Done some work on #psmisc tonight, mainly some merge requests and bug fixes.
Matching NFS still can cause problems (they changed the way NFS "looks" in the proc filesystem) but I merged in some changes so it hangs less, I hope.
peekd will also work with ARM64 CPUs after someone gave me a patch for that.
I was looking at the net-snmp code trying to work out the differences between the PID file generating code for snmpd and snmptrapd.
🔹 snmpd uses open() with permissions of 0600
🔹 snmptrapd uses fopen() with permissions of 0644
Given there on my system there is only one other PID file with 0600 I patched snmpd to use 0644.
That should mean you're ok for most current WordPress security bugs except for CVE-2019-8943 which is a path traversal bug. I think it's fixed for WordPress proper but many modules are still vulnerable.
I've been triaging a bunch of net-snmp bugs on the #debian bug tracker tonight. There are a lot of old ones for versions of net-snmp long gone.
Strangely there are old bugs that are still there, like why are the permissions for snmp and snmptrapd pid files different?
Clearing out the old ones means I can concentrate on what is left.
The Debian specific patches are now applying cleanly so the next steps are
* to make sure it compiles
* Fix it when it surely won't
* Look at the Debian bugs and fix/close those
It's a pretty big codebase that takes forever to compile so it won't be a fast process.
I just realised my intro went when my instance crashed all those months ago.
My day job is a senior #networkengineer working on some very large and strange computer networks.
Procps-ng version 3.3.13 just got released. I have tagged and signed
the last commit and pushed it to gitlab. I will soon start on the
Debian packages and other distributions are free to update as well.
Thankyou to all the contributors!
net-snmp #Debian packages have just been uploaded to the ftp-master. They should be available on all mirrors shortly.
This is my first upload of the package after they became orphaned (no maintainer) and have a lot of fixes.
I am considering dropping the #python bindings. The pysnmp python module is better in almost all ways. There doesn't seem much interest in the net-snmp python bindings anyhow.