Gentoo Logo

Jornal Semanal Gentoo: 01 de Dezembro de 2003

Content:

1.  Noticias Gentoo

Resumo

Projeto Documentação Gentoo procura por mais tradutores

O Projeto Documentação Gentoo (GDP) está na procura por mais tradutores com a finalidade de ajudar os esforços de tradução. Como a documentação está sendo ativamente mantida e atualizada, manter as traduções atualizadas é importante mas consome muito tempo se não houver tradutores em número suficiente.

Para melhorar os esforços de tradução, o GDP está procurando por mais tradutores em diversas linguas. Se você está interessado em ajudar na equipe de tradução, por favor contate o lider da tradução.

Lingua Lider Lingua Lider
Polonês albino@onomato.net Alemão Tobias Scherbaum
Holandês Jesper Brodersen Indonésio Erwin
Português Ricardo Loureiro Chinês Tradicional Benny Chuang
Russo Sergey Kuleshov Francês Xavier Neys

Se você está interessado em juntar-se a uma equipe de tradução não listada, ou começar uma equipe de tradução de uma lingua (ainda :) não suportada, por favor contate Sergey Kuleshov.

Praise for Gentoo in Linux Weekly News

distrowatch"the success of gentoo"d.m.d. ljungmark

2.  Featured Developer of the Week

Chris PeBenito


Figure 2.1: Chris PeBenito

Fig. 1: Chris PeBenito

This week, we are featuring Chris PeBenito (pebenito), the lead for the SELinux sub-project for Hardened Gentoo, as well as the lead for the recently re-initialized Embedded Gentoo project. He has been responsible for maintaining the SELinux (Security-Enhanced Linux) userland utilities and patches, sys-kernel/selinux-sources, and SELinux policies. He also manages the SELinux demo machine. Finally, he has recently taken a lead role in re-activating the dormant Embedded Gentoo project and is currently hard at work recruiting help, organizing sub-projects and discussing priorities. Interested parties are invited to hang out on the gentoo-embedded IRC channel and subscribe to the mailing list.

Chris first started using Linux with Slackware in 1997. He later switched to Red Hat, and was considering Sorcerer because it was source-based when he heard about Gentoo's packaging system and decided to try it. After taking note of the noticeably better performance on his P200 MMX server, he was sold. Earlier this year, Chris responded to a request for help from Joshua Brindle(method) by reading and digesting the NSA's white paper on SELinux and then helping to get the packages in order. He was named a developer and handed responsibility for the sub-project. One of the brightest experiences from that has been the SELinux demo server demonstrating its stability during an early slashdotting. He offers a cookie to anyone who can crack (not DoS) it.

Chris usually works on a dual p3-450 workstation, and tests on a pair of SELinux servers: a K6-2/400 and a G3/500 clone. He enjoys listening to and playing music, and has played soprano and bass clarinet for many years. His favorite quote is from the Buddha: "As irrigators lead water where they want, as archers make their arrows straight, as carpenters carve wood, the wise shape their minds"

Chris is currently a Master's candidate and Research Assistant in Computer Engineering at the Illinois Institute of Technology. His primary research and career interests lie in embedded systems and hardware design. He expects to be completing his studies next spring. He describes Gentoo as "polymorphic; from the same portage tree you can get an embedded system, a desktop or a server. What will we come up with next?"

3.  Gentoo Security

GLSA: ethereal

Quote from http://www.ethereal.com/appnotes/enpa-sa-00011.html:

Potential security issues have been discovered in the following protocol dissectors:

  • An improperly formatted GTP MSISDN string could cause a buffer overflow.
  • A malformed ISAKMP or MEGACO packet could make Ethereal or Tethereal crash.
  • The SOCKS dissector was susceptible to a heap overlfow.

Impact:

It may be possible to make Ethereal crash or run arbitrary code by injecting a purposefully malformed packet onto the wire, or by convincing someone to read a malformed packet trace file.

  • Severity: Normal
  • Packages Affected: <0.9.16
  • Rectification: emerge sync; emerge '>=net-analyzer/ethereal-0.9.16'; emerge clean
  • GLSA Announcement

GLSA: glibc

A bug in the getgrouplist function can cause a buffer overflow if the size of the group list is too small to hold all the user's groups. This overflow can cause segmentation faults in user applications. This vulnerability exists only when an administrator has placed a user in a number of groups larger than that expected by an application.

  • Severity: Normal
  • Packages Affected: <=2.2.4
  • Rectification: emerge sync; emerge '>=sys-libs/glibc-2.2.5'; emerge clean
  • GLSA Announcement

GLSA: libnids

There is a bug in the part of libnids code responsible for TCP reassembly. The flaw probably allows remote code execution.

  • Severity: Normal
  • Packages Affected: <=1.17
  • Rectification: emerge sync; emerge '>=net-libs/libnids-1.18'; emerge clean
  • GLSA Announcement

GLSA: phpsysinfo

phpSysInfo contains two vulnerabilities which could allow local files to be read or arbitrary PHP code to be executed, under the privileges of the web server process.

  • Severity: Normal
  • Packages Affected: <=2.1
  • Rectification: emerge sync; emerge '>=dev-php/phpsysinfo-2.1-r1'; emerge clean
  • GLSA Announcement

New Security Bug Reports

The following new security bugs were posted this week:

4.  Heard in the Community

Web Forums

Gnome 2.5 Hits the Ground Running

Sudden flurry of activity at the Desktop Environment section of the Forum. After KDE 3.2, Keith Packard's new X server and other excitements of the past weeks, Gnome friends finally have had an opportunity to retaliate. Gnome 2.5 is being shipped since Saturday, and the corresponding Forum thread is mightily pleased, albeit fiddling with minor issues concerning things that build less well than others... Unofficial ebuilds have been made available through breakmygentoo.net, the portage tree will follow shortly.

gentoo-user

Undelete in Linux

Windows has had various "undelete" software available for years. Once in a a great while, we all wish we had one for our favorite OS. Does it exist? Reod this thread to find out.

gentoo-dev

New USE flag.

With it's continual strive to increase the amount of choice users have in Gentoo it's not suprising that new USE flags are being proposed all the time. Here is the most recent one: accessibility. Check it out.

Web based portage.

Our favorite package maintenence suite has a new frontend in development. Benjamin "beejay" Judas is working on the construction of a new web based frontend for portage. Have a look here and here for the first announcements.

5.  Gentoo International

Japan: 2nd Gentoo Appearance at the Internet Week 2003 in Yokohama

The "BSD/Linux Day" is an all-day event, traditionally embedded in the annual gathering of Internauts in Japan, the Internet Week at Yokohama's Pacifico Conference Centre. In what amounts to a fledgling tradition of its own, Gentoo is going to be represented by GentooJP activists, just like last year. This time Mamoru Komachi will give an introduction to Gentoo Linux during the first session of the day, and on top of the presentation (and the rather interesting conference programme), Gentooists on the Japanese mailing list have been busy organising some apres-speech gathering, possibly with drinks and whatever else one does in Yokohama after dark. This annual Japan Unix Society meeting is going to be held on 2 December, starting at 9:00 until 17:00 hours, and has a price tag of 3000 JPY per person, subject to rebates available for JUS members and students. You may want to send an email to the Japanese Gentoo mailing list to announce your intentions of showing up...

6.  Bugzilla

Summary

Statistics

The Gentoo community uses Bugzilla (bugs.gentoo.org) to record and track bugs, notifications, suggestions and other interactions with the development team. Between 21 November 2003 and 27 November 2003, activity on the site has resulted in:

  • 506 new bugs during this period
  • 268 bugs closed or resolved during this period
  • 18 previously closed bugs were reopened this period

Of the 4248 currently open bugs: 92 are labeled 'blocker', 185 are labeled 'critical', and 314 are labeled 'major'.

Closed Bug Rankings

The developers and teams who have closed the most bugs during this period are:

New Bug Rankings

The developers and teams who have been assigned the most new bugs during this period are:

7.  Tips and Tricks

ANSI Escape Sequences: Colors

This week's tip shows the colors available as ANSI escape sequences. These can be used to beautify terminal prompts, text, or anything else that understands ANSI escape sequences.

ANSI escape sequences are non-printed text that is interpreted to change the format of some text. In this example, we will specifically look at the use of escape sequences to specify colors. In the standard Gentoo /etc/profile, there are some examples of these colors already being used to change the color of parts of the terminal prompt. For example, the pathname appears in blue and parts of the bash prompt show up in red or green depending on whether or not you are root or a normal user.

Non-printable ANSI escape sequences are always enclosed \[\033[ and \]. Colors must be followed by a m. Using the example from /etc/profile, we can see that the color code for green is 32, the code for blue is 34, and the code for red is 31.

Code Listing 7.1: PS1 from /etc/profile

(root user)
export PS1='\[\033[01;31m\]\h \[\033[01;34m\]\W \$ \[\033[00m\]'
                      red               blue
(normal user)
export PS1='\[\033[01;32m\]\u@\h \[\033[01;34m\]\W \$ \[\033[00m\]'
                      green                blue
  

The next part is the 1 preceding the actual color code. This indicates whether or not the color should be bold or not (0 for normal, 1 for bold). So if you wanted a normal green instead of a bold green, you would use 00;32m instead of 01;32m

Note: This does not work with all colors. See the list at the bottom for a list of what's available in bold.

For background colors you would 4x instead of 3x. So to have the background blue instead of the text, you could use 00;44m instead of 01;34m.

Here is a list of colors and their escape sequences.

Code Listing 7.2

    Black      0;30       Dark Gray    1;30
    Red        0;31       Bold Red     1;31
    Green      0;32       Bold Green   1;32
    Yellow     0;33       Bold Yellow  1;33
    Blue       0;34       Bold Blue    1;34 
    Purple     0;35       Bold Purple  1;35
    Cyan       0;36       Bold Cyan    1;36
    Light Gray 0;37       White        1;37
  

Note: ANSI sequence 0;33 is listed as Brown in the BASH-Prompt HOWTO, but it seems more of a mustard yellow. Strictly speaking, the bold version of it is indeed yellow - therefore I've listed it as yellow.

8.  Moves, Adds and Changes

Moves

The following developers recently left the Gentoo team:

  • none this week

Adds

The following developers recently joined the Gentoo Linux team:

  • none this week

Changes

The following developers recently changed roles within the Gentoo Linux project.

  • none this week

9.  Contribua com o JSG

Interessado em contribuir com o Jornal Semanal Gentoo? Nos envie um email.

10.  Retorno ao JSG

Por favor envie um email (em inglês) para feedback com sua opinião e ajude a fazer este JORNAL melhor.

11.  Informações sobre Inscrição

Para assinar o Jornal Semanal Gentoo, versão em inglês somente, envie um email em branco para Gentoo-gwn-subscribe@Gentoo.org.

Para cancelar a assinatura do Jornal Semanal Gentoo, envie um email em branco para Gentoo-gwn-unsubscribe@Gentoo.org a partir do endereço de email em que está inscrito.

12.  Outras línguas

O Jornal Semanal Gentoo também está disponível nas seguintes línguas:



Print

Page updated 01 Dezembro 2003

Summary: Este é o Jornal Semanal Gentoo da semana de 01 de Dezembro de 2003.

