Finnix Blog

Finnix, the LiveCD for system administrators

Finnix 92.0 Released

Filed under: Announcements, Finnix by Ryan Finnie on Saturday, June 28, 2008, 9:59 pm (Permalink)

Finnix is a small, self-contained, bootable Linux CD distribution for system administrators, based on Debian testing. Today marks the release of version 92.0 for the x86/AMD64, PowerPC, and UML/Xen platforms.

Finnix 92.0 includes updated software (including a fix for the Debian OpenSSL security vulnerability), a Linux 2.6.25 kernel, and a new, graphical boot menu.

Finnix 92.0 coming soon

Filed under: Development, Finnix by Ryan Finnie on Saturday, June 14, 2008, 5:01 pm (Permalink)

Finnix 92.0 will be released soon. It will have a new 2.6.25 kernel, updated software, and, most visibly, a new boot menu.

There have been suggestions for a new boot menu for awhile now. I liked the idea in theory, but there were various problems with most implementations (no graphics; graphics, but no fallback to text mode; no easy way to add boot options, such as toram, testcd, etc; no way to default to 64-bit boot options). Debian’s recent announcement of debian-installer for lenny beta 2 introduced a new installer boot menu system based on bootmenu.c32, which looked very nice and solved most of the problems I mentioned. However, no default 64-bit option on multi-arch CDs, which the announcement mentioned and lamented.

I used Debian’s configs as a base for a Finnix test. The results were very nice, and I was ready to do as Debian did and accept that the improvements were worth the loss of 64-bit autodetection. However, an acquaintance encouraged me to look into it (”Sounds like it’s time for some OPEN SOURCE MAGIC”), and within a few hours, I had a working patch.

The debian-installer guys loved it and had the patch applied within an hour, and as well, it will be in Finnix 92.0. Here’s a development screenshot:

Finnix and Debian’s OpenSSL Vulnerability

Filed under: Finnix by Ryan Finnie on Monday, June 2, 2008, 1:05 am (Permalink)

All versions of Finnix from 89.0 to 91.1 (inclusive) contain the Debian OpenSSL predictable RNG vulnerability. The fix will be included with the next scheduled (approximately quarterly) release of Finnix in the next few weeks. In the meantime, if you use any OpenSSL-related programs (openssl itself, ssh, openvpn, etc) on Finnix, be sure to do the following as soon as you boot Finnix:

apt-get update && apt-get install libssl0.9.8

Finnix does not include any pre-generated keys, but any keys generated on Finnix with a vulnerable OpenSSL will be vulnerable.

User
Keep 'em coming!