Linux DevCenter    
 Published on Linux DevCenter (
 See this if you're having trouble printing code examples

SMP UML, OpenSSL, Systrace Policies, and Apache Configuration

by chromatic
Linux Newsletter for 03/03/2003

Good afternoon, from your editor's horribly biased west coast USA perspective. Welcome to another edition of the Linux newsletter.

If you hurry, you can be one of the first people to read Jerry Cooperstein's new article, Testing SMP Kernel Modules with UML. Not only does User Mode Linux let you run an instance of Linux under a running instance, but you can also simulate a multiprocessor box with it.

In his latest Security Alerts column, Noel Davis explores a timing-based attack against OpenSSL. Other vulnerabilities include Oracle, mod_php 4.3, pam_xauth, VNC, and Nethack and Rogue. Keep safe and check your systems.

Michael Lucas returns to systrace with Creating Systrace Policies. Though there are repositories of useful policies, some applications and circumstances require you to create your own. By the way, the program is now portable to even more Unixy operating systems. It's downright nifty.

Finally, Peter Laurie, fresh from updating the third edition of Apache: The Definitive Guide, offers a guided tour of an Apache configuration file. Though the file is extensively commented, it's helpful to have a guru perspective to explain the less obvious nooks and crannies. Read more in Creating an Apache Site with Public and Secure Access.

To subscribe to the Linux newsletter (or any O'Reilly Network newsletters), visit and select the newsletters you wish to receive in your user profile (you'll need to log in with your existing O'Reilly Network account -- if you don't yet have an account, you'll need to create one).

To change your newsletter subscription options, please visit and click the"Manage My Newsletters" link. For assistance, send email to

At the risk of feeling silly, your editor would like to point out a followup to his previous weblog. Free, free, and 'Free': the BSDs Certainly Are offers an explanation and an apology for any confusion caused by a poorly stated (and half-baked) sentence.

That's it for today. Here's to a wonderful March!

All the best,

Technical Editor
O'Reilly Network and Linux DevCenter Top Five Articles Last Week

  1. Getting, Installing, and Running Apache
    How to install the web server from scratch, binary, or using Red Hat Package Manager.

  2. PAM
    Last time, Dru Lavigne introduced one time passwords. Rather than an all-or-nothing approach, most free Unixes support several different authentication methods. This time, Dru explores PAM (Pluggable Authentication Modules), which allow you to govern how users log on and authenticate themselves.

  3. SimPy: Simulating Systems in Python
    Do you have a complex system with limited resources and random events? Maybe a simulation will help you uncover essential truths. Klaus Müller and Tony Vignaux introduce SimPy, a simulation package for Python.

  4. Distributing Your CA to Client Browsers
    In a follow-up to his article on "Creating Your Own CA," Rob Flickenger, author of Linux Server Hacks, shows you how to distribute your new Certificate Authority to a client's browser. He also offers some key advice on accepting a new CA in your browser.

  5. OpenSSL Timing Attack
    Noel Davis looks at problems in OpenSSL, Oracle, mod_php, MySQL, pam_xauth, VNC, apcupsd, nethack, Rogue, and BitchX.

Return to the list of Linux Newsletters.

Return to the Linux DevCenter.

Copyright © 2009 O'Reilly Media, Inc.