Služba Dropbox Sign (původně HelloSign) pro elektronické podepisování smluv byla hacknuta.
Byla vydána nová major verze 8.0 textového editoru GNU nano (Wikipedie). Podrobný přehled novinek a oprav v oznámení v diskusním listu info-nano nebo v souboru ChangeLog na Savannah. Volbou --modernbindings (-/) lze povolit "moderní" klávesové zkratky: ^C kopírování, ^V vložení, ^Z vrácení zpět, … Tato volba je aktivována také pokud binárka s nano nebo link na ni začíná písmenem "e".
Před 60 lety, 1. května 1964, byl představen programovací jazyk BASIC (Beginners' All-purpose Symbolic Instruction Code).
Byla vydána nová verze 12.0 minimalistické linuxové distribuce (JeOS, Just enough Operating System) pro Kodi (dříve XBMC) a multimediálního centra LibreELEC (Libre Embedded Linux Entertainment Center). Jedná se o fork linuxové distribuce OpenELEC (Open Embedded Linux Entertainment Center). LibreELEC 12.0 přichází s Kodi 21.0 "Omega".
Microsoft vydal novou velkou aktualizaci 2404.23 v září 2019 pod licencí SIL Open Font License (OFL) zveřejněné rodiny písma Cascadia Code pro zobrazování textu v emulátorech terminálu a vývojových prostředích.
OpenTofu, tj. svobodný a otevřený fork Terraformu vzniknuvší jako reakce na přelicencování Terraformu z MPL na BSL (Business Source License) společností HashiCorp, bylo vydáno ve verzi 1.7.0. Přehled novinek v aktualizované dokumentaci. Vypíchnout lze State encryption.
Spouštět webový prohlížeč jenom kvůli nákupu kávy? Nestačí ssh? Stačí: ssh terminal.shop (𝕏).
Yocto Project byl vydán ve verzi 5.0. Její kódové jméno je Scarthgap. Yocto Project usnadňuje vývoj vestavěných (embedded) linuxových systémů na míru konkrétním zařízením. Cílem projektu je nabídnou vývojářům vše potřebné. Jedná se o projekt Linux Foundation.
Operační systém 9front, fork operačního systému Plan 9, byl vydán v nové verzi "do not install" (pdf). Více o 9front v FQA.
Svobodná webová platforma pro sdílení a přehrávání videí PeerTube (Wikipedie) byla vydána v nové verzi 6.1. Přehled novinek i s náhledy v oficiálním oznámení a na GitHubu. Řešeny jsou také 2 bezpečnostní chyby.
net.sourceforge.jnlp.LaunchException: Fatal: Initialization Error: Could not initialize application. The application has not been initialized, for more information execute javaws from the command line. at net.sourceforge.jnlp.Launcher.createApplication(Launcher.java:822) at net.sourceforge.jnlp.Launcher.launchApplication(Launcher.java:531) at net.sourceforge.jnlp.Launcher$TgThread.run(Launcher.java:945) Caused by: net.sourceforge.jnlp.LaunchException: Fatal: Application Error: Cannot grant permissions to unsigned jars. Application requested security permissions, but jars are not signed. at net.sourceforge.jnlp.runtime.JNLPClassLoader$SecurityDelegateImpl.getClassLoaderSecurity(JNLPClassLoader.java:2481) at net.sourceforge.jnlp.runtime.JNLPClassLoader.setSecurity(JNLPClassLoader.java:385) at net.sourceforge.jnlp.runtime.JNLPClassLoader.initializeResources(JNLPClassLoader.java:806) at net.sourceforge.jnlp.runtime.JNLPClassLoader.<>(JNLPClassLoader.java:338) at net.sourceforge.jnlp.runtime.JNLPClassLoader.createInstance(JNLPClassLoader.java:421) at net.sourceforge.jnlp.runtime.JNLPClassLoader.getInstance(JNLPClassLoader.java:495) at net.sourceforge.jnlp.runtime.JNLPClassLoader.getInstance(JNLPClassLoader.java:468) at net.sourceforge.jnlp.Launcher.createApplication(Launcher.java:814) ... 2 more net.sourceforge.jnlp.LaunchException: Fatal: Initialization Error: Could not initialize application. The application has not been initialized, for more information execute javaws from the command line. at net.sourceforge.jnlp.Launcher.createApplication(Launcher.java:822) at net.sourceforge.jnlp.Launcher.launchApplication(Launcher.java:531) at net.sourceforge.jnlp.Launcher$TgThread.run(Launcher.java:945) Caused by: net.sourceforge.jnlp.LaunchException: Fatal: Application Error: Cannot grant permissions to unsigned jars. Application requested security permissions, but jars are not signed. at net.sourceforge.jnlp.runtime.JNLPClassLoader$SecurityDelegateImpl.getClassLoaderSecurity(JNLPClassLoader.java:2481) at net.sourceforge.jnlp.runtime.JNLPClassLoader.setSecurity(JNLPClassLoader.java:385) at net.sourceforge.jnlp.runtime.JNLPClassLoader.initializeResources(JNLPClassLoader.java:806) at net.sourceforge.jnlp.runtime.JNLPClassLoader.<>(JNLPClassLoader.java:338) at net.sourceforge.jnlp.runtime.JNLPClassLoader.createInstance(JNLPClassLoader.java:421) at net.sourceforge.jnlp.runtime.JNLPClassLoader.getInstance(JNLPClassLoader.java:495) at net.sourceforge.jnlp.runtime.JNLPClassLoader.getInstance(JNLPClassLoader.java:468) at net.sourceforge.jnlp.Launcher.createApplication(Launcher.java:814) ... 2 moreNevěděli byste někdo co s tím? Zkoušel jsem ještě nastavit /etc/java-8-openjdk/security/java.policy
permission java.net.SocketPermission "localhost:443", "connect,resolve"; permission java.net.SocketPermission "localhost:5900", "connect,resolve"; permission java.net.SocketPermission "localhost:5901", "connect,resolve";Ale zřejmě to není to samé co java exceptions na windows.
