--- Log opened Tue May 02 00:00:29 2006 00:13 -!- idealm [n=ideal@222.67.233.20] has joined #t2 01:13 -!- morfoh [n=morfoh@p54BECCD1.dip.t-dialin.net] has quit [Read error: 110 (Connection timed out)] 01:30 -!- sepp_ [n=sepp@p213.54.133.179.tisdip.tiscali.de] has joined #t2 01:44 -!- sepp [n=sepp@p213.54.157.104.tisdip.tiscali.de] has quit [Read error: 113 (No route to host)] 02:53 -!- karasz [n=karasz@80.97.102.201] has quit [Remote closed the connection] 02:56 -!- karasz [n=karasz@80.97.102.201] has joined #T2 03:24 -!- karasz [n=karasz@80.97.102.201] has quit [Remote closed the connection] 03:25 -!- karasz [n=karasz@80.97.102.201] has joined #T2 04:11 -!- karasz [n=karasz@80.97.102.201] has quit [Remote closed the connection] 04:12 -!- karasz [n=karasz@80.97.102.201] has joined #T2 06:33 -!- morfoh [n=morfoh@p54BECCD1.dip.t-dialin.net] has joined #t2 06:51 < morfoh> moin 08:12 < CIA-7> rene * r17343 /trunk/package/graphic/jhead/ (gcc4.patch jhead.desc): * updated jhead (2.5 -> 2.6) 08:13 < CIA-7> rene * r17344 /trunk/package/x11/xterm/xterm.desc: * updated xterm (212 -> 213) 08:13 < CIA-7> rene * r17345 /trunk/package/network/wireless-tools/wireless-tools.desc: * updated wireless-tools (27 -> 28) 08:15 < morfoh> moin rxr 08:16 < CIA-7> rene * r17346 /trunk/package/xorg/xf86-video-ati/xf86-video-ati.desc: * updated xf86-video-ati (6.5.8.0 -> 6.6.0) 08:35 < CIA-7> rene * r17347 /trunk/package/multimedia/mplayer/ppc64.patch: * patch mplayer to build on ppc64 08:35 < rxr> moin morfoh 08:54 -!- sparc-kly__ [n=mubex@64.237.243.23] has joined #t2 08:58 -!- sparc-kly_ [n=mubex@64.237.247.240] has quit [Read error: 104 (Connection reset by peer)] 09:02 < CIA-7> chris * r17348 /trunk/package/security/amap/ (. amap.cache amap.desc): * added amap (5.2) - A next-generation scanning tool for pentesters. 09:40 -!- rxr_ [n=rene@e178129234.adsl.alicedsl.de] has joined #t2 09:40 -!- Topic for #t2: T2 | 2.1.1.1 and 2.2.0-epsilon RELEASED! | The System Development Environment (SDE) | http://www.t2-project.org/ | Say hello and do not hesitate to ask us any questions that you may have. | http://www.rafb.net/paste/ 09:40 -!- Topic set by mnemoc [] [Sat Mar 11 22:55:45 2006] 09:40 [Users #t2] 09:40 [@ChanServ] [ karasz] [ mnemoc] [ rxr ] [ sparc-kly__] [ _Ragnar_] 09:40 [ CIA-7 ] [ laj ] [ morfoh] [ rxr_ ] [ tdi ] 09:40 [ idealm ] [ LMJ ] [ mtr ] [ sepp_] [ valentin ] 09:40 -!- Irssi: #t2: Total of 16 nicks [1 ops, 0 halfops, 0 voices, 15 normal] 09:40 -!- [freenode-info] why register and identify? your IRC nick is how people know you. http://freenode.net/faq.shtml#nicksetup 09:40 -!- Channel #t2 created Sun Aug 8 19:15:33 2004 09:41 -!- rxr [n=rene@e178161136.adsl.alicedsl.de] has quit [Nick collision from services.] 09:41 -!- Irssi: Join to #t2 was synced in 36 secs 09:41 -!- You're now known as rxr 10:51 -!- idealm_ [n=ideal@58.33.50.207] has joined #t2 10:54 < tdi> morfoh: hi, hi #t2 10:56 < morfoh> hi tdi 11:08 -!- idealm [n=ideal@222.67.233.20] has quit [Read error: 110 (Connection timed out)] 11:53 -!- morfoh_ [n=morfoh@p54BED107.dip.t-dialin.net] has joined #t2 11:58 < karasz> moin all. 12:01 < mnemoc> moin karasz 12:01 < karasz> buenos dias companero mnemoc ;) 12:01 < mnemoc> buenos dias compaņero karasz :) 12:04 -!- morfoh [n=morfoh@p54BECCD1.dip.t-dialin.net] has quit [Read error: 110 (Connection timed out)] 12:05 < karasz> Quote of the day, slightly more serious than the others: 'I want to be the man that I was when I wanted to be the man that I am.' 12:08 < mnemoc> tdi: i just started a build with rsbac, to see and fix the problems you are experiencing 12:19 < tdi> so you do not have the problem i had? 12:21 < mnemoc> i do, now 12:21 < mnemoc> i have tested rsbac in around 3 months 12:21 < tdi> if only i knew where to search i can help you 12:21 < tdi> s/can/could/ 12:23 < mnemoc> don'T worry ,-) 12:23 < mnemoc> i'll do it 12:23 < tdi> cool 12:25 -!- morfoh_ is now known as morfoh 12:38 < karasz> wb kommrad. 12:39 < CIA-7> amery * r17349 /trunk/package/security/rsbac/pkg_linux_pre.conf: * fixed rsbac to use rsbac-common instead of just rsbac like it on 1.2.4 12:43 < mnemoc> "don't greet, renick" 12:43 < morfoh> mnemoc: I'm just adopting 12:43 < mnemoc> :) 12:43 < morfoh> but hi mnemoc :) 12:45 < karasz> oh, thoose domestic fights .... ;) 12:45 < valentin> how about 12:45 -!- valentin is now known as rehi 12:45 -!- rehi is now known as valentin 12:46 < morfoh> hi valentin :) 12:46 < morfoh> and hi tavarish :) 12:47 < mnemoc> wb valentin :) 13:39 < CIA-7> amery * r17350 /trunk/package/security/rsbac/pkg_linux-header_pre.conf: * removed rsbac/linux-header extender, there is no reason to have patched kernel headers since 1.2.5 14:42 < CIA-7> chris * r17351 /trunk/package/security/samhain/samhain.desc: 14:42 < CIA-7> * updated samhain (2.1.3 -> 2.2.0) 14:42 < CIA-7> * New in this Release: 14:42 < CIA-7> - server-to-server relay messages are possible now 14:42 < CIA-7> - the checksum of files monitored under the GrowingLogFiles policy is now verified to the previous size of the file. 15:01 < LMJ> moin moin 15:02 < morfoh> moin LMJ :) 15:04 < LMJ> I would like to submit t2 should offer the possibility the emerge "apache1" (1.33.x) or "apache2" (2.x), same thing for php with php4 or php5 15:08 < mnemoc> LMJ: we don't support multiple versions for the same package yet 15:09 < LMJ> since the package name is different, it could generate troubles ? 15:22 < morfoh> LMJ: nope 15:23 < morfoh> quote from the current linux-magazin "Der Debian-Projektleiter wird ueber paarweise Ausscheidungen ermittelt..." :) 15:31 -!- sparc-kly__ [n=mubex@64.237.243.23] has quit [Read error: 110 (Connection timed out)] 15:32 < karasz> re 15:32 < mnemoc> wb karasz 15:32 < karasz> not that i am trying to question mnemoc assesments, but 15:33 < karasz> don't we have that case already in T2? 15:33 < karasz> i mean different versions of the same pack? 15:33 < mnemoc> karasz: different packages :) 15:33 < karasz> ofcourse. 15:33 < karasz> o_O 15:33 < karasz> i will read again. 15:33 < morfoh> wb tavarish karasz :) 15:34 < karasz> spasiba kommrad morfoh 15:34 < karasz> mnemoc: thx ;) 15:34 < mnemoc> karasz: you are right, he is asking for that too. but it's a practice to avoid imo 15:34 < karasz> and what do you propose instead? 15:34 < mnemoc> there are some threads about foo-% on the ML (2005) 15:35 < karasz> aham. 15:37 -!- mtr_ [n=Michael@pD9E1303F.dip0.t-ipconnect.de] has joined #t2 15:46 -!- mtr [n=Michael@pD9E11D77.dip0.t-ipconnect.de] has quit [Read error: 110 (Connection timed out)] 16:00 < CIA-7> rene * r17352 /trunk/package/xorg/xorg-server/xorg-server-1.0.x-mitri.patch: * added xorg-server mitri patch - SECURITY 16:16 < morfoh> rxr: what kind of security issue solves this patch ? 16:17 < rxr> CVE-2006-1525 16:17 < rxr> Buffer overflow in the Xrender extension of the X.Org server 16:18 < morfoh> thanks 16:24 < morfoh> rxr: I think we should include the CVE number in the case of security related log messages for esier searching if possible and perhaps a short description of the problem 16:25 < morfoh> btw, I think I tested this exploit 1week ago ... but we weren't vulnerable. 16:25 < morfoh> I'll go and check that again ... perhaps this was a different exploit 16:28 -!- karasz [n=karasz@80.97.102.201] has quit [Read error: 113 (No route to host)] 16:29 -!- karasz [n=karasz@80.97.102.201] has joined #T2 16:34 < morfoh> rxr: CVE-2006-1525 <-- is kernel related 16:36 < rxr> hm, typo in the x.org list mail 16:36 < rxr> 1526 that should have been I think 16:36 < rxr> "An unfortunate typo ('&' instead of '*' in an expression) causes the 16:36 < rxr> code to mis-compute the size of memory allocations in the 16:36 < rxr> XRenderCompositeTriStrip and XRenderCompositeTriFan requests. " 16:37 < morfoh> yeah ... now ic :) 16:37 < morfoh> this one I didn't tested 16:39 * morfoh switching into kitchen mode ... making a cake 17:26 < tdi> mnemoc: ping 17:26 < tdi> perl fails to compile 17:31 < tdi> in my opinion perl needs D_HAVE_EACCESS 17:42 < tdi> -Dusenm 17:44 < tdi> lol 17:44 < tdi> EU rules treat carrot as fruit 17:44 < tdi> not a vegetable lol 17:54 -!- idealm_ [n=ideal@58.33.50.207] has quit [Remote closed the connection] 18:21 -!- veki [n=vedran@gw.gnucentar.org.yu] has joined #t2 18:35 < karasz> wb veki 18:36 < veki> hi 18:36 < veki> how are you? 18:36 < karasz> fine thx, and you? 18:36 < veki> well, just finished meeting with founding members fo Internet society here 18:37 < karasz> hmmm, sounds important.. 18:38 < veki> yes, I am member of teh board here 18:39 < mnemoc> tdi: what stage? what host os? 18:39 < mnemoc> hi veki 18:40 < veki> hi mnemoc 18:40 < veki> I hope my article was not so hard to read 18:40 < veki> as you seen I mentioned T2 in it 18:49 < mnemoc> yes i like it :) thanks for sending it 18:49 < mnemoc> veki: read query 19:14 < CIA-7> rene * r17353 /trunk/package/graphic/scribus/ (scribus.desc stl.diff): * updated scribus (1.3.2 -> 1.3.3.1) 20:43 < karasz> re 20:43 < karasz> hmmm, did i did the quote of the day today? 20:43 < karasz> anyway, here it goes some mind munching subject ;) 20:44 < karasz> ` Governments, if they endure, always tend increasingly toward aristocratic forms. No government in history has been known to evade this pattern. And as the aristocracy develops, government tends more and more to act exclusively in the interests of the ruling class -- whether that class be hereditary royalty, oligarchs of financial empires, or entrenched bureaucracy.` 20:44 < mnemoc> :) 20:45 -!- sepp_ is now known as sepp 20:45 < sepp> hi 20:45 < mnemoc> wb sepp 20:45 < karasz> hello sepp 20:46 < sepp> hello mnemoc, karasz 20:49 < karasz> since is soo little chattering goin' around i endulge myself another one, may I? 20:50 < karasz> ` Rules build up fortifications behind which small minds create satrapies. A perilous state of affairs in the best of times, disastrous during crises.` 20:52 < sepp> i enabled PIE in my last build - is there any reason to use pie for stage 0,1,2? 20:52 < mnemoc> 0 no 20:53 < sepp> {diet,g}libc fail in 1 with PIE - and i think its totally useless in anything <3 20:53 < mnemoc> sepp: don'T forget cross compilations 20:53 < sepp> i need to enable cc for PIE ? 20:55 < mnemoc> i have not looked at the PIE support implementation yet, i guess it's quite pre-alpha 20:56 < mnemoc> but for certain pacakges we should skip PIE, like we do with SSP 20:57 < sepp> just wanted to try PIE with ssp... 20:57 < sepp> and pax 21:00 < sepp> ssp alone works ok, so far only mplayer seems to be broken with ssp 21:00 < morfoh> sepp: gleich drei dinge auf einmal ... das geht nun wirklich nicht :) 21:01 < sepp> morfoh: LOL 21:01 < morfoh> sepp: :P 21:07 < morfoh> bbl 21:11 < sepp> well - so far i like "mnemosyne" - only 60 lines in my pkgsel 21:11 < sepp> had 260 before 21:11 < mnemoc> :) 21:11 < mnemoc> we have to modularize those 60 lines :) 21:12 < sepp> yup ;) 21:13 < sepp> with 2 modules i could get rid of 10 lines or so 21:14 < mnemoc> sepp: give me a hash and i could give you write access :) 21:15 < sepp> one would be: tor, socat, tsocks, privoxy, libevent <- for anon interwebing 21:16 < sepp> i do not have the ugly httpd installed 21:20 < mnemoc> privoxy is a nice cheap alternative to squid/dansguardian, make the current .ask into a .choice 21:23 < sepp> i like all 5 pkgs to get rid of normal interweb spam - and sometimes (with tor) get rid of my ip number 21:23 < mnemoc> who needs tsocks? 21:24 < sepp> its usefull if you want to use your irc/whatever client with tor 21:25 < sepp> e.g. irssi/gaim/silc 21:29 < sepp> and i really like privoxy to ban all that shit that is on the interweb 21:30 < mnemoc> can tsocks be used as a real sock4/5 proxy or just as LD_PRELOAD ? 21:30 < mnemoc> (just to decide where to place it) 21:31 < sepp> does not need linker override 21:31 < sepp> linker/loader ... 21:33 < sepp> i mean it has a wrapper to do it 21:35 < mnemoc> but after the wrapper, what? does it provide a real sock4/5 proxy? 21:37 < sepp> you can say "tsocks foo" and it will preload libtsocks.so to bend socket and friends 21:38 < mnemoc> you are not understanding my question :( 21:39 < sepp> its usefull if your application does not undertands socks at all 21:40 < mnemoc> yes, i undertsand that perfectly 21:41 < sepp> oehm, now i am confused 21:41 < sepp> what was the question? 21:42 < mnemoc> does it also provide a sock4/5 proxy _server_ aditionaly to the sock4/5 client wrapper? 21:43 < sepp> its not a socks proxy - it just uses LD_PRELOAD with a wrapper to make non socks aware apps work 21:43 < mnemoc> so it's just the client 21:43 < sepp> yes 21:43 < mnemoc> :) 21:44 < sepp> just bend syscalls 21:44 < sepp> but the easy way 21:46 < mnemoc> i just wanted to know if it's also an alternative for dante, but not :) 21:46 < sepp> no 21:54 < mnemoc> does pivoxy support tor? 21:54 < sepp> actually tor needs privoxy to be usefull 21:54 < CIA-7> sebastian * r17354 /trunk/package/develop/dltrace/ (. dltrace.cache dltrace.desc): * added dltrace (0.5) - Dynamic library call tracer 21:55 < mnemoc> sepp: please explain 21:56 < sepp> you can not use tor without privoxy because tor is not a proxy 21:58 < sepp> tor just encrypts and send your tcp connection through some random mix servers 21:59 < mnemoc> but acting as a sock5 proxy, or not? 21:59 < sepp> no 22:02 < mnemoc> :\ 22:02 < sepp> thats why you want 5 small programms if you want to use tor 22:04 < sepp> the really minimal set would be - just tor and privoxy 22:05 < mnemoc> i was trying to isolate privoxy, and make a anonamous networking module forcing it 22:06 < mnemoc> but if tor is not a sock5, where does tsocks connect your irssi to? 22:08 -!- sepp_ [n=sepp@tor/session/external/x-29a407b76147d0fb] has joined #t2 22:08 < sepp_> hello :) 22:08 < mnemoc> :\ 22:08 < sepp_> just run "torify irssi" 22:08 < sepp_> ... 22:09 < sepp> ok? 22:09 < mnemoc> nope 22:09 < mnemoc> i want the details :) 22:10 < sepp> uhm 22:10 < mnemoc> it's also interesing to see that the DoD needs normal civilians to use their anonimizer so they are not detectd :p 22:10 -!- sepp_ [n=sepp@tor/session/external/x-29a407b76147d0fb] has quit [Client Quit] 22:11 < sepp> that is part of the game 22:13 < sepp> noone forces you to use it if you think it is "DoD'ed" 22:14 < mnemoc> :) 22:14 < mnemoc> in fact i wanted by default on pavian-based systems :) 22:14 < mnemoc> that's why i want the ugly details, but i'm reading the presentation of tor first 22:15 < sepp> its the 198x cyberpunk idea of a mixed network 22:15 < sepp> nothing really new - just a bunch of proxies with encryption 22:18 < sepp> unless you own all servers in a cascade you do not know who send what 22:20 < mnemoc> :) 22:20 < sepp> what is so special about it? 22:22 < mnemoc> i think it's promoted and sponsored by the DoD, but i like it anyway :) 22:24 < sepp> it is and the local university has shown that projects in 1 country are very easy to attack 22:25 < sepp> legal attack ... 22:25 < mnemoc> yep 22:29 < sepp> tor is not a project in 3 german unis (with 2 nodes even in the same room) 22:38 < mnemoc> i'll make the module tomorrow, now i have to sleep 22:39 < mnemoc> thanks a lot for the explanation 22:48 -!