Welcome!
Important information
-- Spectre and Meltdown vulnerabilities
-- Change in MX sources

News
-- MX Linux on social media: here
-- Mepis support still here

Current releases
-- MX-17.1 Final release info here
-- antiX-17 release info here

New users
-- Please read this first, and don't forget to add system and hardware information to posts!
-- Here are the Forum Rules

Flash Security Update

Feel free to talk about anything and everything in this board. Just don't post offensive topics that are meant to cause trouble with other members or are derogatory towards people of different genders, race, color, minors (this includes nudity and sex), politics or religion. Let's try to keep peace among the community and for visitors.

No spam on this or any other forums please! If you post advertisements on these forums, your account may be deleted.

Do not copy and paste entire or even up to half of someone else's words or articles into posts. Post only a few sentences or a paragraph and make sure to include a link back to original words or article. Otherwise it's copyright infringement.

You can talk about other distros here, but no MX bashing. You can email the developers of MX if you just want to say you dislike or hate MX.
Message
Author
User avatar
Stevo
Forum Veteran
Forum Veteran
Posts: 16277
Joined: Fri Dec 15, 2006 8:07 pm

Re: Flash Security Update

#31 Post by Stevo » Fri Feb 21, 2014 12:29 am

Does the cron job let you know anything when it's running at all? I thought it just did it in the background, like when I see my CPU usage go up, I check what it is, and when I see "find" eating a lot of cycles, I know that cron is running "updatedb". Did you add a command to pop up a terminal in the script? (that might be nice to add)

User avatar
Nix Hard
Forum Regular
Forum Regular
Posts: 203
Joined: Wed Jul 12, 2006 7:17 am

Re: Flash Security Update

#32 Post by Nix Hard » Fri Feb 21, 2014 1:20 am

Stevo wrote:Does the cron job let you know anything when it's running at all? I thought it just did it in the background, like when I see my CPU usage go up, I check what it is, and when I see "find" eating a lot of cycles, I know that cron is running "updatedb". Did you add a command to pop up a terminal in the script? (that might be nice to add)
Stevo,
I added the script to /etc/cron.daily

Code: Select all

#!/bin/sh

test -x /usr/sbin/update-flashplugin-nonfree &&
/usr/sbin/update-flashplugin-nonfree --install  --verbose
--verbose was --quiet in the original, :anifish:
Don't use any of my information in THIS Post # 331203 at home folks, it doesn't work yet; NH

I have just updated script to;

Code: Select all

#!/bin/sh

grep -q "^flags.*\<sse2\>" /proc/cpuinfo || exit 0

test -x /usr/sbin/update-flashplugin-nonfree && /usr/sbin/update-flashplugin-nonfree --install --verbose
And change the name of the script to "cron_updaterflashpluginnonfree"
Lets see if that works.

Cheers NH
Some bugs are beauts...
MEPIS Radio; it rocks
MEPIS Documentation Project;-- get MEPIS wise

User avatar
Stevo
Forum Veteran
Forum Veteran
Posts: 16277
Joined: Fri Dec 15, 2006 8:07 pm

Re: Flash Security Update

#33 Post by Stevo » Fri Feb 21, 2014 2:05 am

I just updated a VBox install that hadn't been done in a while, and it is still at 11.2.202.336.

I think you have to add the command to start it up in a terminal to make it visible, something like adding

Code: Select all

x-terminal-emulator -e 'the command you want executed'
--or you can just specify xterm instead of the generic emulator. I'm pretty sure that's what needs to be done (kmathern?), but I see so many complaints from the grumps at the Debian forums about "these gol-dern things a-poppin' up in my face! I hate that in an OS!" I'm a bit leary of adding that.

User avatar
Nix Hard
Forum Regular
Forum Regular
Posts: 203
Joined: Wed Jul 12, 2006 7:17 am

Re: Flash Security Update

#34 Post by Nix Hard » Fri Feb 21, 2014 2:12 am

I ran "run-parts -v /etc/cron.daily" as root in a CLI.

The cron jobs were not getting passed an "APT" script that is jamming the works right up.
I re-named the adobe update script to a name that would come before the broken APT one.

Bingo, the adobe updater script now runs.

The results of that script running is to tell me there are no updates... yet. :mad:

But there will be, cause Adobe has released another update, 20th February 2014, linux version now to 11.2.202.341 from insecure 11.2.202.336

Now to work out why the daily APT cron job is jamming the works.

Cheers NH
Some bugs are beauts...
MEPIS Radio; it rocks
MEPIS Documentation Project;-- get MEPIS wise

User avatar
Nix Hard
Forum Regular
Forum Regular
Posts: 203
Joined: Wed Jul 12, 2006 7:17 am

Re: Flash Security Update

#35 Post by Nix Hard » Fri Feb 21, 2014 2:33 am

Stevo wrote:...but I see so many complaints from the grumps at the Debian forums about "these gol-dern things a-poppin' up in my face! I hate that in an OS!" I'm a bit leary of adding that.
Yea Stevo I hate to be interrupted while falling to my death to. "Please Sir your update has failed, the ground is approaching, your demise is very near."

I don't think there is an answer to this one.

I just found out that my daily crons were not running pass the APT job... duh...

How close is that ground again?
That far!
That's alright then, still time for a cold beer... :pint:
Some bugs are beauts...
MEPIS Radio; it rocks
MEPIS Documentation Project;-- get MEPIS wise

User avatar
richb
Administrator
Posts: 17096
Joined: Wed Jul 12, 2006 2:17 pm

Re: Flash Security Update

#36 Post by richb » Fri Feb 21, 2014 6:40 am

Nix Hard wrote:
Jerry3904 wrote:
Note to Administrators;
Another point, unless you are logged on/or logged in you don't see the notice on the front door/index page of the forum.
Is this possible to fix this please?
Don't see why: the notice is for members.
richb wrote:I believe it is adequate as it is as a message for our members.
How many members don't logon until they want to post?
Then may only logon via the page they are reading.

Means all visitors, and not just logged on members may miss on the necessary news.

Adobe has released another update, 20th February 2014, linux version now to 11.2.202.341 from insecure 11.2.202.336
http://helpx.adobe.com/security/product ... 14-07.html

My cron script has failed to update or inform me of the update so far.
( I changed --quiet to --verbose, to get some feed back when things changed)

Cheers NH
The decision has been made.
Forum Rules
Guide - How to Ask for Help

Rich
SSD Production: MX 17.1
AMD A8 7600 FM2+ CPU R7 Graphics, 16 GIG Mem. Three Samsung EVO SSD's 250 GB, 350 GB HD

User avatar
Stevo
Forum Veteran
Forum Veteran
Posts: 16277
Joined: Fri Dec 15, 2006 8:07 pm

Re: Flash Security Update

#37 Post by Stevo » Fri Feb 21, 2014 10:46 am

I just checked, and the version available to the updater is still .336, however, it must check Adobe to see if there's a newer version available:

Code: Select all

# update-flashplugin-nonfree --status
Flash Player version installed on this system  : 11.2.202.336
Flash Player version available on upstream site: 11.2.202.341
flash-mozilla.so - auto mode
  link currently points to /usr/lib/flashplugin-nonfree/libflashplayer.so
/usr/lib/flashplugin-nonfree/libflashplayer.so - priority 50
Current 'best' version is '/usr/lib/flashplugin-nonfree/libflashplayer.so'.
So hopefully today the cron job will succeed.

User avatar
Stevo
Forum Veteran
Forum Veteran
Posts: 16277
Joined: Fri Dec 15, 2006 8:07 pm

Re: Flash Security Update

#38 Post by Stevo » Sat Feb 22, 2014 11:37 am

Checked again today, and it must have updated silently after I connected to the Net (anacron is useful for mobile devices) :)

Code: Select all

# update-flashplugin-nonfree --status
Flash Player version installed on this system  : 11.2.202.341
Flash Player version available on upstream site: 11.2.202.341

User avatar
Jerry3904
Forum Veteran
Forum Veteran
Posts: 22452
Joined: Wed Jul 19, 2006 6:13 am

Re: Flash Security Update

#39 Post by Jerry3904 » Sat Feb 22, 2014 11:51 am

It might be nice to have something in MX-14 menu that gave the user the possibility of updating it one time or setting up a cron job. Maybe THIS could be included with the MX Codecs Installer if we changed the name to something like MX Restricted Installer.

What do you think? Adrian has gotten pretty comfortable with those little GUIs...
Production: 4.15.0-1-amd64, MX-17.1, AMD FX-4130 Quad-Core, GeForce GT 630/PCIe/SSE2, 8 GB, Kingston SSD 120 GB and WesternDigital 1TB
Testing: AAO 722: 4.15.0-1-386. MX-17.1, AMD C-60 APU, 4 GB

User avatar
Stevo
Forum Veteran
Forum Veteran
Posts: 16277
Joined: Fri Dec 15, 2006 8:07 pm

Re: Flash Security Update

#40 Post by Stevo » Sat Feb 22, 2014 1:35 pm

Sounds like a good idea, though I bet a lot of users would still forget to update manually--but that's because they chose not to use the cron script. Maybe if we added (Recommended) next to the cron job button.

I wonder if Adrian could add an option to check the plugin status with the results of

Code: Select all

update-flashplugin-nonfree --status
though it took a couple days to become updatable.

Post Reply

Return to “General”