From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:04 BST 1999 Article: 6 of chiark.mail.userv.announce Date: Thu, 18 Sep 97 13:40 BST From: userv-maint@chiark.greenend.org.uk (Ian Jackson) Message-ID: Newsgroups: chiark.mail.userv.announce Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Received-001: by chiark.greenend.org.uk id m0xBftA-0004o2a (Debian /\oo/\ Smail3.1.29.1 #29.37); Thu, 18 Sep 97 13:40 BST Received-002: by chiark.greenend.org.uk id m0xBft9-0004o0C (Debian /\oo/\ Smail3.1.29.1 #29.37); Thu, 18 Sep 97 13:40 BST Return-Path: Sender: owner-userv-announce Subject: userv 0.55 prerelease available for external review To: userv-announce@chiark.greenend.org.uk X-List: userv-announce X-Original-From_: owner-userv-announce Thu Sep 18 13:40:56 1997 Lines: 13 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:6 The first version distributed version of userv, 0.55, is now available. Please see , and download it and comment. Portability is probably not yet very good. Ian. -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:06 BST 1999 Article: 7 of chiark.mail.userv.announce Date: Thu, 18 Sep 97 13:40 BST From: userv-maint@chiark.greenend.org.uk (Ian Jackson) Message-ID: Newsgroups: chiark.mail.userv.announce Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Received-001: by chiark.greenend.org.uk id m0xD8jA-0004oEa (Debian /\oo/\ Smail3.1.29.1 #29.37); Mon, 22 Sep 97 14:40 BST Received-002: by chiark.greenend.org.uk id m0xD8j8-0004o9C (Debian /\oo/\ Smail3.1.29.1 #29.37); Mon, 22 Sep 97 14:40 BST Return-Path: Sender: owner-userv-announce Subject: userv 0.55.1 available (minor bugfixes) and Debian version To: userv-announce@chiark.greenend.org.uk X-List: userv-announce X-Original-From_: owner-userv-announce Mon Sep 22 14:40:41 1997 Lines: 14 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:7 I've fixed a few Makefile bugs in 0.55 and released 0.55.1. There is also a Debian version now available, 0.55.1-1. It can be found at . The Debian version leaves a spurious copy of uservd lying about after you upgrade. This is annoying but not harmful. Ian. -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:06 BST 1999 Article: 8 of chiark.mail.userv.announce Date: Mon, 6 Oct 97 18:10 BST From: userv-maint@chiark.greenend.org.uk (Ian Jackson) Message-ID: Newsgroups: chiark.mail.userv.announce Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Received-001: by chiark.greenend.org.uk id m0xIGfb-0004nra (Debian /\oo/\ Smail3.1.29.1 #29.37); Mon, 6 Oct 97 18:10 BST Received-002: by chiark.greenend.org.uk id m0xIGfU-0004noC (Debian /\oo/\ Smail3.1.29.1 #29.37); Mon, 6 Oct 97 18:10 BST Return-Path: Sender: owner-userv-announce Subject: userv 0.55.2: portability fixes To: userv-announce@chiark.greenend.org.uk X-List: userv-announce X-Original-From_: owner-userv-announce Mon Oct 6 18:10:13 1997 Lines: 20 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:8 userv (0.55.2); urgency=low * Added info about WWW page, mailing lists and bug reporting to README. * clean targets except realclean don't remove spec.html, spec.ps, lexer.[lc], tokens.h, overview.ps. New totalclean target for removing configure and config.h.in. * Added and to lexer.l.m4. * instead of ; %d instead of %ld for WEXITSTATUS in overlord.c; PIPEMAXLEN etc. #defines include cast to int to avoid problems with sizeof and size_t; EPROTO missing workaround. * Note about SIG_IGN and `function declaration isn't a prototype' added to INSTALL file in new PROBLEMS section. -- Ian Jackson Sun, 5 Oct 1997 17:55:32 +0100 -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:06 BST 1999 Article: 9 of chiark.mail.userv.announce Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii Date: Sat, 11 Oct 1997 14:23:19 GMT From: userv-maint@chiark.greenend.org.uk (Ian Jackson) MIME-Version: 1.0 Message-ID: Newsgroups: chiark.mail.userv.announce Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Received-001: by chiark.greenend.org.uk id m0xK2Ri-0004oNa (Debian /\oo/\ Smail3.1.29.1 #29.37); Sat, 11 Oct 97 15:23 BST Received-002: by chiark.greenend.org.uk id m0xK2Lk-0004oMC (Debian /\oo/\ Smail3.1.29.1 #29.37); Sat, 11 Oct 97 15:17 BST Received-003: from ian by davenant.greenend.org.uk with local (Exim 1.61 #1) id 0xK2K9-0001VQ-00 (Debian); Sat, 11 Oct 1997 15:15:21 +0100 Return-Path: Sender: owner-userv-announce Subject: userv 0.56 (+Debian 0.56-1): disconnected daemons die, misc. cleanups To: userv-announce@chiark.greenend.org.uk X-List: userv-announce X-Mailer: VM 6.28 under Emacs 19.34.1 X-Original-Date: Sat, 11 Oct 1997 15:15:22 +0100 X-Original-From_: owner-userv-announce Sat Oct 11 15:23:10 1997 Lines: 52 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:9 userv (0.56); urgency=medium * Server now checks itself every hour to see if its socket has been stolen, and exits if it has. * Client only retries connect(2) on EINTR (and does so silently). * All of even master server's syslog messages have pid. * Don't delete spec.sgml.in in clean targets. -- Ian Jackson Sat, 11 Oct 1997 14:38:25 +0100 The Debian source package now uses the unmodified `upstream' source, so you will need dpkg-dev 1.4.0.19 or later to unpack it. Ian. -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Sat, 11 Oct 1997 14:13:22 +0100 Source: userv Binary: userv Architecture: source i386 Version: 0.56-1 Distribution: experimental Urgency: low Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.56-1) experimental; urgency=low . * Upgraded to new upstream version. Files: 85011e42d971e5e30ca9fce24306ab16 617 admin experimental userv_0.56-1.dsc b64ae6d1d832c08ebd0b3d84063df202 202287 admin experimental userv_0.56.orig.tar.gz 6973b32c344623dbe8a150fca01b39b7 3952 admin experimental userv_0.56-1.diff.gz 16cfb649e02cd9a3254b6325c7d48174 63156 admin experimental userv_0.56-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBND+IOsMWjroj9a3bAQFnpAP+JogbB1gMUJO2HOJuuXILD4PM1AtEbQ5G Xn3baQCg0ek9AyJLUaSCKckCJmKM2q905Cs3eTASi9TdklOFbmfRMAs7Qxsbmmiv erK6U3+clYZTUZHJPTJQ/HZGvgMBRnsGcYT4cd2yaI9e+Kr3QnPDew78vyV156Pc V6SOYm+F9Ys= =weDD -----END PGP SIGNATURE----- -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:06 BST 1999 Article: 10 of chiark.mail.userv.announce Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii Date: Sat, 11 Oct 1997 14:43:14 GMT From: userv-maint@chiark.greenend.org.uk (Ian Jackson) MIME-Version: 1.0 Message-ID: Newsgroups: chiark.mail.userv.announce Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Received-001: by chiark.greenend.org.uk id m0xK2l2-0004oMa (Debian /\oo/\ Smail3.1.29.1 #29.37); Sat, 11 Oct 97 15:43 BST Received-002: by chiark.greenend.org.uk id m0xK2iU-0004oNC (Debian /\oo/\ Smail3.1.29.1 #29.37); Sat, 11 Oct 97 15:40 BST Received-003: from ian by davenant.greenend.org.uk with local (Exim 1.61 #1) id 0xK2hQ-0001f3-00 (Debian); Sat, 11 Oct 1997 15:39:25 +0100 Return-Path: Sender: owner-userv-announce Subject: Debian userv 0.56-1 re-uploaded To: userv-announce@chiark.greenend.org.uk (Ian Jackson) X-List: userv-announce X-Mailer: VM 6.28 under Emacs 19.34.1 X-Original-Date: Sat, 11 Oct 1997 15:39:25 +0100 X-Original-From_: owner-userv-announce Sat Oct 11 15:43:09 1997 Lines: 44 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:10 The Debian .changes file I just posted was for a release build with a half-baked copy of userv_0.56.orig.tar.gz (this is the same file as userv-0.56.tar.gz). Here is the .changes file for the new version, which I'm just uploading. Ian. -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Sat, 11 Oct 1997 14:13:22 +0100 Source: userv Binary: userv Architecture: source i386 Version: 0.56-1 Distribution: experimental Urgency: low Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.56-1) experimental; urgency=low . * Upgraded to new upstream version. Files: 7d688a5a56ab34164dc5572a2aff9330 617 admin experimental userv_0.56-1.dsc 0f5c8610ac15b8ad435bf8460c75f709 202304 admin experimental userv_0.56.orig.tar.gz a183f6694f9b33f210f14fc6eca4b9b2 3327 admin experimental userv_0.56-1.diff.gz b82eac2287dc7e4e92a29b91b025bcc9 63156 admin experimental userv_0.56-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBND+NgMMWjroj9a3bAQEahQQA0n5F7g4ueq/YbY5vklzmo2SYBgHB7p+f dSZHPG1lo6q473jp2Ndf4Irq4OY0aMLadRBTf5aQ8465Fj007aIh5nwntnHYWP45 PEC7Wx72FYfcdxlpjfUgP5ie3wXf0/BOhoJRxZWnimob4aSiX6rx+L/EyOsJlGFm YLDzYl0s2Uo= =ekVc -----END PGP SIGNATURE----- -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:06 BST 1999 Article: 11 of chiark.mail.userv.announce Date: Thu, 23 Oct 97 11:59 BST From: userv-maint@chiark.greenend.org.uk (Ian Jackson) Message-ID: Newsgroups: chiark.mail.userv.announce Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Received-001: by chiark.greenend.org.uk id m0xOKym-0004nza (Debian /\oo/\ Smail3.1.29.1 #29.37); Thu, 23 Oct 97 11:59 BST Received-002: by chiark.greenend.org.uk id m0xOKyi-0004nsC (Debian /\oo/\ Smail3.1.29.1 #29.37); Thu, 23 Oct 97 11:59 BST Return-Path: Sender: owner-userv-announce Subject: userv 0.57 - root services work, other improvements To: userv-announce@chiark.greenend.org.uk (Ian Jackson) X-List: userv-announce X-Original-From_: owner-userv-announce Thu Oct 23 11:59:04 1997 Lines: 57 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:11 (The main changelog is now available on the WWW page.) userv (0.57); urgency=high * Services provided by root work ! * uservd can now go into background itself (-daemon option). * spec now has default syslog facility for rcfile messages as `user'. * Better prioritisation of syslog messages. * Startup error messages now go to stderr instead. * SIGTERM and SIGINT now produce a syslog message. * Version number has VEREXT component, settable via make args &c. * New sections in INSTALL about exit statuses and -daemon. -- Ian Jackson Tue, 14 Oct 1997 02:04:18 +0100 -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Tue, 14 Oct 1997 02:22:22 +0100 Source: userv Binary: userv Architecture: source i386 Version: 0.57-1 Distribution: unstable Urgency: high Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.57-1) unstable; urgency=high . * Upgraded to new upstream version; fixed bug with root-provided services. * Uses new -daemon option in init.d script. * Sets VEREXT during build to set version number. Files: e5df4fc66280ce9a15abf655a83ad4cc 617 admin experimental userv_0.57-1.dsc 025794e1629474105130f18a29415aa9 204983 admin experimental userv_0.57.orig.tar.gz e2d23c0979ac256dbf861806db1512b7 3498 admin experimental userv_0.57-1.diff.gz 2952a477c2c451884443bd6637de65dc 64434 admin experimental userv_0.57-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBNELQOcMWjroj9a3bAQEZpQP9Ep1TdUivDpgo6Alo9UKITyxrYcl3ZyyU o08EuUrdplrAQDYwPqZ+lqtyXlQczrmrFnGfkOsrtGJEnyPcDD6U/U71PT2rqryf OmHdXu1SKacIouGsONtMJI4b4ZY4WYTTplgf8gI/SHrUPJM/ybiF8a74hgHQ1MbK 6mskQkqNvJg= =0K3F -----END PGP SIGNATURE----- -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:07 BST 1999 Article: 12 of chiark.mail.userv.announce Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii Date: Thu, 29 Jan 1998 00:51:14 GMT From: userv-maint@chiark.greenend.org.uk (Ian Jackson) MIME-Version: 1.0 Message-ID: Newsgroups: chiark.mail.userv.announce Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Received-001: by chiark.greenend.org.uk id m0xxiBw-0007zLa (Debian /\oo/\ Smail3.1.29.1 #29.37); Thu, 29 Jan 98 00:50 GMT Received-002: by chiark.greenend.org.uk id m0xxhlY-0007yKC (Debian /\oo/\ Smail3.1.29.1 #29.37); Thu, 29 Jan 98 00:23 GMT Received-003: from anarres.greenend.org.uk [172.18.45.2] (mail) by davenant.greenend.org.uk with smtp (Exim 1.61 #1) id 0xxhlP-0005ss-00 (Debian); Thu, 29 Jan 1998 00:23:27 +0000 Received-004: from ian by anarres.greenend.org.uk with local (Exim 1.61 #1) id 0xxhkm-0000UV-00 (Debian); Thu, 29 Jan 1998 00:22:48 +0000 Return-Path: Sender: owner-userv-announce Subject: userv 0.58 - important security fix To: userv-announce@chiark.greenend.org.uk (Ian Jackson) X-List: userv-announce X-Original-Date: Thu, 29 Jan 1998 00:22:48 +0000 X-Original-From_: owner-userv-announce Thu Jan 29 00:50:53 1998 Lines: 63 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:12 As Richard Kettlewell pointed out, the userv daemon failed to set the main gid when invoking services (!) I believe this was caused by my misreading the manpage for initgroups(3), and by my test procedures being run in an environment where the server was being run as root but with my own primary gid as its gid (so that I didn't notice). Sorry ! (And thanks to RJK.) The version below is available in the usual place (see URL below), and I've just submitted it for inclusion in Debian as an `extra' package. Ian. userv (0.58); urgency=high * Fixed failure to set gid when invoking service !! * Fixed failure to set fd value in et_closereadfd messages from client. * Save filename string in parse_file for error reporting (in case it is overwritten by parsing code). * Fixed obscure race in process.c:getevent (et_closereadfd and hold fds). * `builtin version' service had error message and errno string reserve values exchanged. -- Ian Jackson Thu, 29 Jan 1998 00:00:22 +0000 -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Thu, 29 Jan 1998 00:03:52 +0000 Source: userv Binary: userv Architecture: source i386 Version: 0.58-1 Distribution: unstable Urgency: low Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.58-1) unstable; urgency=low . * Upgraded to new upstream version; major security fix, error handling fixes. Files: 2982aadb34fd149e62cf2416ec1ca7ab 554 admin experimental userv_0.58-1.dsc 5328b65f14a208b32b60eb79e5f73779 194706 admin experimental userv_0.58-1.tar.gz 6eac36bc407223aa4424627f319edb73 64816 admin experimental userv_0.58-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBNM/H4cMWjroj9a3bAQGFjAP/ZFMXsfC2qHs4egfcdnZXh3qNGZJsSINs YqRLaPg+wyGApdY9jpZxl1o/xQN/MvjXqcyW8MLPopiwbpN4XhULDg3jbB4djP1X TFvIayyIRLSIYNZLVES7RhQ+k8YWeAtLp+DKMweA7RRkp4Q1gIHLltaTOMam+o2l +FFe1TvKAUM= =mzE1 -----END PGP SIGNATURE----- -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From userv-maint@chiark.greenend.org.uk Tue Apr 20 15:56:07 BST 1999 Article: 13 of chiark.mail.userv.announce Sender: news X-List: userv-announce Content-Transfer-Encoding: 7bit To: userv-announce@chiark.greenend.org.uk (Ian Jackson) X-Original-Date: Sun, 31 Jan 1999 00:06:15 +0000 (GMT) Content-Type: text/plain; charset=us-ascii X-Received: from news by chiark.greenend.org.uk with local (Exim 2.02 #1) id 106kP4-0006pV-00 (Debian); Sun, 31 Jan 1999 00:06:18 +0000 X-Received: from majordom by chiark.greenend.org.uk with local (Exim 2.02 #1) id 106kP2-0006pQ-00 (Debian); Sun, 31 Jan 1999 00:06:16 +0000 X-Received: from ian by chiark.greenend.org.uk with local (Exim 2.02 #1) id 106kP1-0006pG-00 (Debian); Sun, 31 Jan 1999 00:06:15 +0000 Path: ewrotcd!mail-to-news!not-for-mail Precedence: bulk Subject: userv 0.60.2 - bugfixes, portability fixes, Debian files included From: userv-maint@chiark.greenend.org.uk (Ian Jackson) Return-path: MIME-Version: 1.0 Newsgroups: chiark.mail.userv.announce Date: Sun, 31 Jan 1999 00:06:18 GMT Message-ID: <14003.40567.796353.22442@chiark.greenend.org.uk> X-Mailer: VM 6.47 under Emacs 19.34.1 Lines: 77 Xref: news.chiark.greenend.org.uk chiark.mail.userv.announce:13 This fixes some longstanding bugs and portability problems. Notably, double-quoted strings now work, and some problems with Linux libc6 portability are resolved. Also, the Debian package building files are now included in the distribution. Non-Debian people can ignore them. Ian. -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Sat, 30 Jan 1999 23:38:17 +0000 Source: userv Binary: userv Architecture: source i386 Version: 0.60.2 Distribution: frozen unstable Urgency: high Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.60.2) frozen unstable; urgency=high . * Fixed failure to save pathnames in a couple of places in parser.c. Without this, include-directory would often try to open a garbage filename. This could be a security problem in certain cases where user-owned config files were included from sysadmin-defined files, and the sysadmin wants to control how a user provides services. . * Fix "-quoted strings, which previously never worked at all. . * Fixed spurious failure with `Interrupted system call' on systems where fread can fail due to read giving EINTR (blech!) . * Fixed race when fd closed at startup, which could cause `system call failure: kill cat for : No such process'. . * Fixed spurious assertion failure if user's home directory not accessible. * Fixed a couple of memory and fd leaks in error exits from include-directory and include-lookup in parser.c. . * Debian and `upstream' version integrated; Changelogs merged. . * Provided `system.default' file checks /etc/userv/services.d and /etc/userv/default.d; system.override runs /etc/userv/override.d. . * Add to servexec.c. * Add -D_GNU_SOURCE to CFLAGS in configure.in. * Braces added in client.c to prevent GCC `ambiguous else' warning. . * Reran autoconf. * autoconf-generated files included in CVS. . * Debian package description mentions use by system admin. Files: 03a5c3b7079c27854b9a62f3326155c7 553 admin extra userv_0.60.2.dsc 0d89e09832c56d6f695308ba2dc662d5 93392 admin extra userv_0.60.2.tar.gz f16bd14c5aa50981435ee44f0d1f9553 66288 admin extra userv_0.60.2_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBNrOdA8MWjroj9a3bAQHy7AQAnSRAt9wt8KlBEDiE2MRNz89Wo4Tt23lU w2UNaXJetDLpHIdhjv/nBpdRoJzpT0mD8pMsunrwU1QKK4OXDKUKvbiIN4pjVrCQ XbOlGgPgF9iG8wqjCgh27EURA1LI5VdW+RY7XGAuY6soqDLGqF+qqWMZJvtuCFO8 GirGhM6YqBY= =gL1A -----END PGP SIGNATURE----- -- To remove yourself from this mailing list, send the word UNSUBSCRIBE to userv-announce-REQUEST@chiark.greenend.org.uk. Info is at: . From owner-mailman@chiark.greenend.org.uk Sun Apr 18 21:09:19 1999 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from 371a3bde.90ef1.553.0.bsmtp.davenant.greenend.org.uk by chiark.greenend.org.uk with local-bsmtp (Exim 2.02 #1) id 10YxsO-0000MB-00 (Debian); Sun, 18 Apr 1999 21:09:12 +0100 Received: from anarres.relativity.greenend.org.uk [172.18.45.2] (mail) by davenant.greenend.org.uk with esmtp (Exim 1.92 #1) id 10YxqB-0003I8-00 (Debian); Sun, 18 Apr 1999 21:06:55 +0100 Received: from ian by anarres.relativity.greenend.org.uk with local (Exim 2.02 #8) id 10YxqA-00032q-00 (Debian); Sun, 18 Apr 1999 21:06:54 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14106.15197.182872.555489@anarres.relativity.greenend.org.uk> Date: Sun, 18 Apr 1999 21:06:53 +0100 (BST) From: userv-maint@chiark.greenend.org.uk (Ian Jackson) To: userv-announce@chiark.greenend.org.uk, userv-discuss@chiark.greenend.org.uk Subject: Change of mailing list software on userv lists X-Mailer: VM 6.47 under Emacs 19.34.1 Sender: Ian Jackson I've switched from Majordomo to Mailman for the userv mailing lists. You shouldn't notice much difference in normal operation. If you want to subscribe or unsubscribe, go to the Mailman list management page on chiark, http://www.chiark.greenend.org.uk/mailman/listinfo I've also created a new userv-bugreports list, where people not subscribed to userv-discuss will be encouraged to send their bug reports. Feel free to subscribe (but subscribers to userv-discuss are encouraged to continue to send bug reports there). Thanks, Ian. From owner-mailman@chiark.greenend.org.uk Sun Apr 18 21:39:28 1999 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from 371a42f8.e4408.b50.0.bsmtp.davenant.greenend.org.uk by chiark.greenend.org.uk with local-bsmtp (Exim 2.02 #1) id 10YyLg-0000ku-00 (Debian); Sun, 18 Apr 1999 21:39:28 +0100 Received: from anarres.relativity.greenend.org.uk [172.18.45.2] (mail) by davenant.greenend.org.uk with esmtp (Exim 1.92 #1) id 10YyKo-0003R4-00 (Debian); Sun, 18 Apr 1999 21:38:34 +0100 Received: from ian by anarres.relativity.greenend.org.uk with local (Exim 2.02 #8) id 10YyKm-0003Xo-00 (Debian); Sun, 18 Apr 1999 21:38:32 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14106.17096.479069.731192@anarres.relativity.greenend.org.uk> Date: Sun, 18 Apr 1999 21:38:32 +0100 (BST) From: userv-maint@chiark.greenend.org.uk (Ian Jackson) To: userv-announce@chiark.greenend.org.uk Subject: userv 0.62 - bug and portability fixes X-Mailer: VM 6.47 under Emacs 19.34.1 Sender: Ian Jackson This release announcement covers two subsequent releases, so I've included both changes files. Thanks to those who suggested changes. -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Sun, 18 Apr 1999 20:08:12 +0100 Source: userv Binary: userv Architecture: source i386 Version: 0.62 Distribution: unstable Urgency: low Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.62) unstable; urgency=low . * New builtin service `help' lists builtin services. . INSTALL improvements: * Document locations of required programs. * Sort-of document debugging version. . Portability fixes for: * md5sum with extra `-'. * -lsocket required for socket(). * missing `LOG_AUTHPRIV'. * `logname' name clash. * missing setenv() (synthesize using putenv). * various required #include's were omitted. * install rule in Makefile `if ! test ...' changed to `if test ! ...' . Build arrangements changed (new GNU coding standards targets etc): * m4 and flex output now shipped. * `dist' target in Makefile. * Manuals in CVS and shipped pre-formatted. . * Reran autoconf/autoheader, latest version. * Updated email address to ian@davenant.greenend.org.uk throughout. Files: 8b494670f2115d94cb68542c407f323b 552 admin extra userv_0.62.dsc cb476e5d58365e6da9c51e0150ff224c 212979 admin extra userv_0.62.tar.gz 247560d593179db667bb6ced861013e3 66902 admin extra userv_0.62_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBNxo/28MWjroj9a3bAQFWHAP9GtALxJblov4oYD/C7DGiSZGfC1x32jow lSbG5I9RU6FwP91TP+9PX+DmXrPMCygdQfP4/fUheFiw5lkzlXtqfZNcm4rRCbmn Q7qXZzuEQYefuSXS63uKqsRqc3DPZpMZJhgQjmkFIZSAnL2g1T4KRJk7lVPgFc1T CtMsNLaebwg= =UKoX -----END PGP SIGNATURE----- -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Wed, 3 Feb 1999 22:24:33 +0000 Source: userv Binary: userv Architecture: source i386 Version: 0.60.3 Distribution: frozen unstable Urgency: medium Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.60.3) frozen unstable; urgency=medium . * Fixed misdequoting of \ in "-quoted strings. * Removed -Werror by default. (Bug#32758, Bug#32747) Files: c228b0988a21ad95375c72dc5104d0ed 553 admin extra userv_0.60.3.dsc d1bb962f31d9a8fc79fbe31c85ad7f74 93506 admin extra userv_0.60.3.tar.gz 097938b02295111d029bd15ba191aae4 66382 admin extra userv_0.60.3_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBNrjNV8MWjroj9a3bAQGeGwP8CLWtscXUn165Xp6MQpUcbf8n8/g5nhgv HzV60uy5TC+GC0udXo5CjyJq9rXEMga7Bg1QHoLMDRYPSa1o8qTpHHWSyCENHTsl C2rQ2vgz+iPZsZk1okgThVLINu8yF/66C77UNwS8RUNCInEFmB3p+UKeSgABzWmX y1Ke3s215FA= =dqoo -----END PGP SIGNATURE----- From owner-mailman@chiark.greenend.org.uk Mon Jun 21 00:35:28 1999 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from 376d7aac.2ab54.63cb.0.bsmtp.davenant.greenend.org.uk by chiark.greenend.org.uk with local-bsmtp (Exim 2.02 #1) id 10vr7Y-0006eK-00 (Debian); Mon, 21 Jun 1999 00:35:28 +0100 Received: from anarres.relativity.greenend.org.uk [172.18.45.2] (mail) by davenant.greenend.org.uk with esmtp (Exim 2.125 #2) id 10vmHl-0000G6-00 (Debian); Sun, 20 Jun 1999 19:25:41 +0100 Received: from ian by anarres.relativity.greenend.org.uk with local (Exim 2.125 #2) id 10vmHl-0001eM-00 (Debian); Sun, 20 Jun 1999 19:25:41 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14189.12837.477036.902648@anarres.relativity.greenend.org.uk> Date: Sun, 20 Jun 1999 19:25:41 +0100 (BST) From: userv-maint@chiark.greenend.org.uk (Ian Jackson) To: userv-announce@chiark.greenend.org.uk Subject: userv 0.64.1 - bug and portability fixes X-Mailer: VM 6.62 under Emacs 19.34.1 Sender: Ian Jackson I think userv is quite stable now, and I'm considering relabelling this 1.0 after a while if I don't get significant problem reports. -----BEGIN PGP SIGNED MESSAGE----- Format: 1.5 Date: Sun, 20 Jun 1999 19:13:42 +0100 Source: userv Binary: userv Architecture: source i386 Version: 0.64.1 Distribution: unstable Urgency: low Maintainer: Ian Jackson Description: userv - `user services' - program call across trust boundaries Changes: userv (0.64.1) unstable; urgency=low . * New "shutdown" builtin service for terminating uservd. * Spec. document shows subsections in TOC. . * setenv emulation using putenv works properly (previously you would get wrong environment variable settings). (Thanks to Ben Harris.) * Makefile bug fixed (tokens.h would sometimes not be rebuilt). . * Regenerated formatted documentation (spec.ps, spec.html). Files: d387033cf82fe9d0269efe1e56de5952 556 admin extra userv_0.64.1.dsc dad7c6676065d72f659389f119c7deb3 214101 admin extra userv_0.64.1.tar.gz 0b602933c732c223123ecf02de95eab3 67294 admin extra userv_0.64.1_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBN20v08MWjroj9a3bAQGSTgP/RqrY3YzIbDoSRKHewcqdlRafgErNm/RW iDtQG5KwWgSyiMj7vWm0Ddg9sJcc5vhZKubiaw6pDX/qmJTiYLo8VlidrDwffnrs PQ4iBL4xnnWKrll3JWR7cuZyBoBpth/uE/uZP/zYPFOwQIWOV1XT5NbmHOQKQ4xs +qhUe2if99o= =kdrM -----END PGP SIGNATURE----- From owner-mailman@chiark.greenend.org.uk Tue Nov 09 23:59:58 1999 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from 3828b578.340f3.5ddd.0.bsmtp.davenant.greenend.org.uk by chiark.greenend.org.uk with local-bsmtp (Exim 2.05 #1) id 11lLB8-0006Fo-00 (Debian); Tue, 9 Nov 1999 23:59:58 +0000 Received: from ian by davenant.greenend.org.uk with local (Exim 2.125 #2) id 11lLAd-00023m-00 (Debian); Tue, 9 Nov 1999 23:59:27 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14376.46431.858661.68180@davenant.relativity.greenend.org.uk> Date: Tue, 9 Nov 1999 23:59:27 +0000 (GMT) From: userv-maint@chiark.greenend.org.uk (Ian Jackson) To: userv-announce@chiark.greenend.org.uk Subject: userv 0.95.0 + userv-utils 0.1 + CVS repository X-Mailer: VM 6.62 under Emacs 19.34.1 Sender: Ian Jackson -----BEGIN PGP SIGNED MESSAGE----- GNU userv 0.95.0 BETA is now released - ----------------------------------- userv (pronounced `you-serve') is, in the words of the specification, a Unix system facility to allow one program to invoke another when only limited trust exists between them. This is a pre-1.0 release of userv. If no problems are found with it then I plan to release userv 1.0 within the next few weeks. userv-utils 0.1 released - ---------------------- There is also a new package now, called userv-utils. It contains a collection of miscellaneous userv services, which can serve as examples and programs in their own right. The documentation, and probably code quality, leave a lot to be desired. I'd appreciate it if userv afficionados would take a look at userv-utils to see what they think of it. If you have been provided with a copy of one of the things in userv-utils via a `back channel', and have modified it, please let me know (and preferably send me a diff or a copy of your version), as I might want to fold your changes in. Contributions of documentation, installation instructions, improvements, etc, for userv-utils would be very welcome. CVS repository - ------------ The CVS repository in which I develop userv and userv-utils is now publicly available. It is mirrored, approximately weekly, to rsync.chiark.greenend.org.uk:ftp/users/ian/cvs-pub/userv rsync.chiark.greenend.org.uk:ftp/users/ian/cvs-pub/userv-utils (You can use ftp to ftp.chiark.greenend.org.uk:/pub/users/ian first to find your way around, but please do not mirror these directories with FTP, because the FTP protocol is bad for processing CVS trees.) You can browse userv's CVS with cvsweb, at http://www.chiark.greenend.org.uk/ucgi/~ijackson/cvsweb/userv/ http://www.chiark.greenend.org.uk/ucgi/~ijackson/cvsweb/userv-utils/ Administrivia - ----------- As ever, if you have queries, please join the userv-discuss mailing list in preference to mailing the author. Thank you. MD5 checksums: 32f1519bed50aa93d474b73ee094b24f userv-0.95.0.tar.gz 9bd3a40cd7812e7ae38a9c968fbf1636 userv-0.65.2-0.95.0.diff.gz cbf2b383b91499b78cb4ec87f577a79e userv-utils-0.1.tar.gz Changes to userv since last version (0.65.2 BETA): * Count \-continued lines properly in error message line numbers. * Fix lexing bugs with "-quoted strings and \-continuation. * Fix interpretation of \n etc. in "-quoted strings. * Fix bug which ignored erroneous read/write after ignore-fd/reject-fd. -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBOCi1UMMWjroj9a3bAQGqWgQA4TmoYHG+aRxYA1QPvrp0KailUXD+F7oQ Q67W+Eaj7Sgx+ifTEJsnitHhEI5+cXFF5/HhRbu3fvRKdKs318yCtX7v7sgfG1HP 9LuN2itLG4o4gbfLCLkxtlN8SRdPGeOHb3lRH0GAdiMHurn4z7BbwmDKRacAEIys Wh+neOUTZmI= =mtCP -----END PGP SIGNATURE----- From owner-mailman@chiark.greenend.org.uk Mon Mar 06 19:56:49 2000 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from 38c40d78.38da7.1b83.1.bsmtp.davenant.greenend.org.uk by chiark.greenend.org.uk with local-bsmtp (Exim 2.05 #1) id 12S3cX-0001qo-00 (Debian); Mon, 6 Mar 2000 19:56:49 +0000 Received: from ian by davenant.greenend.org.uk with local (Exim 2.125 #2) id 12S3b4-0006Tm-00 (Debian); Mon, 6 Mar 2000 19:55:18 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14532.3366.420206.807660@davenant.relativity.greenend.org.uk> Date: Mon, 6 Mar 2000 19:55:18 +0000 (GMT) From: userv-maint@chiark.greenend.org.uk (Ian Jackson) To: userv-announce@chiark.greenend.org.uk Subject: userv (security boundary tool) 1.0.0 released X-Mailer: VM 6.62 under Emacs 19.34.1 Sender: Ian Jackson -----BEGIN PGP SIGNED MESSAGE----- GNU userv 1.0.0 is now released. userv (pronounced `you-serve') is, in the words of the specification, a Unix system facility to allow one program to invoke another when only limited trust exists between them. There is now also an associated package userv-utils, currently at version 0.1. It contains a collection of miscellaneous userv services, which can serve as examples and programs in their own right. Note that the documentation and probably quality of these leave a lot to be desired. Contributions of documentation, installation instructions, improvements, etc, for userv-utils would be very welcome. For more information, including the on-line specification and the distribution files, visit http://www.chiark.greenend.org.uk/~ian/userv/ userv is also available via the GNU FTP site and its mirrors. 1.0.0 will be available there soon if it isn't already. If you have queries, please join the userv-discuss mailing list in preference to mailing the author. Thank you. MD5 checksums: e1eedc73d676e1b510793c92e81c3a9f userv-1.0.0.tar.gz cbf2b383b91499b78cb4ec87f577a79e userv-utils-0.1.tar.gz 4646687bba58c32ca119f3f66cd71589 userv-0.65.2-1.0.0.diff.gz dd38df713e69f6bf34da15c17c8ec7a2 userv-0.95.0-1.0.0.diff.gz Changes to userv since last version announced on info-gnu (0.65.2): userv (1.0.0); urgency=low * Manpage userv(1) from Ben Harris. (Debian bug #33777.) * Released out of beta (version number change). * Added a couple of things to .cvsignore. -- Ian Jackson Mon, 6 Mar 2000 18:13:49 +0000 userv (0.95.0) BETA; urgency=low * Count \-continued lines properly in error message line numbers. * Fix lexing bugs with "-quoted strings and \-continuation. * Fix interpretation of \n etc. in "-quoted strings. * Fix bug which ignored erroneous read/write after ignore-fd/reject-fd. -- Ian Jackson Tue, 9 Nov 1999 23:26:54 +0000 -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBOMQMIsMWjroj9a3bAQF5jgQAtFmDRph6ybujwi2BUIXRCY4keUdhTnAl dJxybQAfLAuV7sL9+8VBwk3goj+CwRV/EKz22ZCTbOBo3COFBuKmMuGpednDjgaE wzBRrb73DK+hYs8/8SeIHgrHOJZ9fVEcsFoiKQiKnsB4em7HS+7X/pl5xBrtC9ea AGAvwox8/KM= =7Eqy -----END PGP SIGNATURE----- From owner-mailman@chiark.greenend.org.uk Thu Jul 27 02:38:11 2000 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from 397f9280.29578.7bb4.0.bsmtp.davenant.greenend.org.uk by chiark.greenend.org.uk with local-bsmtp (Exim 2.05 #1) id 13Hccl-0008F7-00 (Debian); Thu, 27 Jul 2000 02:38:11 +0100 Received: from ian by davenant.greenend.org.uk with local (Exim 2.125 #2) id 13HcUx-0001AZ-00 (Debian); Thu, 27 Jul 2000 02:30:07 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14719.37023.212299.394545@davenant.relativity.greenend.org.uk> Date: Thu, 27 Jul 2000 02:30:07 +0100 (BST) From: userv-maint@chiark.greenend.org.uk (Ian Jackson) To: userv-announce@chiark.greenend.org.uk Subject: userv security boundary tool 1.0.1 (SECURITY FIX) X-Mailer: VM 6.62 under Emacs 19.34.1 Sender: Ian Jackson -----BEGIN PGP SIGNED MESSAGE----- SUMMARY This is a combination security advisory and release announcement. GNU userv 1.0.0 and earlier versions have a vulnerability where under some conditions some local users may be able carry out unauthorised actions, or (unlikely) be able to take control of service user accounts. GENERAL RELEASE ANNOUNCEMENT GNU userv 1.0.1 is now available. userv (pronounced `you-serve') is, in the words of the specification, a Unix system facility to allow one program to invoke another when only limited trust exists between them. There is also an associated package userv-utils, which contains a collection of miscellaneous userv services, which can serve as examples and programs in their own right. No new general release of userv-utils is being made at this time; one is expected soon. For more information, including the on-line specification and the distribution files, visit http://www.chiark.greenend.org.uk/~ian/userv/ userv is also available via the GNU FTP site and its mirrors. 1.0.1 will be available there soon if it isn't already. Debian GNU/Linux binaries are available on the home FTP site. If you have queries, please join the userv-discuss mailing list in preference to mailing the author. Thank you. MD5 checksums (vanilla source code release): b5d19fae83609536b590cbb7044ad0d7 userv-1.0.1.tar.gz 9222b6e0539be3e0cb5663e128bf3ca2 userv-1.0.0-1.0.1.diff.gz MD5 checksums (Debian GNU/Linux prepackaged release): 473a8fe477d20614aad97f538896969a userv_1.0.1.0slink.dsc 40b052547e2ea9fa69a12ee24dfe2af7 userv_1.0.1.0slink.tar.gz ed9f52af62a96ea9097675bf6f723cb7 userv_1.0.1.0slink_i386.changes ebf8d6cd431e94b6e731636d1d61440e userv_1.0.1.0slink_i386.deb 1a92258cecdb878ddd2f58cd03bd59b1 userv_1.0.1.1potato.dsc ddf8df51026a1b880dc95f9ca04a6deb userv_1.0.1.1potato.tar.gz 958f4c8ebe68b4166e994435598b89a0 userv_1.0.1.1potato_i386.changes 82752bd8dcc7ec1e187b6d9cfe7403d0 userv_1.0.1.1potato_i386.deb (Sources are actually identical. `0slink' is for the current stable, Debian 2.1, `1potato' is for current frozen and unstable versions.) Changes since 1.0.0: IMPORTANT SECURITY FIX: * fd swapping algorithm would sometimes corrupt security-critical data used to generate the service program's USERV_ environment variables. For details see the 1.0.1 announcement in the userv-announce archives. Portability improvement: * Look for `md5' as well as `md5sum' - installs easier on BSDs. DETAILS Affected versions of userv sometimes make an out-of-bounds array reference in the fd swapping algorithm. The effect of this - if any - on i386 platforms is usually to corrupt the USERV_GROUPS and USERV_GIDS environment variables as passed to child processes, replacing one of the groups with a wrong other group. This means that service programs that use those environment variables (or other information provided by the caller) to make access control decisions may be vulnerable to trickery by some local users. On other platforms other information relied on in the service program may be corrupted. It may even be possible to induce the userv subprocess which later execs the service program to crash or behave maliciously, though this latter is unlikely and would require considerable research to construct an exploit. Access control tests carried out in userv's configuration language are not affected, as they take place before the bug happens. So users who do not configure (or have configured for them) any userv services are not vulnerable, and users who are not configured as callers for any userv services cannot exploit the problem. The bug also happens well after the userv server has given up its root privilege and switched to the service user, so unless you have userv services provided by root which can be called by untrusted users you are not vulnerable. REMEDY Apply the patch below and recompile and reinstall, or obtain a fixed binary from your vendor or distribution maintainer. Binaries for Debian GNU/Linux i386 are available. See above for details. PATCH Given the fact that this is a security advisory a patch is attached: Index: servexec.c =================================================================== RCS file: /usr/src/CVS/userv/servexec.c,v retrieving revision 1.13 retrieving revision 1.14 diff -u -r1.13 -r1.14 --- servexec.c 2000/03/06 18:14:46 1.13 +++ servexec.c 2000/07/27 00:08:34 1.14 @@ -266,7 +266,8 @@ fdarray[fd].holdfd= -1; } for (fd=0; fd= 0) + fdarray[fdarray[fd].realfd].holdfd= fd; } for (fd=0; fd Envelope-to: userv-announce@chiark.greenend.org.uk Received: from (davenant.greenend.org.uk) [172.31.80.6] by chiark.greenend.org.uk with esmtp (Exim 3.12 #2) id 13aphA-0002LP-00 (Debian); Mon, 18 Sep 2000 02:26:08 +0100 Received: from ian by davenant.greenend.org.uk with local (Exim 3.12 #2) id 13apJd-0006gC-00 (Debian); Mon, 18 Sep 2000 02:01:49 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14789.27005.136793.26240@davenant.relativity.greenend.org.uk> Date: Mon, 18 Sep 2000 02:01:49 +0100 (BST) From: userv-maint@chiark.greenend.org.uk (Ian Jackson) To: userv-announce@chiark.greenend.org.uk Subject: userv-utils (security boundary tool examples) 0.2.0 released X-Mailer: VM 6.75 under Emacs 19.34.1 Sender: Ian Jackson -----BEGIN PGP SIGNED MESSAGE----- userv-utils 0.2.0 is now released. userv-utils is a collection of miscellaneous userv services. They serve as examples, and several are useful programs in their own right. (Though the documentation often leaves something to be desired.) userv (pronounced `you-serve') is, in the words of the specification, a Unix system facility to allow one program to invoke another when only limited trust exists between them. The three facilities which are considered fully released in this version of userv-utils are: ipif - an encrypting point-to-point VPN system groupmanage - allows users to create and manage their own UNIX groups www-cgi - for invoking users' CGI scripts as the user in question For more information about userv and userv-utils, including the on-line userv specification and the distribution files, visit http://www.chiark.greenend.org.uk/~ian/userv/ The current version of userv itself is 1.0.1. If you have queries, please join the userv-discuss mailing list in preference to mailing the author. Thank you. MD5 checksums: 81e9da6d21ba828b1e795b9f77c7cab0 userv-utils-0.2.0.tar.gz b5d19fae83609536b590cbb7044ad0d7 userv-1.0.1.tar.gz Recent changes to userv-utils: Changes in version 0.2.0: Improvements to ipif (tunnelling/VPN facility): * INSTALL instructions much improved and README created. * Patch to slattach included. * Documentation comments improved. Changes in version 0.1.90: * ipif/INSTALL instructions, such as they are, included. * ipif service now supports `=' character in addrs in ipif-networks, for local endpoint only. Changes in version 0.1.9: * Completely revamped udptunnel (in ipif) - now does encryption. -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBOcVoS8MWjroj9a3bAQG2AwQArVexgar74E+oCnIuJxiMXWGzev1dhliC ib/8l92CoFAhESe+jJPt29F+y6qP2JQl+T1/hvhjB1rzK3c8WQVuMTYC9Lb/0QQF daKMXUgCjVYstnrrvAajmJfYUDkNNH9uRPiHi6juroVIjRNY+PsjFv2XW57oyTm1 xIQ/eVA25x8= =qZxQ -----END PGP SIGNATURE----- From owner-mailman@chiark.greenend.org.uk Sat Nov 01 03:08:04 2003 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from [172.18.45.6] (helo=davenant.greenend.org.uk ident=mail) by chiark.greenend.org.uk (Debian Exim 3.35 #1) with esmtp id 1AFm7P-0001wO-00; Sat, 01 Nov 2003 03:08:03 +0000 Received: from ian by davenant.greenend.org.uk with local (Exim 3.35 #1) id 1AFkkM-00056O-00 (Debian); Sat, 01 Nov 2003 01:40:10 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <16291.3834.463968.315289@davenant.relativity.greenend.org.uk> Date: Sat, 1 Nov 2003 01:40:10 +0000 From: Ian Jackson To: info-gnu@gnu.org, userv-announce@chiark.greenend.org.uk Subject: userv (security boundary tool) 1.0.3 released X-Mailer: VM 7.03 under Emacs 19.34.1 Sender: userv-announce-admin@chiark.greenend.org.uk Errors-To: userv-announce-admin@chiark.greenend.org.uk X-BeenThere: userv-announce@chiark.greenend.org.uk X-Mailman-Version: 2.0.11 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: userv (security boundary facility) - announcements List-Unsubscribe: , List-Archive: -----BEGIN PGP SIGNED MESSAGE----- GNU userv 1.0.3 is now released. userv (pronounced `you-serve') is, in the words of the specification, a Unix system facility to allow one program to invoke another when only limited trust exists between them. userv is a one-of-a-kind systems programming and system administration tool, which can be used to avoid setuid programs, special daemons, or the need for doubtful `helper' programs. For more information, including the on-line specification and the distribution files, visit http://www.chiark.greenend.org.uk/~ian/userv/ If you have queries, please join the userv-discuss mailing list in preference to mailing the author. Thank you. userv is also usually available via the GNU FTP site and its mirrors. However, at present technical difficulties mean that we are unable to make the current distribution files available on ftp.gnu.org. In the meantime, please fetch the files from chiark, above. This is a maintenance release. It fixes a number of bugs, a few of them moderately annoying, but none believed to be security-critical. The documentation, portability and packaging are also improved. Note that the Debian Project has distributed, amongst other things, a file appearing to be userv 1.0.2. There is no userv 1.0.2. To avoid confusion, we have skipped version 1.0.2. Please use 1.0.3. MD5 checksums: b525d59097246fbe3668545fe302dbdb userv-1.0.1-1.0.3.diff.gz e577c93fa37b8334e8f882f28f4f8835 userv-1.0.3.tar.gz There is also an associated non-GNU package userv-utils, which contains a collection of miscellaneous userv services, which can serve as examples and programs in their own right. Note that the documentation and probably quality of these leave a lot to be desired. Contributions of documentation, installation instructions, improvements, etc, for parts of userv-utils would be very welcome. userv-utils can be found alongside userv's distribution files. Changes to userv since 1.0.1: Bugfixes: * Make require-fd work with reading fds ! (Thanks to Ben Harris for the bug report). * Close unwanted pipes in client-side cat subprocesses, to avoid wedging at termination. (Thanks to patchlet from Peter Benie.) * gid_t may be >int, so cast to long when putting in USERV_GIDS (Might conceivably make USERV_GIDS be wrong on some platforms.) * Do not pass char to ctype macros; they can't cope with -ve ! * Fix fd modifier, signal, and exit status parsing to be rigourous in their use of strtoul. (Thanks to report from Peter Benie.) Portability fixes: * #include , not (fixes some implicit decls). * Look for gmd5sum. (Thanks to Anton Altaparmakov for the report.) * install-sh updated to that from autoconf 2.53. * Use fcntl F_{GET,SET}FD with respect for as-yet-uninvented fd flags. (small patch from Ben Harris.) Documentation and help improvements: * userv(1) manpage: fixed broken definitions of fd excl and trunc. (Debian bug report: Closes: #79579.) * Specification's usage notes section improved. * --help and --version behaviour made to conform to GNU standards. * We do ship m4 and flex output now, so say so. * Some groff warnings in userv(1), and source version fixed. * New userv(8) manpage. (Debian: Closes: #33777.) * Update copyright dates everywhere. Debian packaging improvements: * Priority changed to optional as per override file. * Build-Depends: debiandoc-sgml, tetex-bin, tetex-extra. Closes #190615. * init.d reload is noop, restart now called restart. Closes #70783. * /etc/init.d/userv nicer output: colons, `.' printed after done. * Maintainer scripts use invoke-rc.d if it's available. * Maintainer scripts discard stdout from update-rc.d. * No more messing with /usr/doc, use only /usr/share/doc. Closes #91578. * Support unstripped binaries in the .deb, with DEB_BUILD_OPTIONS. * Fixed typo in debian/copyright. * /etc/init.d/userv restart doesn't mind if not already running. * debian/rules clean removes whole spec.html subdirectory. * Ship spec.ps (Closes: #210859) * Lintian override for suid /usr/bin/userv (Closes: #211055) * Standards-Version 3.6.1. * Corrected location of common licenses. * Added -isp to dpkg-gencontrol. (Thanks to Martin Pitt and Bas Zoetekouw's NMUs for many inspirations and one-liners.) -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBP6MO9MMWjroj9a3bAQFtzQP/c49a2hrDIOn11x61EeQvS2k/2B+gAyqe ky015YohAPIvLCwzsQpzkj2Q5vYNCSxdk/eEmDOefSu/QrprofCZ1Htc4I3PfDOy Cc9QwTajghJKQXPSlNSN5lRz4doCnD4sisGAJ+czXS+DlGUJj9TbKuFGDd+hQ5BZ /JdUf+4CamM= =NS6O -----END PGP SIGNATURE----- From owner-mailman@chiark.greenend.org.uk Tue Jun 06 22:12:07 2006 Return-path: Envelope-to: userv-announce@chiark.greenend.org.uk Received: from [172.18.45.6] (helo=davenant.greenend.org.uk ident=mail) by chiark.greenend.org.uk (Debian Exim 3.36 #1) with esmtp (return-path ian@davenant.greenend.org.uk) id 1FniqM-0000SK-00; Tue, 06 Jun 2006 22:12:06 +0100 Received: from ian by davenant.greenend.org.uk with local (Exim 3.36 #1) id 1FniqL-0002UZ-00 (Debian); Tue, 06 Jun 2006 22:12:05 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <17541.61348.977230.155580@davenant.relativity.greenend.org.uk> Date: Tue, 6 Jun 2006 22:12:04 +0100 From: Ian Jackson To: info-gnu@gnu.org, userv-announce@chiark.greenend.org.uk Subject: userv (security boundary tool) 1.0.5 released X-Mailer: VM 7.03 under Emacs 19.34.1 Sender: userv-announce-admin@chiark.greenend.org.uk Errors-To: userv-announce-admin@chiark.greenend.org.uk X-BeenThere: userv-announce@chiark.greenend.org.uk X-Mailman-Version: 2.0.11 Precedence: bulk List-Unsubscribe: , List-Id: userv (security boundary facility) - announcements List-Post: List-Help: List-Subscribe: , List-Archive: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 GNU userv 1.0.5 is now released. userv (pronounced `you-serve') is, in the words of the specification, a Unix system facility to allow one program to invoke another when only limited trust exists between them. userv is a one-of-a-kind systems programming and system administration tool, which can be used to avoid setuid programs, special daemons, or the need for doubtful `helper' programs. For more information, including the on-line specification and the distribution files, visit http://www.chiark.greenend.org.uk/~ian/userv/ If you have queries, please join the userv-discuss mailing list in preference to mailing the author. Thank you. This is a maintenance release. It fixes a number of minor bugs and portability problems, but none of the changes are believed to be security-critical. There is also an associated non-GNU package userv-utils, which contains a collection of miscellaneous userv services, which can serve as examples and programs in their own right. Note that the documentation and probably quality of these leave a lot to be desired. Contributions of documentation, installation instructions, improvements, etc, for parts of userv-utils would be very welcome. userv-utils can be found alongside GNU userv's distribution files. ======================================== MD5 checksums: 1a39116f5a65361d3234e7f1cf63cb83 userv-1.0.5.tar.gz 9e5e5a19a9a60d23544a42bd879681fe userv-utils-0.3.tar.gz SHA-1 checksum: eb6d8b86dcc37e576972f1d65652db951e0c7319 userv-1.0.5.tar.gz 723393fc19deecedf1e3d20e3071cf75284359fa userv-utils-0.3.tar.gz ======================================== Changes to userv since 1.0.3: userv (1.0.5) unstable; urgency=low Bugfixes (thanks to report from Nelson Beebe): * Do not call `assert' on expressions whose side-effects we need (!) Thanks to report from Nelson Beebe. * Correct an erroneous assert() argument so that it would actually detect failure of the assertion. * alarm(2) returns unsigned and can never fail. Packaging changes: * Reran flex (flex Debian 2.5.31-31). * Use install -g 0 instead of -g root. This is more portable, I hope. * Detect missing vsnprintf and mention URL from Nelson Beebe in err msg. * Remove obsolete `buildship' script from top level directory. We use cvs-buildpackage nowadays. -- Ian Jackson Sat, 8 Apr 2006 13:17:14 +0100 userv (1.0.4) unstable; urgency=low Bugfixes: * Close client socket fd in spawned cats (avoids some service-side hangs when client terminates). Thanks to report from Simon Tatham. Minor portability fixes: * Missing #include and } Thanks to report * getgroups returns int, not gid_t (!). } from Peter Benie. * Dummy `check' target in Makefile.in. } Thanks to * Bogus strsignal emulation for broken platforms. } report from * Bogus WCOREDUMP emulation for broken platforms. } Nelson Beebe Packaging improvements (including Debian packaging fixes): * Compress uservd(8) manpage. Closes: #244735. * spec.tex and spec.html are autogenerated: clean and .cvsignore them. * SHELL=/bin/bash in debian/rules; use of install(8). Closes: #263979. * Reran autoconf/autoheader (autoconf Debian 2.13-54). * Updated copyright notices. -- Ian Jackson Fri, 7 Apr 2006 20:04:29 +0100 userv (1.0.3-2) unstable; urgency=low Debian packaging improvements (only): * type -p invoke-rc.d changed to type, in postinst and prerm. -- Ian Jackson Sat, 1 Nov 2003 16:59:38 +0000 ======================================== Changes to userv-utils since 0.2.3: userv-utils (0.3) unstable; urgency=medium dyndns: * New dyndns service. ucgi: * add HTTP_REFERER. * Fix path in www-cgi userv service default configuration. ipif/udptunnel: * Use slip, not cslip (!) * service MAXEXROUTES increased from 5 to 50. * Set default max clock skew to 45/45, not 10/30. * Allow config file to override default clock skew and lag. * Report nonzero death of m4 better. * Add a few missing #include's of . * Minor fixes to INSTALL. groupmanage: * new name-regexp feature. * admin-group is understood in config file but currently ignored. * file locations configurable. * groupmanage: do not claim that root doesn't exist. * groupmanage: configurable group name length limit. (Thanks to reports and patches from Ben Harris at Cambridge University.) Packaging changes: * Debianisation. * New Makefiles in various directories; still not wonderful. * Removed some common stuff from */Makefile to settings.make. * Copyright notices updated. * Moved changelog to debian/changelog. -- Ian Jackson Tue, 6 Jun 2006 22:02:17 +0100 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iQCVAwUBRIXvmcMWjroj9a3bAQKHaQP9GtfA3ME9uEn6bZoZMPxBRj6h2aHn54Ss nQLmH7QS0t9kdQ2F4APM6Mnp5RwPURNMNm8jp+anyRl2lskbIAUh7QmruP3C3UdJ E0pYfSFlpV9cBAVGzVUMYSTgnJIJZwKOYDB5DuE236yUGUV+ZSsVmgbiAaw8Zhbn fTbj2MgIpgI= =q26E -----END PGP SIGNATURE-----