Posts

Update BIOS firmware version 1.9.1 is available for Dell Latitude 7400. This firmware was released on 30 June 2020. It is marked Urgent and contains the following fixes and enhancements: Fixes: Fixed the issue where the system cannot detect the Intel Software Guard Extensions (SGX) device when SGX is enabled. Firmware updates to address security advisory INTEL-SA-00295 (CVE-2020-0531, CVE-2020-0532, CVE-2020-0533, CVE-2020-0535, CVE-2020-0536, CVE-2020-0537, CVE-2020-0538, CVE-2020-0539, CVE-2020-0540, CVE-2020-0545, CVE-2020-0594, CVE-2020-0595, CVE-2020-0596, and CVE-2020-8674)....

This blog post is mainly about my practicing of managing security risk on a RHEL system, especially learning how to use the occasionally option passed to YUM command. It is probably not a good resource teaching how to properly manage security risks in general. Identify all critical, important, and moderate security notices on this server. [root@puppet2 ~]# yum updateinfo --security Updating Subscription Management repositories. Red Hat Enterprise Linux 8 for x86_64 - Supplementary (RPMs) 21 kB/s | 2....

Let’s find out the name of the package using the awesome eix command, and install that package. ~ # eix usbguard * sys-apps/usbguard Available versions: ~0.7.6-r1 ~0.7.8 {bash-completion dbus ldap policykit static-libs systemd} Homepage: https://github.com/USBGuard/usbguard Description: Daemon protecting your computer against BadUSB ~ # emerge --ask sys-apps/usbguard These are the packages that would be merged, in order: Calculating dependencies... done! !!! All ebuilds that could satisfy "sys-apps/usbguard" have been masked. !...

Last year, I already wrote a blog post about the same topic: Configure Encrypted Storage With LUKS, and I had used fdisk to create a disk partition. In this post, I’ll use parted to achieve the same thing. I’m going to perform this operation on a server called servera on a disk device /dev/vdb. First, let’s verify that vdb is available and has no partition: [root@servera ~]# parted -l ... Error: /dev/vdb: unrecognised disk label Model: Virtio Block Device (virtblk) Disk /dev/vdb: 1074MB Sector size (logical/physical): 512B/512B Partition Table: unknown Disk Flags: Use parted to create a partition on vdb using the whole disk....

Gentoo provides a package called app-admin/ansible for Ansible. To install it, just run: ❯ sudo emerge --ask app-admin/ansible Note that unlike Ansible package on CentOS/Fedora, there is no default ansible.cfg provided with the Gentoo Ansible package. ❯ ansible --version ansible 2.9.9 config file = None configured module search path = ['/home/kenno/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.7/site-packages/ansible executable location = /usr/lib/python-exec/python3.7/ansible python version = 3.7.7 (default, May 9 2020, 19:52:18) [GCC 9....