<\?xml version="1.0" encoding="UTF-8"?> <\jnlp codebase="https://localhost:443" spec="1.0+"> <\information> <\title>DRAC5 Console Redirection Client<\/title> <\vendor>Dell Inc.<\/vendor> <\icon href="https://localhost:443/oma/images/logo.gif" kind="splash"/> <\shortcut online="false"/> <\/information> <\application-desc main-class="com.avocent.drac5.kvm.Main"> <\argument>title=DRAC5 vKVM<\/argument> <\argument>ip=localhost<\/argument> <\argument>user=eeea9ddb4d763dc2ef560bfcd82630b3<\/argument> <\argument>passwd=<\/argument> <\argument>kmport=5900<\/argument> <\argument>vport=5901<\/argument> <\argument>apcp=0<\/argument> <\argument>version=1<\/argument> <\argument>sslv3=1<\/argument> <\/application-desc> <\security> <\all-permissions/> <\/security> <\resources> <\j2se version="1.6 1.5 1.4+"/> <\jar href="plugins/vkvm/avctDRAC5Viewer.jar"/> <\/resources> <\resources os="Windows"> <\nativelib href="plugins/vkvm/avctKVMIOWin32.jar"/> <\/resources> <\resources os="Linux"> <\nativelib href="plugins/vkvm/avctKVMIOLinux.jar"/> <\/resources> <\/jnlp>
cat /etc/java-8-openjdk/security/java.security |grep "jdk.certpath.disabledAlgorithms=\|jdk.jar.disabledAlgorithms=\|jdk.tls.disabledAlgorithms=" # jdk.certpath.disabledAlgorithms=MD2, DSA, RSA keySize < 2048 #jdk.certpath.disabledAlgorithms=MD2, MD5, SHA1 jdkCA & usage TLSServer, \ #jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, DSA keySize < 1024 # jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048 #jdk.tls.disabledAlgorithms=SSLv3, RC4, DES, MD5withRSA, DH keySize < 1024, \ #jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024 #jdk.tls.disabledAlgorithms=DH keySize < 768 #jdk.tls.disabledAlgorithms=SSLv3, RC4, DH keySize < 768, \ EC keySize < 224a výsledek je:
javaws /home/username/Downloads/vkvm.jnlp selected jre: /usr/lib/jvm/default-java WARNING: package javax.jnlp not in java.desktop Unable to use Firefox's proxy settings. Using "DIRECT" as proxy type. netx: Initialization Error: Could not initialize application. (Fatal: Application Error: Cannot grant permissions to unsigned jars. Application requested security permissions, but jars are not signed.) net.sourceforge.jnlp.LaunchException: Fatal: Initialization Error: Could not initialize application. The application has not been initialized, for more information execute javaws from the command line. at net.sourceforge.jnlp.Launcher.createApplication(Launcher.java:822) at net.sourceforge.jnlp.Launcher.launchApplication(Launcher.java:531) at net.sourceforge.jnlp.Launcher$TgThread.run(Launcher.java:945) Caused by: net.sourceforge.jnlp.LaunchException: Fatal: Application Error: Cannot grant permissions to unsigned jars. Application requested security permissions, but jars are not signed. at net.sourceforge.jnlp.runtime.JNLPClassLoader$SecurityDelegateImpl.getClassLoaderSecurity(JNLPClassLoader.java:2481) at net.sourceforge.jnlp.runtime.JNLPClassLoader.setSecurity(JNLPClassLoader.java:385) at net.sourceforge.jnlp.runtime.JNLPClassLoader.initializeResources(JNLPClassLoader.java:806) at net.sourceforge.jnlp.runtime.JNLPClassLoader.<\init>(JNLPClassLoader.java:338) at net.sourceforge.jnlp.runtime.JNLPClassLoader.createInstance(JNLPClassLoader.java:421) at net.sourceforge.jnlp.runtime.JNLPClassLoader.getInstance(JNLPClassLoader.java:495) at net.sourceforge.jnlp.runtime.JNLPClassLoader.getInstance(JNLPClassLoader.java:468) at net.sourceforge.jnlp.Launcher.createApplication(Launcher.java:814) ... 2 moreOni jsou podepsané, ale platnost podpisu končí cca 2013..
