[wplug] cron ?
JAMES DISKIN
jbdst81 at verizon.net
Thu May 15 16:49:38 EDT 2008
Why won't this cron job work?
Here's the crontab
$ crontab -l
30 16 * * * /home/administrator/cdto.sh > /home/administrator/cdto.log
And here is cdto.sh
$ cat cdto.sh
cd /cygdrive/c/users/public/music/newmusic.newmusic3
find . -size +10M -type f -delete
find . -mtime +30 -type f -delete
Sincerely,
James B. Diskin
http://jbdst8.googlepages.com/home
--------------------------------------------------
From: <wplug-request at wplug.org>
Sent: Thursday, May 15, 2008 12:00 PM
To: <wplug at wplug.org>
Subject: wplug Digest, Vol 51, Issue 12
> Send wplug mailing list submissions to
> wplug at wplug.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://www.wplug.org/mailman/listinfo/wplug
> or, via email, send a message with subject or body 'help' to
> wplug-request at wplug.org
>
> You can reach the person managing the list at
> wplug-owner at wplug.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of wplug digest..."
>
>
> Today's Topics:
>
> 1. Kernel build bug (Weber, Lawrence A)
> 2. Re: Kernel build bug (Michael Semcheski)
> 3. OpenSSL security vulnerability (Patrick Wagstrom)
> 4. Re: Kernel build bug (Weber, Lawrence A)
> 5. Re: OpenSSL security vulnerability (Brian Sammon)
> 6. Re: OpenSSL security vulnerability (Christopher DeMarco)
> 7. Re: OpenSSL security vulnerability (Christopher DeMarco)
> 8. Re: OpenSSL security vulnerability (Michael Semcheski)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Thu, 15 May 2008 09:19:58 -0400
> From: "Weber, Lawrence A" <laweber at switch.com>
> Subject: [wplug] Kernel build bug
> To: "General user list" <wplug at wplug.org>
> Message-ID:
> <3D7A5969DC27E747A85F69D1AFF8649505F6C601 at exchptc2.uss.switch.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> I am attempting to build kernel 2.6.25.1 and am hitting a error.
>
> The error says there is no rule to make net/ipv4/netfilter/ipt_ECN.c for
> net/ipv4/netfilter/ipt_ECN.o
>
> There is a file ipt_ecn.c and a rule that builds ipt_ecn.o. Later in the
> Makefile it references ipt_ECN.o. and crashes.
>
> Am I correct in thinking that make is case sensitive like everything else?
> If this is true then I can see other errors in the following Makefile
> lines.
>
>> -------------------------------------------
> Lawrence A. Weber
> Consulting Engineer
>> ANSALDO STS
>> Union Switch & Signal
>> 1000 Technology Drive
>> Pittsburgh, PA 15219-3120
>> Ph: 412-688-2319
>> Email: laweber at switch.com
> -------------------------------------------
>
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> http://www.wplug.org/pipermail/wplug/attachments/20080515/91bd3103/attachment-0001.html
>
> ------------------------------
>
> Message: 2
> Date: Thu, 15 May 2008 09:31:06 -0400
> From: "Michael Semcheski" <mhsemcheski at gmail.com>
> Subject: Re: [wplug] Kernel build bug
> To: "General user list" <wplug at wplug.org>
> Message-ID:
> <c077d2020805150631v6a16a671n52dca8fad69a3912 at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Without knowing the specifics, my initial reaction is that it would be
> case
> sensitive.
>
> The notion that file names are not case sensitive seems to be valid only
> in
> the Windows world.
>
> Mike
>
> On Thu, May 15, 2008 at 9:19 AM, Weber, Lawrence A <laweber at switch.com>
> wrote:
>
>> I am attempting to build kernel 2.6.25.1 and am hitting a error.
>>
>> The error says there is no rule to make net/ipv4/netfilter/ipt_ECN.c for
>> net/ipv4/netfilter/ipt_ECN.o
>>
>> There is a file ipt_ecn.c and a rule that builds ipt_ecn.o. Later in the
>> Makefile it references ipt_ECN.o. and crashes.
