Calamares Site Certificate Updated

The expired SSL certificate for (this website) has been replaced by a Lets Encrypt certificate. I am also setting up certbot to automatically renew the certificate – that should have been done earlier. No systems were affected during this time, only visitors to the website.

Written on August 1, 2017
Read More

Calamares Site Certificate

The SSL certificate for (this website) has expired. It was valid to 2017-07-16 (July 16th, 2017). Due to, well, human nature, I didn’t think to renew the certificate until I was halfway up a mountain in Spain. The view is great, but connectivity not so much. The certificate-is-expired situation is expected to last no more than two weeks, but until then SSL certificate warnings will be the norm. I’d also suggest not downloading things from a site with an expired SSL certificate. Use the Github releases page to obtain tarballs instead.

Written on July 16, 2017
Read More

Calamares Password Weakness

Systems installed by Calamares up to and including Calamares 3.1 have a weaker password salt than they should. This weakness is important if an attacker has a way to obtain the password hash. The Calamares team believes that installed systems should be as secure as possible, and therefore considers this weakness important.

Users are advised to reset their password on installed systems by using the password(1) utility, which will provide a stronger salt and hence a better password hash. This applies to all user accounts created during the installation of the system: the user’s own account and to the root account, if the root account has a password.

Written on July 3, 2017
Read More

Calamares 3.1.1 is out

The Calamares team is happy to announce the immediate availability of Calamares 3.1.1, an incremental bugfix release in the 3.1 series.

Calamares is a distribution-independent system installer, with an advanced partitioning feature for both manual and automated partitioning operations. Calamares is designed to be customizable by distribution maintainers without need for cumbersome patching, thanks to third party branding and external modules support.

Written on June 26, 2017
Read More