Yuji Carlos Kosugi
Editor

AJ Armstrong
Colaborador

Brian Downey
Colaborador

Luke Giuliani
Colaborador

Shawn Jonnet
Colaborador

Michael Kohl
Colaborador

Kurt Lieber
Colaborador

Rafael Cordones Marcos
Colaborador

David Narayan
Colaborador

Gerald J Normandin Jr.
Colaborador

Ulrich Plate
Colaborador

Mathy Vanvoorden
Tradução Holandês

Hendrik Eeckhaut
Tradução Holandês

Jorn Eilander
Tradução Holandês

Bernard Kerckenaere
Tradução Holandês

Peter ter Borg
Tradução Holandês

Jochen Maes
Tradução Holandês

Roderick Goessen
Tradução Holandês

Gerard van den Berg
Tradução Holandês

Matthieu Montaudouin
Tradução Francês

Xavier Neys
Tradução Francês

Martin Prieto
Tradução Francês

Antoine Raillon
Tradução Francês

Sebastien Cevey
Tradução Francês

Jean-Christophe Choisy
Tradução Francês

Thomas Raschbacher
Tradução Alemão

Steffen Lassahn
Tradução Alemão

Matthias F. Brandstetter
Tradução Alemão

Lukas Domagala
Tradução Alemão

Tobias Scherbaum
Tradução Alemão

Daniel Gerholdt
Tradução Alemão

Marc Herren
Tradução Alemão

Tobias Matzat
Tradução Alemão

Marco Mascherpa
Tradução Italiano

Claudio Merloni
Tradução Italiano

Christian Apolloni
Tradução Italiano

Stefano Lucidi
Tradução Italiano

Yoshiaki Hagihara
Tradução Japonês

Katsuyuki Konno
Tradução Japonês

Yuji Carlos Kosugi
Tradução Japonês

Yasunori Fukudome
Tradução Japonês

Takashi Ota
Tradução Japonês

Radoslaw Janeczko
Tradução Polonês

Lukasz Strzygowski
Tradução Polonês

Michal Drobek
Tradução Polonês

Adam Lyjak
Tradução Polonês

Krzysztof Klimonda
Tradução Polonês

Atila "Jedi" Bohlke Vasconcelos
Tradução Português do Brasil

Eduardo Belloti
Tradução Português do Brasil

João Rafael Moraes Nicola
Tradução Português do Brasil

Marcelo Gonçalves de Azambuja
Tradução Português do Brasil

Otavio Rodolfo Piske
Tradução Português do Brasil

Pablo N. Hess -- NatuNobilis
Tradução Português do Brasil

Pedro de Medeiros
Tradução Português do Brasil

Ventura Barbeiro
Tradução Português do Brasil

Bruno Ferreira
Tradução Português de Portugal

Gustavo Felisberto
Tradução Português de Portugal

José Costa
Tradução Português de Portugal

Luis Medina
Tradução Português de Portugal

Ricardo Loureiro
Tradução Português de Portugal

Sergey Galkin
Tradução Russo

Sergey Kuleshov
Tradução Russo

Alex Spirin
Tradução Russo

Dmitry Suzdalev
Tradução Russo

Anton Vorovatov
Tradução Russo

Denis Zaletov
Tradução Russo

Lanark
Tradução Espanhol

Fernando J. Pereda
Tradução Espanhol

Lluis Peinado Cifuentes
Tradução Espanhol

Zephryn Xirdal T
Tradução Espanhol

Guillermo Juarez
Tradução Espanhol

Jesús García Crespo
Tradução Espanhol

Carlos Castillo
Tradução Espanhol

Julio Castillo
Tradução Espanhol

Sergio Gómez
Tradução Espanhol

Aycan Irican
Tradução Turco

Bugra Cakir
Tradução Turco

Cagil Seker
Tradução Turco

Emre Kazdagli
Tradução Turco

Evrim Ulu
Tradução Turco

Gursel Kaynak
Tradução Turco

Donate to support our development efforts.

Copyright 2001-2014 Gentoo Foundation, Inc. Questions, Comments? Contact us.