oreilly.comSafari Books Online.Conferences.


SMP UML, OpenSSL, Systrace Policies, and Apache Configuration

by chromatic
Linux Newsletter for 03/03/2003

Good afternoon, from your editor's horribly biased west coast USA perspective. Welcome to another edition of the Linux newsletter.

If you hurry, you can be one of the first people to read Jerry Cooperstein's new article, Testing SMP Kernel Modules with UML. Not only does User Mode Linux let you run an instance of Linux under a running instance, but you can also simulate a multiprocessor box with it.

In his latest Security Alerts column, Noel Davis explores a timing-based attack against OpenSSL. Other vulnerabilities include Oracle, mod_php 4.3, pam_xauth, VNC, and Nethack and Rogue. Keep safe and check your systems.

Michael Lucas returns to systrace with Creating Systrace Policies. Though there are repositories of useful policies, some applications and circumstances require you to create your own. By the way, the program is now portable to even more Unixy operating systems. It's downright nifty.

Finally, Peter Laurie, fresh from updating the third edition of Apache: The Definitive Guide, offers a guided tour of an Apache configuration file. Though the file is extensively commented, it's helpful to have a guru perspective to explain the less obvious nooks and crannies. Read more in Creating an Apache Site with Public and Secure Access.

To subscribe to the Linux newsletter (or any O'Reilly Network newsletters), visit and select the newsletters you wish to receive in your user profile (you'll need to log in with your existing O'Reilly Network account -- if you don't yet have an account, you'll need to create one).

To change your newsletter subscription options, please visit and click the"Manage My Newsletters" link. For assistance, send email to

At the risk of feeling silly, your editor would like to point out a followup to his previous weblog. Free, free, and 'Free': the BSDs Certainly Are offers an explanation and an apology for any confusion caused by a poorly stated (and half-baked) sentence.

That's it for today. Here's to a wonderful March!

All the best,

Technical Editor
O'Reilly Network and Linux DevCenter Top Five Articles Last Week

  1. Getting, Installing, and Running Apache
    How to install the web server from scratch, binary, or using Red Hat Package Manager.

  2. PAM
    Last time, Dru Lavigne introduced one time passwords. Rather than an all-or-nothing approach, most free Unixes support several different authentication methods. This time, Dru explores PAM (Pluggable Authentication Modules), which allow you to govern how users log on and authenticate themselves.

  3. SimPy: Simulating Systems in Python
    Do you have a complex system with limited resources and random events? Maybe a simulation will help you uncover essential truths. Klaus Müller and Tony Vignaux introduce SimPy, a simulation package for Python.

  4. Distributing Your CA to Client Browsers
    In a follow-up to his article on "Creating Your Own CA," Rob Flickenger, author of Linux Server Hacks, shows you how to distribute your new Certificate Authority to a client's browser. He also offers some key advice on accepting a new CA in your browser.

  5. OpenSSL Timing Attack
    Noel Davis looks at problems in OpenSSL, Oracle, mod_php, MySQL, pam_xauth, VNC, apcupsd, nethack, Rogue, and BitchX.

Return to the list of Linux Newsletters.

Return to the Linux DevCenter.

Linux Online Certification

Linux/Unix System Administration Certificate Series
Linux/Unix System Administration Certificate Series — This course series targets both beginning and intermediate Linux/Unix users who want to acquire advanced system administration skills, and to back those skills up with a Certificate from the University of Illinois Office of Continuing Education.

Enroll today!

Linux Resources
  • Linux Online
  • The Linux FAQ
  • Linux Kernel Archives
  • Kernel Traffic

  • Sponsored by: