TUCoPS :: Linux :: Apps N-Z

TUCoPS :: Linux :: Apps N-Z :: esa2-012.txt
swatch - Minor parsing fixes in Daily Summaries report. - ESA-20020515-012

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

+------------------------------------------------------------------------+
| EnGarde Secure Linux Bug Fix Advisory May 15, 2002 |
| http://www.engardelinux.org/ EBA-20020515-012 |
| |
| Packages: swatch |
| Summary: Minor parsing fixes in Daily Summaries report. |
+------------------------------------------------------------------------+

  EnGarde Secure Linux is a secure distribution of Linux that features
  improved access control, host and network intrusion detection, Web
  based secure remote management, complete e-commerce using AllCommerce,
  and integrated open source security tools.

OVERVIEW
- --------
  An issue was found with the swatch audit logs and the resulting daily
  summary. Under some circumstances the daily summary would report
  slightly inaccurate data for SSH logins.

DETAIL
- ------
  There was a parsing error in the Daily Summary that effected
  the results of the SSH Login numbers being reported. This fix will
  resolve this problem in the 1.0.1 community release of EnGarde Secure
  Linux.

SOLUTION
- --------
  Users of the EnGarde Professional edition can use the Guardian Digital
  Secure Network to update their systems automatically.

  EnGarde Community users should upgrade to the most recent version
  as outlined in this advisory. Updates may be obtained from:

    ftp://ftp.engardelinux.org/pub/engarde/stable/updates/
    http://ftp.engardelinux.org/pub/engarde/stable/updates/

  Before upgrading the package, the machine must either:

    a) be booted into a "standard" kernel; or
    b) have LIDS disabled.

  To disable LIDS, execute the command:

    # /sbin/lidsadm -S -- -LIDS_GLOBAL

  To install the updated package, execute the command:

    # rpm -Uvh [files]

  You must now update the LIDS configuration by executing the command:

    # /usr/sbin/config_lids.pl

  To re-enable LIDS (if it was disabled), execute the command:

    # /sbin/lidsadm -S -- +LIDS_GLOBAL

  To verify the signatures of the updated packages, execute the command:

    # rpm -Kv [files]

UPDATED PACKAGES
- ----------------
  These updated packages are for EnGarde Secure Linux 1.0.1 (Finestra).

  Source Package:

    SRPMS/swatch-3.0.4-1.0.29.src.rpm
      MD5 Sum: cd3797b61bb6f61469cebefdbcfc4397

  Binary Package:

    i386/swatch-3.0.4-1.0.29.i386.rpm
      MD5 Sum: 451331b4ede0bf80b73d6d6719cf358e

    i386/swatch-3.0.4-1.0.29.i686.rpm
      MD5 Sum: a901832ba0536bb1d641d7a5d1ee247e

REFERENCES
- ----------
  Guardian Digital's public key:
    http://ftp.engardelinux.org/pub/engarde/ENGARDE-GPG-KEY

  Swatch's Official Web Site:
    http://www.oit.ucsb.edu/~eta/swatch/

  Security Contact: security@guardiandigital.com
  EnGarde Advisories: http://www.engardelinux.org/advisories.html

- ----------------------------------------------------------------------------
$Id: EBA-20020515-012-swatch,v 1.3 2002/05/15 19:47:52 rwm Exp $
- ----------------------------------------------------------------------------
Author: Nicholas DeClario <nick@guardiandigital.com>
Copyright 2002, Guardian Digital, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE84rulHD5cqd57fu0RAiBuAJ9A4WDM8+FVNpqSv/dllHgYoIQqOQCfZSuJ
EpRpzbXrAlC6YfmljvTM8Mw=
=7hLh
-----END PGP SIGNATURE-----