Yes. The former is the standard Stretch kernel and the latter is the Stretch kernel built for Jessie.
Thank you!
The 4.9.65-3+deb9u2~dpo+1 Kernel is already available according to https://packages.debian.org/jessie-backports/kernel/ but my OMV installation won`t find the update?! I Already did a apt-get update.
Btw i found a script to check Linux computers for this vulnerability:
Im a novice user so this might be a silly question but is
Kernel Version 4.9.65-3+deb9u2 equal Kernel Version 4.9.65-3+deb9u2~dpo+1~?
OMV does NOT release ANY kernel packages, all is delivered by the Debian project.
Ok thank you i was not aware of this fact.
But i would still like to understand which Kernel will fix the issue?!
I had the same Problem and i used this solution:
You need to configure your local DNS server (router, OMV Box) so it will answer DNS requests with your local IP.
For example:
Your public domains is "omv.domain.com"
The IP of your OMV Box is 192.168.0.33
Configure your DNS Server with the IP 192.168.0.33 for the Domain omv.domain.com.
You can do this by using your OMV machine as your local DNS server (with dnsmasq plugin).
You need to change the following file:
/etc/resolvconf/resolv.conf.d/base
add the following entry (replace with your adress and IP):
omv.domain.com 192.168.0.33
and restart the dnsmasq service.
Works great for me!
You are running a backport kernel. That's what bpo in the name means. See the following for an explanation of backports:
Is the backports kernel the default kernel in OMV 3? I can not remember that i ever changed anything kernel related.
*edit
Nevermind just found the Info:
http://www.openmediavault.org/?p=2131
"Use kernel/firmware backports by default"
So which Kernel has to be installed to fix CVE-2017-5754? Is it Kernel Version 4.9.65-3+deb9u2~dpo+1~?
Thank you!
Sorry for this late reply. I have never used the nginx plugin but usually you should be able tho change it directly in the nginx config file.
You find those files in
/etc/nginx/sites-enabled
Hi!
I've been searching the forum for informations regarding the Spectre/Meltdown vulnerability but could not find anything. So i did a little googling and found the following:
https://security-tracker.debian.org/tracker/CVE-2017-5754
A short
cat /proc/version
told me that my Box is running the following Kernel Version
Linux version 4.9.0-0.bpo.4-amd64 (debian-kernel@lists.debian.org) (gcc version 4.9.2 (Debian 4.9.2-10) ) #1 SMP Debian 4.9.65-3+deb9u1~bpo8+1 (2017-12-23)
So i guess this is a Debian 9 Kernel on Debian 8?!
The fix is included in Kernel Version 4.9.65-3+deb9u2 as you can see in the Link above. Are there any plans to release this Kernel/Patch in the near future?
Thank you very much
themmm
If you would like to use your own certificate you should be able to edit your nginx config file. For example:
/etc/nginx/sites-enabled/openmeduivault-webgui
Point ssl_certificate and ssl_certificate_key to your certificate. For example:
ssl_certificate /etc/letsencrypt/live/your-domain.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/your-domain.com/privkey.pem;
save the file and do a
service nignx restart
Works for me.