- veki [n=vedran@gw.gnucentar.org.yu] has left #t2 [] 23:03 < sepp> mnemoc: i do not see much voodoo there - you just layer 3 ssl connections and you hope that at least 1 of 3 nodes is not under "DoD control", and if you have silly apps that do not understand socks4/5 you need to bend connect() ... 23:16 -!- keinek [n=keinek@200.70.178.61] has joined #t2 23:16 < keinek> hi guys 23:17 < sepp> hi keinek 23:19 < keinek> hi sepp 23:23 < keinek> sepp, yesterday i try the trunk for compile a desktop system, but... fail in linux26 stage 1, the minimal work fine. 23:23 < keinek> the trunk work correctly? 23:23 < keinek> today the mnemosyne work with the svn up, and update utility too 23:24 < keinek> yesterday this does not work. 23:24 < keinek> :) 23:24 < sepp> uhm - i build a sepp target last night without problems 23:25 < sepp> only thing i changed was to downdate fox to 1.4.x 23:27 < keinek> i was try to compile a default desktop, but when i download de trunk, the mnemosyne an utility was not download. 23:27 < keinek> today i can. 23:27 < keinek> :) 23:27 < keinek> i think that the utility was the problem in my trunk. 23:29 < sepp> try "./scripts/Download -cfg $keinek -required" and if it still fails write a mail or so 23:30 < keinek> sepp, this work fine. 23:33 < sepp> so - what is the problem? 23:34 < keinek> the problema is when i was try to download "THE TRUNK" with svn -co 23:34 < keinek> today svn up show me a certificate for download the directory utility and mnemosyne. 23:34 < keinek> yesterday only show a error in this part 23:34 < keinek> :) 23:34 -!- keinek [n=keinek@200.70.178.61] has quit [Remote closed the connection] 23:34 -!- keinek_ [n=keinek@200.70.160.248] has joined #t2 23:34 < keinek_> sorry i lost the connection (dial up) 23:34 < keinek_> i said: 23:35 < keinek_> sepp, this work fine. 23:35 < keinek_> the problema is when i was try to download "THE TRUNK" with svn -co 23:35 < keinek_> today svn up show me a certificate for download the directory utility and mnemosyne. 23:35 < keinek_> yesterday only show a error in this part 23:35 < keinek_> :) 23:36 < sepp> something with ixplanet.de ? 23:36 < keinek_> i dont know, today work fine 23:37 < keinek_> so... my trunk was incomplete 23:37 < keinek_> now must will work. 23:37 < keinek_> :P 23:38 < sepp> good luck 23:40 < keinek_> thanks 23:40 < keinek_> i need it 23:45 < keinek_> sepp, the old subversion does not support ssl 23:45 < keinek_> the version that is inthere 2.1.1.1 23:45 < keinek_> so, when i try download some part dont download. 23:46 < sepp> i think you need neon with svn now 23:46 < keinek_> but i try to svn up, from a new version of t2, when i install the minimal from trunk, and i was run svn up, and then download all. 23:47 < keinek_> what is neon? 23:47 < sepp> .. 23:47 < sepp> umh 23:47 < keinek_> i have two computers.. 23:48 < keinek_> one with 2.1.1.1 and another with minimal from the trunk. 23:48 < sepp> new subversion need neon to work with ssl 23:48 < sepp> `svn info t2-trunk` ... 23:48 < keinek_> the computer with 2.1.1.1 doest have the new version of svn, so the download is incomplete. 23:49 < keinek_> but the other computer, with the new minimal from the lastest trunk, work fine. 23:49 < keinek_> That was my problema. 23:49 < sepp> try svn info $your-t2-directory 23:49 < keinek_> so... people that have the 2.1.1.1 with older svn, will not download the new trunk. 23:49 < keinek_> ok 23:49 < sepp> might be http and not https 23:50 < keinek_> umh, in the download web of t2 show tree options. 23:50 < keinek_> :) 23:50 < keinek_> thanks. 23:51 < keinek_> i hope can compile a generic or desktop from new trunk, for working with the lastest utils. 23:51 < keinek_> :) 23:51 < keinek_> i enjoy compile t2 23:51 < keinek_> :) 23:51 < sepp> ;) 23:54 < sepp> maybe svn changed again and with a old client you can not run a svn co - but i am not sure about this 23:54 < karasz> cu guys ;) 23:55 < sepp> cu karasz --- Log closed Wed May 03 00:00:35 2006