>>
>> Am I correct in thinking that make is case sensitive like everything
>> else?
>> If this is true then I can see other errors in the following Makefile
>> lines.
>>
>> -------------------------------------------
>> *Lawrence A. Weber*
>> Consulting Engineer
>> *ANSALDO* STS
>> Union Switch & Signal
>> 1000 Technology Drive
>> Pittsburgh, PA 15219-3120
>> Ph: 412-688-2319
>> Email: laweber at switch.com
>> -------------------------------------------
>>
>> _______________________________________________
>> wplug mailing list
>> wplug at wplug.org
>> http://www.wplug.org/mailman/listinfo/wplug
>>
>>
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> http://www.wplug.org/pipermail/wplug/attachments/20080515/082ecd8d/attachment-0001.html
>
> ------------------------------
>
> Message: 3
> Date: Thu, 15 May 2008 15:49:36 +0200
> From: Patrick Wagstrom <patrick at wagstrom.net>
> Subject: [wplug] OpenSSL security vulnerability
> To: WPLUG General user list <wplug at wplug.org>
> Message-ID: <482C3F70.9060003 at wagstrom.net>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
> I haven't seen any discussion of this, but it's actually very important.
> Some time ago, approximately two years, a single line was removed from the
> Debian installation of OpenSSL. Reading around, it looks like it was
> removed because the line caused a problem when profiling the code with
> Valgrind. Unfortunately, this had the nasty side effect of reducing the
> possible key space to 2^15 keys instead of 2^1024 possible keys. Yeah, it
> took two years for people to realize this.
>
> In that time span, Ubuntu, which uses/steals lots of stuff from Debian has
> achieved massive popularity, thus the defect is much more popular than
> just
> Debian. Also, the problem affects more than just servers -- in fact the
> server issue is quite moot compared to the elephant in the room.
>
> The biggest issue is that any SSH private keys you may have generated in
> that time are now vulnerable to a fairly easy dictionary attack. Knowing
> that most people use 1024 or 2048 bit public keys, you can already go and
> complete key sets on the net, and I'd imagine that by this evening the
> 4096
> set will be available to download. Thus, if you run a machine that
> accepts
> SSH passwordless login, you're now on borrowed time if ANYONE HAS USED A
> DEBIAN SYSTEM TO GENERATE KEYS. With a simple username there are only
> 98304 possible keys to try.
>
> So, system administrators, unless it's completely untenable, you should
> consider disabling passwordless login until you've confirmed that all
> users
> have changed their private key.
>
> Once again, because of the vulnerability with SSH public keys, any system
> that has a key generated by a debian user is vulnerable. Don't get all
> haughty thinking you're immune because you run Fedora, FreeBSD, or
> OpenBSD.
> I'm looking forward to scads of dictionary attacks in the near future.
>
> --Patrick
>
>
> ------------------------------
>
> Message: 4
> Date: Thu, 15 May 2008 10:32:46 -0400
> From: "Weber, Lawrence A" <laweber at switch.com>
> Subject: Re: [wplug] Kernel build bug
> To: "General user list" <wplug at wplug.org>
> Message-ID:
> <3D7A5969DC27E747A85F69D1AFF8649505F6C603 at exchptc2.uss.switch.com>
> Content-Type: text/plain; charset="us-ascii"
>
> Thanks for the sanity check. I corrected the case of several file names
> in the Makefile and the build is now rerunning and has passed this first
> problem point.
>
> I just don't understand how an error that gross could be in the kernel
> distribution. It tells me that it could never have been built prior to
> its release????
>
>
> -------------------------------------------
> Lawrence A. Weber
> Consulting Engineer
> ANSALDO STS
> Union Switch & Signal
> 1000 Technology Drive
> Pittsburgh, PA 15219-3120
> Ph: 412-688-2319
> Email: laweber at switch.com
> -------------------------------------------
>
>
>
>
> ________________________________
>
> From: wplug-bounces+laweber=switch.com at wplug.org
> [mailto:wplug-bounces+laweber=switch.com at wplug.org] On Behalf Of Michael
> Semcheski
> Sent: Thursday, May 15, 2008 9:31 AM
> To: General user list
> Subject: Re: [wplug] Kernel build bug
>
>
> Without knowing the specifics, my initial reaction is that it
> would be case sensitive.
>
> The notion that file names are not case sensitive seems to be
> valid only in the Windows world.
>
> Mike
>
>
> On Thu, May 15, 2008 at 9:19 AM, Weber, Lawrence A
> <laweber at switch.com> wrote:
>
>
> I am attempting to build kernel 2.6.25.1 and am hitting
> a error.
>
> The error says there is no rule to make
> net/ipv4/netfilter/ipt_ECN.c for net/ipv4/netfilter/ipt_ECN.o
>
> There is a file ipt_ecn.c and a rule that builds
> ipt_ecn.o. Later in the Makefile it references ipt_ECN.o. and crashes.
>
> Am I correct in thinking that make is case sensitive
> like everything else? If this is true then I can see other errors in
> the following Makefile lines.
>
> -------------------------------------------
> Lawrence A. Weber
> Consulting Engineer
> ANSALDO STS
> Union Switch & Signal
> 1000 Technology Drive
> Pittsburgh, PA 15219-3120
> Ph: 412-688-2319
> Email: laweber at switch.com
> -------------------------------------------
>
>
> _______________________________________________
> wplug mailing list
> wplug at wplug.org
> http://www.wplug.org/mailman/listinfo/wplug
>
>
>
>
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> http://www.wplug.org/pipermail/wplug/attachments/20080515/54044d40/attachment-0001.html
>
> ------------------------------
>
> Message: 5
> Date: Thu, 15 May 2008 10:32:09 -0400
> From: Brian Sammon <wplug-list at brisammon.fastmail.fm>
> Subject: Re: [wplug] OpenSSL security vulnerability
> To: General user list <wplug at wplug.org>
> Message-ID: <E1JweVR-0005sX-6P at thinkpad>
> Content-Type: text/plain; charset=us-ascii
>
>> I haven't seen any discussion of this, but it's actually very important.
>> Some time ago, approximately two years, a single line was removed from
>> the
>> Debian installation of OpenSSL. Reading around, it looks like it was
>> removed because the line caused a problem when profiling the code with
>> Valgrind. Unfortunately, this had the nasty side effect of reducing the
>> possible key space to 2^15 keys instead of 2^1024 possible keys. Yeah,
>> it
>
> Reference?
>
>
>
>
>
>
>
>
>
>
> ------------------------------
>
> Message: 6
> Date: Thu, 15 May 2008 10:23:32 -0400
> From: Christopher DeMarco <demarco at maya.com>
> Subject: Re: [wplug] OpenSSL security vulnerability
> To: General user list <wplug at wplug.org>
> Message-ID: <20080515142331.GA7337 at owl.prv.maya.com>
> Content-Type: text/plain; charset=us-ascii
>
> On Thu, May 15, 2008 at 03:49:36PM +0200, Patrick Wagstrom wrote:
>
>> I haven't seen any discussion of this, but it's actually very
>> important. Some time ago, approximately two years, a single line
>> was removed from the Debian installation of OpenSSL. Reading
>> around, it looks like it was removed because the line caused a
>> problem when profiling the code with Valgrind. Unfortunately, this
>> had the nasty side effect of reducing the possible key space to 2^15
>> keys instead of 2^1024 possible keys. Yeah, it took two years for
>> people to realize this.
>
> [snip]
>
>> complete key sets on the net, and I'd imagine that by this evening
>> the 4096 set will be available to download. Thus, if you run a
>
> For the record: This vulnerability was announced on the 13th, so
> Patrick's estimate of "this evening" for the next bit (ha!) of
> keyspace to hit the 'net.
>
> This is A Big Deal. Drop whatever you're doing and go fix this --
> this can be considered on par with disk errors on the urgency scale.
>
>
> --
> Christopher DeMarco <demarco at maya.com>
> IT Director
> MAYA Group
> +1-412-488-2900
>
>
>
> ------------------------------
>
> Message: 7
> Date: Thu, 15 May 2008 10:49:24 -0400
> From: Christopher DeMarco <demarco at maya.com>
> Subject: Re: [wplug] OpenSSL security vulnerability
> To: General user list <wplug at wplug.org>
> Message-ID: <20080515144923.GD7337 at owl.prv.maya.com>
> Content-Type: text/plain; charset=us-ascii
>
> On Thu, May 15, 2008 at 10:32:09AM -0400, Brian Sammon wrote:
>
>> > I haven't seen any discussion of this, but it's actually very
>> > important.
>> > Some time ago, approximately two years, a single line was removed from
>> > the
>> > Debian installation of OpenSSL. Reading around, it looks like it was
>> > removed because the line caused a problem when profiling the code with
>> > Valgrind. Unfortunately, this had the nasty side effect of reducing
>> > the
>> > possible key space to 2^15 keys instead of 2^1024 possible keys. Yeah,
>> > it
>>
>> Reference?
>
> The horse's mouth, as it were...
>
> http://www.debian.org/security/2008/dsa-1576
>
>
> --
> Christopher DeMarco <demarco at maya.com>
> IT Director
> MAYA Group
> +1-412-488-2900
>
>
>
> ------------------------------
>
> Message: 8
> Date: Thu, 15 May 2008 11:19:07 -0400
> From: "Michael Semcheski" <mhsemcheski at gmail.com>
> Subject: Re: [wplug] OpenSSL security vulnerability
> To: "General user list" <wplug at wplug.org>
> Message-ID:
> <c077d2020805150819y8bd6939n312a1ad99a4a2470 at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> I want to clarify something here:
>
> This affects not just the server keys, but also any user keys that may
> have
> been generated (e.g., id_rsa).
>
> Thus, if you have an authorized_keys entry for a key generated from an
> Ubuntu or Debian system, the prudent thing is probably to delete it, and
> regenerate your user keys.
>
>
> Mike
>
> On Thu, May 15, 2008 at 10:49 AM, Christopher DeMarco <demarco at maya.com>
> wrote:
>
>> On Thu, May 15, 2008 at 10:32:09AM -0400, Brian Sammon wrote:
>>
>> > > I haven't seen any discussion of this, but it's actually very
>> important.
>> > > Some time ago, approximately two years, a single line was removed
>> > > from
>> the
>> > > Debian installation of OpenSSL. Reading around, it looks like it was
>> > > removed because the line caused a problem when profiling the code
>> > > with
>> > > Valgrind. Unfortunately, this had the nasty side effect of reducing
>> the
>> > > possible key space to 2^15 keys instead of 2^1024 possible keys.
>> > > Yeah,
>> it
>> >
>> > Reference?
>>
>> The horse's mouth, as it were...
>>
>> http://www.debian.org/security/2008/dsa-1576
>>
>>
>> --
>> Christopher DeMarco <demarco at maya.com>
>> IT Director
>> MAYA Group
>> +1-412-488-2900
>>
>> _______________________________________________
>> wplug mailing list
>> wplug at wplug.org
>> http://www.wplug.org/mailman/listinfo/wplug
>>
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> http://www.wplug.org/pipermail/wplug/attachments/20080515/5d3b991a/attachment-0001.html
>
> ------------------------------
>
> _______________________________________________
> wplug mailing list
> wplug at wplug.org
> http://www.wplug.org/mailman/listinfo/wplug
>
>
> End of wplug Digest, Vol 51, Issue 12
> *************************************
More information about the wplug
mailing list