search for: librelamp

...self-signed cert, it's just me. It worked fine until yesterday when I upgraded my desktop (NOT the server) to CentOS 7.4 Now thunderbird complains when it starts up, and won't let me confirm the security exception. On the server the following error occurs in the log: Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=2600:1010:b064:f260:e83e:562d:2316:18df, lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca: SSL alert number 48, session...

...system used by CentOS automatically includes that, or a build dependency use to pull that it but no longer does. Anyway if anyone is having a similar problem, that's a solution. -=- This is what I see in the mail server log when current CentOS thunderbird tries to connect: Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=2600:1010:b064:f260:e83e:562d:2316:18df, lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca: SSL alert number 48, session...

...ds further review - and it needs someone who actually has the right contacts in the software and hosting worlds to get it implemented. That's not me, I don't really like most people and the feeling tends to be mutual. Anti-social issues aside, I do think this needs to be fixed. https://librelamp.com/FooBird#security has what I think would be the easiest solution while keeping the ability to auto-configure stuff.

...ay when I upgraded my desktop (NOT the >> server) to CentOS 7.4 >> >> Now thunderbird complains when it starts up, and won't let me confirm >> the security exception. >> >> On the server the following error occurs in the log: >> >> Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth >> attempts in 1 secs): user=<>, >> rip=2600:1010:b064:f260:e83e:562d:2316:18df, >> lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() >> failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert >>...

...to CentOS 7.4 >>>> >>>> Now thunderbird complains when it starts up, and won't let me confirm >>>> the security exception. >>>> >>>> On the server the following error occurs in the log: >>>> >>>> Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth >>>> attempts in 1 secs): user=<>, >>>> rip=2600:1010:b064:f260:e83e:562d:2316:18df, >>>> lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() >>>> failed: error:14094418:SSL routines:SSL3_...

...e to pull that it but no longer does. >> >> Anyway if anyone is having a similar problem, that's a solution. >> >> -=- >> >> This is what I see in the mail server log when current CentOS >> thunderbird tries to connect: >> >> Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth >> attempts in 1 secs): user=<>, >> rip=2600:1010:b064:f260:e83e:562d:2316:18df, >> lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() >> failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert >>...

...C:91:18:8A:7E, hw, mtu 1500 ip4 default, ip6 default inet4 178.79.185.217/24 route4 178.79.187.246/32 inet6 2a01:7e00::825f:e564:ad53:72fc/64 inet6 fe80::a8ad:d312:4ef4:7272/64 route6 2a01:7e00::/64 * more stuff for other interfaces * -=- The output of sysctl -a | grep net.ipv6 : https://librelamp.com/sysctl.txt It looks from that like it should not be hiding the real MAC address. > >> >> It's all very frustrating but I suspect now the problem isn't the CentOS >> network configuration. >> > > Sounds likely ... depending on what there RA's say an...

Hello list, I've recently been working with LibreSSL on CentOS 7 and I thought I'd share it. I would be cautious about using it on production servers, but it seems to be behaving itself for me. https://librelamp.com/ I packaged it to install in parallel with OpenSSL rather than replace it. Apache (2.4.16), MariaDB (5.5.45) and PHP (5.6.12) complete the lamp stack. With MariaDB I did have to disable six tests in the make test section that were SSL related, I haven't investigated them yet to see if...

On Sat, 2015-08-22 at 08:05 -0700, Alice Wonder wrote: > Thunderbird has a MITM vulnerability with its otherwise rather groovy > auto-configuration feature. > https://librelamp.com/FooBird#security > > has what I think would be the easiest solution while keeping the > ability to auto-configure stuff. As for LibreSSL et al, perhaps you could mention all your concerns on Fedora ? Its the place where, it often seems, everything in Centos originates from. You will...

...and time zone selection I want internationalized, and I found the existing functions in PHP to be extremely poor. As in the php function for getting the preferred language from the browser was often flat out incorrect. That led me to creating my own class for BCP 47 support : https://calendar.librelamp.com/BCP47 Not perfect yet (er, probably never will be perfect) but at least the bugs I find are my bugs so I can figure out how to fix them. Just found one - with perfectly valid language tag es-419 when the class attempts to create a glibc language tag, it uses es_ES.utf8 which is obviously w...

Is there any information available about what packages are being planned for the SCL? For example, will PHP 5.6 be made available & maintained? By "maintained" I mean kept up to date with back ported security patches and such. -- ----------------------------------------------- - Nick Bright - - Vice President of Technology - -

...z-1173156 -%patch221 -p2 -b .fedora-ua +#%%patch221 -p2 -b .fedora-ua %if 0%{?fedora} > 22 %patch223 -p1 -b .appchooser-crash %endif @@ -786,6 +786,9 @@ #--------------------------------------------------------------------- %changelog +* Fri Nov 18 2016 Alice Wonder <buildmaster at librelamp.com> - 50.0-1.0 +- Build for CentOS 7, disable UA patch + * Thu Nov 10 2016 Martin Stransky <stransky at redhat.com> - 50.0-1 - Update to 50.0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- nss in CentOS is too old so that has to be disabled. Hardened build works so I change the detection macro t...

...or a > build dependency use to pull that it but no longer does. > > Anyway if anyone is having a similar problem, that's a solution. > > -=- > > This is what I see in the mail server log when current CentOS > thunderbird tries to connect: > > Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth > attempts in 1 secs): user=<>, > rip=2600:1010:b064:f260:e83e:562d:2316:18df, > lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() > failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown > ca: SSL...

...gt; It worked fine until yesterday when I upgraded my desktop (NOT the > server) to CentOS 7.4 > > Now thunderbird complains when it starts up, and won't let me confirm > the security exception. > > On the server the following error occurs in the log: > > Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth > attempts in 1 secs): user=<>, > rip=2600:1010:b064:f260:e83e:562d:2316:18df, > lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() > failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert > unknown ca: SSL aler...

...OT the >>> server) to CentOS 7.4 >>> >>> Now thunderbird complains when it starts up, and won't let me confirm >>> the security exception. >>> >>> On the server the following error occurs in the log: >>> >>> Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth >>> attempts in 1 secs): user=<>, >>> rip=2600:1010:b064:f260:e83e:562d:2316:18df, >>> lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() >>> failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1...

...t;> >>>>> Now thunderbird complains when it starts up, and won't let me confirm >>>>> the security exception. >>>>> >>>>> On the server the following error occurs in the log: >>>>> >>>>> Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no auth >>>>> attempts in 1 secs): user=<>, >>>>> rip=2600:1010:b064:f260:e83e:562d:2316:18df, >>>>> lip=2600:3c01::f03c:91ff:fee4:310c, TLS handshaking: SSL_accept() >>>>> failed: error:14094418:SS...

...7e00::825f:e564:ad53:72fc/64 >> inet6 fe80::a8ad:d312:4ef4:7272/64 >> route6 2a01:7e00::/64 >> >> * more stuff for other interfaces * >> >> -=- >> >> The output of >> >> sysctl -a | grep net.ipv6 : >> >> https://librelamp.com/sysctl.txt >> >> It looks from that like it should not be hiding the real MAC address. >> > > > do nmcli conn show "Wired connection 1" > > the entries of interest are: > > ipv6.ip6-privacy > ipv6.addr-gen-mode > > man nm-settings to get...

On 02/12/2016 10:54 PM, John R Pierce wrote: > On 2/12/2016 11:13 AM, SternData wrote: >> Is there a well-run package repo that has httpd-2.4.17 or mod_http2 (or >> mod_h2)? > > EL7 comes with httpd-2.4... > > # yum list httpd > ... > Installed Packages > httpd.x86_64 2.4.6-40.el7.centos @base Including support for http2? i doubt that. As far as i know,

Hello, My server with CentOS 6.8 just failed PCI scan, so I'm looking into vulnerable packages. PHP 5.3.3 have multiple vulnerabilities, some of them are fixed/patched or have some kind of workaround. But I can't find a way to fix this one. Red Hat state: under investigation. https://access.redhat.com/security/cve/cve-2016-4073 This CVE is 6 months old, and it doesn't look like it

On Sat, 17 Dec 2016, John R Pierce wrote: > On 12/17/2016 9:18 AM, Michael Hennebry wrote: >> vlc.x86_64 2.0.10-1.el6 @rpmfusion-free-updates > > rpmfusion is comatose, that VLC rpm hasn't been updated in a couple years. Does that imply that I should abandon VLC or just rpmfusion? This site: