VectorLinux

Please login or register.

Login with username, password and session length
Advanced search  

News:

Visit our home page for VL info. For support and documentation, visit the Vector Linux Knowledge Center or search the Knowledge Center and this Forum using the search box above.

Pages: 1 2 3 [4] 5 6 ... 10
 31 
 on: May 02, 2016, 07:24:05 am 
Started by FuglyFloom - Last post by FuglyFloom
Thank you for your reply. I must admit I did not think the security issues would be that serious.

 32 
 on: May 02, 2016, 07:04:14 am 
Started by FuglyFloom - Last post by wigums
i dont know of every method possible to crack and older version of
vector but you'd be looking at security issues such as glibc, openssl,
bash, everything from mozilla, the entire LAMP/LEMP stacks, samba,
xorg, the lsit keeps going. so no its not necassarily more secure than xp

even though you most likely wouldnt run LAMP/LEMP on it youd still
have apps that need mysql/mariadb and php.

you could probably lock it all up tight with iptables or a hardware firewall
and of course not running any services helps too, cant exploit httpd
if its not running for example. youd still have a huge gaping hole
just from running many years old firefox. and you wont be able to do
much if any updates.

ive got a p4 that runs vector linux 7.1 just fine and i just use Nouveau.

with all that being said you certainly can run an older vector and the nvidia driver
but in my personal opinion the bad outwieghs the good.

if and when you do find an older release of vector to run google the version of xorg
for security issues and make an educated decision on what youd like to do.

im not trying to convince you one way or the other im just bringing up some issues
that im aware of so that you can make the best choice for yourself and what youd like to do

 33 
 on: May 01, 2016, 02:09:30 pm 
Started by FuglyFloom - Last post by FuglyFloom
I installed the card in a 2004 P4 machine which had SiS integrated graphics (which is worse than terrible). With the TNT2 the image quality at 1080p is remarkably good even with the Nouveau driver and playback of 720p video is flawless. Really the only problem is some annoying artifacts on the borders of application windows. At the moment I don't have a use for this computer but I'm just using it for some cheap fun, so yes I can afford to choose a distro to go with the graphics card. Btw it's actually the 16MB version so there is even less oomf than you thought...

You mention security issues with running older software. I'm guessing the security risk is still minimal compared with Windows XP, which is the most recent version of Windows for which drivers are available for the motherboard etc. What is the worst that could happen if it were left connected to the internet for extended periods? Surely if the firewall were activated then it could not be added to a botnet or anything like that?

P.S. I'm interested to know what version of Xorg comes with VL 7.0 and VL 6.0?

 34 
 on: May 01, 2016, 12:39:27 pm 
Started by FuglyFloom - Last post by wigums
whats so special about that card that you're choosing
a distro to go around it? even with the driver you arent gonna
get much oompf out of 32 mb anymore not too mention the
security implications of running such old software

 35 
 on: May 01, 2016, 10:41:14 am 
Started by FuglyFloom - Last post by FuglyFloom
Would version 7.0 of VectorLinux come with a compatible version of Xorg or would I need to use version 6.0?

 36 
 on: April 30, 2016, 08:01:24 pm 
Started by FuglyFloom - Last post by M0E-lnx
I read something similar at http://www.flaterco.com/kb/video/X-regressions.html

Seems you need an old kernel and toolchain and also an old xorg server. Making those changes will most likely break more than you want to fix

 37 
 on: April 30, 2016, 07:00:46 am 
Started by FuglyFloom - Last post by FuglyFloom
I read that the last NVidia driver which supported the TNT2 (71.86.15) does not support later versions of the Linux kernel, hence the errors. Would version 7.0 of VectorLinux allow me to install the proprietary NVidia driver? If so would I have to do it manually?

 38 
 on: April 30, 2016, 05:50:53 am 
Started by quoque - Last post by bradhaddin
My opinion that people should select Paid VPN Service because It provides high-quality security to access Geo restricted website or content also give anonymity while download torrents.

 39 
 on: April 29, 2016, 05:52:49 pm 
Started by wigums - Last post by wigums
php has been updated to 5.6.26 for both 7.1 and 7.2

 For more information, see:
    http://php.net/ChangeLog-5.php#5.6.21
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3074

 40 
 on: April 29, 2016, 05:51:57 pm 
Started by wigums - Last post by wigums
ntp has been upgraded to 4.2.8p7 for both 7.1 and 7.2

This release patches several low and medium severity security issues:
  CVE-2016-1551: Refclock impersonation vulnerability, AKA: refclock-peering
  CVE-2016-1549: Sybil vulnerability: ephemeral association attack,
    AKA: ntp-sybil - MITIGATION ONLY
  CVE-2016-2516: Duplicate IPs on unconfig directives will cause an assertion
    botch
  CVE-2016-2517: Remote configuration trustedkey/requestkey values are not
    properly validated
  CVE-2016-2518: Crafted addpeer with hmode > 7 causes array wraparound with
    MATCH_ASSOC
  CVE-2016-2519: ctl_getitem() return value not always checked
  CVE-2016-1547: Validate crypto-NAKs, AKA: nak-dos
  CVE-2016-1548: Interleave-pivot - MITIGATION ONLY
  CVE-2015-7704: KoD fix: peer associations were broken by the fix for
    NtpBug2901, AKA: Symmetric active/passive mode is broken
  CVE-2015-8138: Zero Origin Timestamp Bypass, AKA: Additional KoD Checks
  CVE-2016-1550: Improve NTP security against buffer comparison timing attacks,
    authdecrypt-timing, AKA: authdecrypt-timing
  For more information, see:
    http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7704
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8138
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1547
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1548
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1549
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1550
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1551
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2516
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2517
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2518
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2519

Pages: 1 2 3 [4] 5 6 ... 10