.  This happens most frequently when this kernel module was built against the wrong or improperly configured kernel sources, with a version of gcc that differs from the one used to build the target kernel, or if a driver such as rivafb, nvidiafb, or nouveau is present and presents the NVIDIA kernel module from obtaining ownership of the NVIDIA graphics device(s).

I have gcc-4.5.2-i486-2 installed, and kernel-stripped-src-3.10.10-x86-1vl70.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 08, 2013, 02:53:59 pm
When I ran

Quote
ls /var/log/packages/*$(uname -r)*

I didn't see any packages for 3.10.10, so I loaded nothing there,  Nor did I have to run vxconf.  It just worked out of the box, except as noted with the wirednetwork.

If you give me a specific request to run something, I will do so and report back to you as to what happened.  I know I don't use grub nor do I dual boot with anything.  I don't know what kind of drivers run my screen.  I use xfce4 but learned the other day that I apparently have some part of kde running in the background.

John
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 05:00:17 pm
Thanks for the offer John.  I'm curious what you get when you run the command "glxinfo".  

I did manage to get xwindows going with "vxconf".  Oddly, though, the lower menu bar no longer appears (the one that looks like a pseudo osx type of thing).  Also, when I ran vxconf, I just chose the first option ("auto") with no xorg.conf being set up.  When I went to check whether I had direct rendering going or not, via "glxinfo", I was told the following:

Code: [Select]
vector:/~
mark:$ glxinfo
name of display: :0.0
Xlib:  extension "GLX" missing on display ":0.0".
Xlib:  extension "GLX" missing on display ":0.0".
Xlib:  extension "GLX" missing on display ":0.0".
Xlib:  extension "GLX" missing on display ":0.0".
Xlib:  extension "GLX" missing on display ":0.0".
Error: couldn't find RGB GLX visual or fbconfig

So, I'm not sure.  I did not reinstall the proprietary xvidia driver that I had previously been trying to install (again, instead I used vxconf).  I'm going to try extremetuxracer to see.

Code: [Select]
mark:$ etracer
Extreme TuxRacer SVN Development --  http://www.extremetuxracer.com
(c) 2007 The ETRacer team
(c) 2004-2005 The PPRacer team
(c) 1999-2001 Jasmin F. Patry<jfpatry@sunspirestudios.com>
ETRacer comes with ABSOLUTELY NO WARRANTY. This is free software,
and you are welcome to redistribute it under certain conditions.
See http://www.gnu.org/copyleft/gpl.html for details.

*** etracer error: Couldn't initialize video: Couldn't find matching GLX visual (Resource temporarily unavailable)

Well, things still aren't right, but I'm getting closer.  I'll try once again to install the proprietary driver for nvidia.

ETA:  Well, still couldn't install the nvidia driver.  It stated,

Quote
The kernel header file '/lib/modules/3.10.10/build/include/linux/version.h' does not exist.  The most likely reason for this is that the kernel source files in '/lib/modules/3.10.10/build' have not been configured.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 06:30:25 pm
Well, I've given up, and gone back to 3.0.8.  Of course, now php isn't working for me.  I must remember not to venture into testing or untested in the future.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: vincent2 on September 08, 2013, 06:34:02 pm
Congratulations sledgehammer.

For mine, it worked, but I cannot get the nvidia driver (http://www.nvidia.com/object/linux-display-ia32-96.43.23-driver.html) installed.  I got the following feedback:

Quote
ERROR:  Unable to load the kernel module 'nvidia.ko'.  This happens most frequently when this kernel module was built against the wrong or improperly configured kernel sources, with a version of gcc that differs from the one used to build the target kernel, or if a driver such as rivafb, nvidiafb, or nouveau is present and presents the NVIDIA kernel module from obtaining ownership of the NVIDIA graphics device(s).

I have gcc-4.5.2-i486-2 installed, and kernel-stripped-src-3.10.10-x86-1vl70.

you need kernel-src-3.10.10-x86_64-1vl70.txz  for installing nvidia driver.,

http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86_64/kernel-src-3.10.10-x86_64-1vl70.txz


pls download, install again.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 08, 2013, 06:48:38 pm
Mark,

Install the kernel-src package before running the nvidia installer. We will try to have all the drivers covered asap.
John: What is your ethernet card? The lspci command should tell.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 08:13:23 pm
Thanks for getting back to me, vincent2 and rbistolfi.  I don't have a 64-bit machine.  It's a regular 32-bit (x86) machine.  I did install all the packages listed in this message (http://forum.vectorlinux.com/index.php?topic=17835.msg98332#msg98332) first before using maintenance mode within 3.10.10 to install the nvidia driver, but to no avail.  It just wouldn't work.  Works fine in 3.0.8, however.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 08, 2013, 08:20:37 pm
Rodrigo,

In addition to the wired network, my sound, both onboard and usb headphones, doesn't work.

Quote
johwhi:$ lspci
00:00.0 Host bridge: Intel Corporation 2nd Generation Core Processor Family DRAM Controller (rev 09)
00:01.0 PCI bridge: Intel Corporation 2nd Generation Core Processor Family PCI Express Root Port (rev 09)
00:02.0 VGA compatible controller: Intel Corporation 2nd Generation Core Processor Family Integrated Graphics Controller (rev 09)
00:16.0 Communication controller: Intel Corporation 6 Series Chipset Family MEI Controller #1 (rev 04)
00:1a.0 USB Controller: Intel Corporation 6 Series Chipset Family USB Enhanced Host Controller #2 (rev 04)
00:1b.0 Audio device: Intel Corporation 6 Series Chipset Family High Definition Audio Controller (rev 04)
00:1c.0 PCI bridge: Intel Corporation 6 Series Chipset Family PCI Express Root Port 1 (rev b4)
00:1c.3 PCI bridge: Intel Corporation 6 Series Chipset Family PCI Express Root Port 4 (rev b4)
00:1c.4 PCI bridge: Intel Corporation 6 Series Chipset Family PCI Express Root Port 5 (rev b4)
00:1d.0 USB Controller: Intel Corporation 6 Series Chipset Family USB Enhanced Host Controller #1 (rev 04)
00:1f.0 ISA bridge: Intel Corporation HM65 Express Chipset Family LPC Controller (rev 04)
00:1f.2 SATA controller: Intel Corporation 6 Series Chipset Family 6 port SATA AHCI Controller (rev 04)
00:1f.3 SMBus: Intel Corporation 6 Series Chipset Family SMBus Controller (rev 04)
01:00.0 3D controller: nVidia Corporation Device 0df4 (rev a1)
02:00.0 Network controller: Intel Corporation Centrino Wireless-N 1000
03:00.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet controller (rev 06)
04:00.0 USB Controller: NEC Corporation uPD720200 USB 3.0 Host Controller (rev 04)
vector:/~

Also, I did not install your package:  http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/kernel-src-3.10.10-x86-1vl70.txz

Thanks for any further suggestions. 

John
Title: Re: Interesting Article. Is Vector safe from this?
Post by: vincent2 on September 08, 2013, 08:22:07 pm
Thanks for getting back to me, vincent2 and rbistolfi.  I don't have a 64-bit machine.  It's a regular 32-bit (x86) machine.  I did install all the packages listed in this message (http://forum.vectorlinux.com/index.php?topic=17835.msg98332#msg98332) first before using maintenance mode within 3.10.10 to install the nvidia driver, but to no avail.  It just wouldn't work.  Works fine in 3.0.8, however.


then u must install  32 bit kernel source:    kernel-src-3.10.10-x86-1vl70.txz,


http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/kernel-src-3.10.10-x86-1vl70.txz


then install nvdia driver again
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 08, 2013, 08:39:54 pm
Mark,

I get a tremendous amount of stuff when I run glxinfo.

It begins with, among other things:

Quote
vector:/~
johwhi:$ glxinfo
name of display: :0.0
display: :0  screen: 0
direct rendering: Yes
server glx vendor string: SGI
server glx version string: 1.4
server glx extensions:
    GLX_ARB_multisample, GLX_EXT_import_context, GLX_EXT_texture_from_pixmap,
    GLX_EXT_visual_info, GLX_EXT_visual_rating, GLX_MESA_copy_sub_buffer,
    GLX_OML_swap_method, GLX_SGI_make_current_read, GLX_SGI_swap_control,
    GLX_SGIS_multisample, GLX_SGIX_fbconfig, GLX_SGIX_pbuffer,
    GLX_SGIX_visual_select_group, GLX_INTEL_swap_event
client glx vendor string: Mesa Project and SGI
client glx version string: 1.4
...

I didn't copy it all.  If there's something specific in it that you need, let me know.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: vincent2 on September 08, 2013, 08:41:24 pm
if nvidia  still can't be installed,
do check more
 here,post your request there...

https://devtalk.nvidia.com/default/board/98/
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 08, 2013, 09:16:26 pm
Thanks for getting back to me, vincent2 and rbistolfi.  I don't have a 64-bit machine.  It's a regular 32-bit (x86) machine.  I did install all the packages listed in this message (http://forum.vectorlinux.com/index.php?topic=17835.msg98332#msg98332) first before using maintenance mode within 3.10.10 to install the nvidia driver, but to no avail.  It just wouldn't work.  Works fine in 3.0.8, however.


then u must install  32 bit kernel source:    kernel-src-3.10.10-x86-1vl70.txz,


http://vlcore.vectorlinux.com/pkg/untested/veclinux-7.0/x86/kernel-src-3.10.10-x86-1vl70.txz

then install nvdia driver again

I did install that package, along with the kernel and modules package.  I tried several times.  Despite this, I couldn't get the nvidia driver to work.

sledgehammer, thanks for looking into the glxinfo for me.  I was just curious if you had a similar issue to what I was having.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: bigpaws on September 08, 2013, 09:46:44 pm
You could try installing the legacy driver.

http://www.nvidia.com/object/linux-display-ia32-96.43.23-driver.html (http://www.nvidia.com/object/linux-display-ia32-96.43.23-driver.html)

If that was your post in LQ. You should not need to downgrade xorg.

HTH

Bigpaws
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 09, 2013, 03:38:19 am
John,

For audio try:

Code: [Select]
$ modprobe snd_hda_intel
$ modprobe snd_usb_audio

I will check your Ethernet card.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 09, 2013, 05:33:02 am
Hi bigpaws.  Yes, that is the driver for my card that I was using.  It won't install on the new kernel.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 09, 2013, 06:15:31 am
Hi bigpaws.  Yes, that is the driver for my card that I was using.  It won't install on the new kernel.

I think we will have to find an older kernel for you, one that includes the ptrace settings and that works with your nvidia card.

EDIT: Looks like it was merged in 3.5
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 09, 2013, 06:42:12 am
Okay, I'll try 3.5.5 from the repository and see.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 09, 2013, 07:04:22 am
Okay, I'll try 3.5.5 from the repository and see.

I am going to build 3.8 as well.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 09, 2013, 07:14:59 am
Thanks rbistolfi.  

I tried 3.5.5, and the nvidia driver works on it, but it doesn't have the ptrace_scope thingy:

Code: [Select]
mark:$ cat /proc/sys/kernel/yama/ptrace_scope
cat: /proc/sys/kernel/yama/ptrace_scope: No such file or directory
vector:/~
mark:$ uname -r
3.5.5
vector:/~

Anyway, I look forward to the 3.8 kernel.  Hopefully that will work out.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 09, 2013, 08:12:20 am
Rodrigo,

$ modprobe snd_hda_intel worked but $ modprobe snd_usb_audio gives the following error:

Quote
vector:/~
johwhi:$ modprobe snd_usb_audio
WARNING: Error inserting snd_usbmidi_lib (/lib/modules/3.10.10/kernel/sound/usb/snd-usbmidi-lib.ko): Operation not permitted
WARNING: Error inserting snd_hwdep (/lib/modules/3.10.10/kernel/sound/core/snd-hwdep.ko): Operation not permitted
WARNING: Error inserting snd_page_alloc (/lib/modules/3.10.10/kernel/sound/core/snd-page-alloc.ko): Operation not permitted
WARNING: Error inserting snd_timer (/lib/modules/3.10.10/kernel/sound/core/snd-timer.ko): Operation not permitted
WARNING: Error inserting snd_pcm (/lib/modules/3.10.10/kernel/sound/core/snd-pcm.ko): Operation not permitted
FATAL: Error inserting snd_usb_audio (/lib/modules/3.10.10/kernel/sound/usb/snd-usb-audio.ko): Operation not permitted
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 09, 2013, 08:19:14 am
John, I'm guessing that modprobe would need to be run as root.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 09, 2013, 08:33:02 am
Found another article (http://news.softpedia.com/news/Experts-Say-Hand-of-Thief-Linux-Trojan-Is-Far-from-Being-Commercially-Viable-380220.shtml) that claims the "hand of thief" thing isn't all that dangerous.  Still, better safe than sorry.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 09, 2013, 11:28:59 am
3.8 packages are up at vlcore.

Found another article (http://news.softpedia.com/news/Experts-Say-Hand-of-Thief-Linux-Trojan-Is-Far-from-Being-Commercially-Viable-380220.shtml) that claims the "hand of thief" thing isn't all that dangerous.  Still, better safe than sorry.

Yep. Its not something to worry a lot about.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: sledgehammer on September 09, 2013, 01:57:01 pm
Quote
John, I'm guessing that modprobe would need to be run as root.

Mark, thanks but that didn't help.  Didn't get an error though.

John
Title: Re: Interesting Article. Is Vector safe from this?
Post by: CrazyDog on September 13, 2013, 03:59:09 am
Wow, I didn't mean to start such a long thread.  Apparently this trojan is not currently a threat, but hackers are working to make it a reality.  Sorry if I made it seem worse than it is.

Thanks-
CrazyDog
Title: Re: Interesting Article. Is Vector safe from this?
Post by: rbistolfi on September 13, 2013, 06:31:58 am
Wow, I didn't mean to start such a long thread.  Apparently this trojan is not currently a threat, but hackers are working to make it a reality.  Sorry if I made it seem worse than it is.

Thanks-
CrazyDog

Nah, thanks for bringing this into our atention. The restrictions implemented in these settings look sane to me, would be nice to have them in 7.0 for who wants to use them.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on September 15, 2013, 07:27:32 am
if nvidia  still can't be installed,
do check more
 here,post your request there...

https://devtalk.nvidia.com/default/board/98/

Thanks, I'm going to try this.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: MarkGrieveson on October 05, 2013, 11:18:49 am
if nvidia  still can't be installed,
do check more
 here,post your request there...

https://devtalk.nvidia.com/default/board/98/

Okay, so I was preparing to once again attempt to install kernel 3.10, and then take note of the issues that occurred when trying to install the nvidia driver as instructed to do on the site specified above by vincent2, but I can't find the kernel packages that were specified in this post (http://forum.vectorlinux.com/index.php?topic=17835.msg98332#msg98332).  Do these packages no longer exist?  I also can't find the 3.8 packages to try.
Title: Re: Interesting Article. Is Vector safe from this?
Post by: nightflier on October 05, 2013, 04:24:32 pm
Packages in the untested repository have a fairly short lifespan and have probably been purged.  :(