-------------------------------------------------------------------------
The Debian Project http://www.debian.org/
Security Support for Debian 4.0 to be terminated press@debian.org
January 21st, 2010 http://www.debian.org/News/2010/20100121
-------------------------------------------------------------------------
Security Support for Debian GNU/Linux 4.0 to be terminated on February 15th
One year after the release of Debian GNU/Linux 5.0 alias "lenny" and
nearly three years after the release of Debian GNU/Linux 4.0 alias "etch"
the security support for the old distribution (4.0 alias "etch" ) is
coming to an end next month. The Debian project is proud to be able to
support its old distribution for such a long time and even for one year
after a new version has been released.
The Debian project released Debian GNU/Linux 5.0 alias "lenny" on the
15th of February 2009. Users and Distributors have been given a one-year
timeframe to upgrade their old installations to the current stable
release. Hence, the security support for the old release of 4.0 is going
to end in February 2010 as previously announced.
Previously announced security updates for the old release will continue
to be available on security.debian.org.
Security Updates
----------------
The Debian Security Team provides security updates for the current
distribution via <http://security.debian.org/>. Security updates for the
old distribution are also provided for one year after the new
distribution has been released or until the current distribution is
superseded, whatever happens first.
Security support for Debian 4.0/etch is coming to an end
Moderator: Mattk
Re:Security support for Debian 4.0/etch is coming to an end
Good Point :-)
I am not happy about security matters in meteohub. At least I can harden it for myself.
Boris is still stating, that meteohub should be in a "secured environment" But exactly this is a showstopper for autonomous weather stations with simple 3G communication.
If I see for example this defaults:
The only thing I had troubles was to update the kernel in embedded. Therefore I runned only this script, what was fun too ;-)
I am not happy about security matters in meteohub. At least I can harden it for myself.
Boris is still stating, that meteohub should be in a "secured environment" But exactly this is a showstopper for autonomous weather stations with simple 3G communication.
If I see for example this defaults:
Then i see much opportunities. A simple GUI like in webmin for the firewalls. And yes, IPv6 runs out of the box on my ALIX meteohub. I like this one way but the other i know, that there are unsecured services like authentication without encryption. And yes, everything is more or less "Built IN" but not finished ;-)meteohub:~# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
meteohub:~# ip6tables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
The only thing I had troubles was to update the kernel in embedded. Therefore I runned only this script, what was fun too ;-)
kind regards, NetSigimeteohub:~# cat check-upg.sh
echo ""
echo "------------------------"
echo "| Available OS Updates |"
echo "------------------------"
if which apt-get >/dev/null 2>&1; then
apt-get update -q=2 2>&1
echo "** Testing what packages could be upgraded: **"
apt-get upgrade -u --download-only -y -q -V 2>&1
else
echo "apt-get binary not found (apt-get not installed?)"
fi