java -version openjdk version "1.8.0_212" OpenJDK Runtime Environment (build 1.8.0_212-8u212-b03-0ubuntu1.18.04.1-b03) OpenJDK 64-Bit Server VM (build 25.212-b03, mixed mode)
$ javaws /tmp/mozilla_blabla0/vkvm.jnlp java.security.AccessControlException: access denied ("java.io.FilePermission" "/usr/bin/xprop" "execute") at java.security.AccessControlContext.checkPermission(AccessControlContext.java:472) at java.security.AccessController.checkPermission(AccessController.java:884) at java.lang.SecurityManager.checkPermission(SecurityManager.java:549) at java.lang.SecurityManager.checkExec(SecurityManager.java:796) at java.lang.ProcessBuilder.start(ProcessBuilder.java:1018) at java.lang.Runtime.exec(Runtime.java:620) at java.lang.Runtime.exec(Runtime.java:450) at java.lang.Runtime.exec(Runtime.java:347) at org.GNOME.Accessibility.AtkWrapper.<clinit>(AtkWrapper.java:34) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.lang.reflect.Constructor.newInstance(Constructor.java:423) at java.lang.Class.newInstance(Class.java:442) at java.awt.Toolkit.loadAssistiveTechnologies(Toolkit.java:805) at java.awt.Toolkit.getDefaultToolkit(Toolkit.java:886) at javax.swing.UIManager.getSystemLookAndFeelClassName(UIManager.java:611) at net.sourceforge.jnlp.runtime.JNLPRuntime.initialize(JNLPRuntime.java:218) at net.sourceforge.jnlp.runtime.Boot.init(Boot.java:326) at net.sourceforge.jnlp.runtime.JnlpBoot.run(JnlpBoot.java:58) at net.sourceforge.jnlp.runtime.Boot.run(Boot.java:245) at net.sourceforge.jnlp.runtime.Boot.run(Boot.java:63) at java.security.AccessController.doPrivileged(Native Method) at net.sourceforge.jnlp.runtime.Boot.main(Boot.java:195) This application does not specify a Codebase in its manifest. Please verify with the applet's vendor. Continuing. See: http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/security/no_redeploy.html for details. This application does not specify a Codebase in its manifest. Please verify with the applet's vendor. Continuing. See: http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/security/no_redeploy.html for details. Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Application title was not found in manifest. Check with application vendor Packet log written to: /home/blabla/c:\javaViewer.log ==== propertyChange: (SESSION_STATE):CONNECTING==== 05/28/2019 10:33:45:595: SSL: context protocol = SSLv3 05/28/2019 10:33:45:726: SSLv2Hello 05/28/2019 10:33:45:752: SSLv3 05/28/2019 10:33:45:770: TLSv1 05/28/2019 10:33:45:791: TLSv1.1 05/28/2019 10:33:45:800: TLSv1.2 05/28/2019 10:33:45:834: ======connectToPort====== 05/28/2019 10:33:46:003: User Login Request: 0x100 05/28/2019 10:33:46:082: ======connectToPort - sendRequest====== 05/28/2019 10:33:46:108: packet type( 0x100) 05/28/2019 10:33:46:091: SSL: checkServerTrusted() called. 05/28/2019 10:33:46:190: SSL: getAcceptedIssuers() called. Sending packet: com.avocent.kvm.e.a.bf@96a35c (8, 208). ...
$ java -version openjdk version "1.8.0_212" OpenJDK Runtime Environment (build 1.8.0_212-8u212-b01-1~deb9u1-b01) OpenJDK Server VM (build 25.212-b01, mixed mode)
$ jarsigner -verify -verbose avctDRAC5Viewer.jar | tail -n 1 The signer certificate expired on 2013-08-31. However, the JAR will be valid until the timestamp expires on 2024-03-03.
RAC Information Name DRAC 5 Product Information Dell Remote Access Controller 5 Hardware Version A00 Firmware Version 1.60 (11.03.03) Firmware Updated Wed Nov 13 15:09:04 2013 RAC Time Tue May 28 10:02:09 2019
Tiskni Sdílej: