Re: Announcement - PR1.3.1 official security update
 

Not sure if CSSU update available yet or missing repository

Re: Announcement - PR1.3.1 official security update
 

So the update is now here, i was wondering where could i find a list with wich bug are fixed and what new features are now on the new update?

Re: Announcement - PR1.3.1 official security update
 

No bugs fixed, just a security update how it said in the app manager. Just certificate fixes.

Re: Announcement - PR1.3.1 official security update
 

Now i know :D thanks.

Re: Announcement - PR1.3.1 official security update
 

When you update through the program manager you can have a look at the details of changes before proceeding. There you'd see that it is just packages related to certman that are being update.

Re: Announcement - PR1.3.1 official security update
 

Just updated my phone and noticed that Qcpufreq (http://maemo.org/downloads/product/Maemo5/qcpufreq) doesn't show temperature anymore. Is there something beside certificates in the update?

Re: Announcement - PR1.3.1 official security update
 

i have updated it too , but temp is working fine at my side .
and i have the same question as yours ,is there something beside certificates in update ? :/:/:/

Re: Announcement - PR1.3.1 official security update
 

I looked at the details in app manager, didn't see anything else.

Re: Announcement - PR1.3.1 official security update
 

i have updated it from FAM and there was nothing showing in changelog , but when i installed it it showed my 32 applications , hildon desktop and bla bla bla but while using the device it isn't showing any difference :$

hope to see the changelog soon from the devs :$

Re: Announcement - PR1.3.1 official security update
 

This is a simple fix for the DigiNotar issue and a fixed security control panel applet.

http://lists.maemo.org/pipermail/mae...er/028675.html

Re: Announcement - PR1.3.1 official security update
 

last N900 bought (new) a couple weeks ago, thus warranty extends to October 2013.

Re: Announcement - PR1.3.1 official security update
 

I have installed this security fix and now I have a problem:

AGPS no longer working.
I checked the setting, it's okay but I don't get located any longer via cell towers.
So no longer FourSqare inside buildings, where there is no GPS signal.
So bad. Is there a fix or trick I have overlooked?
The preset AGPS server is "supl.nokia.com" - is there another server I could use?
Thanks for any help.

Re: Announcement - PR1.3.1 official security update
 

This most probably has nothing to do with the security fix. Use the Google server for AGPS

Re: Announcement - PR1.3.1 official security update
 

And the Google Server address is supl.google.com.

Re: Announcement - PR1.3.1 official security update
 

I have not receive the update yet in Hong Kong. Do I need to manually check the App. Manager for it or it will notice me the update just like the others?

Re: Announcement - PR1.3.1 official security update
 

Hi there fellow HK N900 user! I just received the notification for the update yesterday evening and updated after getting home. The process took a few mins and so far its been fine. If you haven't received the notification, you can try checking for the update in App. Manager, but it will probably be push through in the next couple of days.

On a more general note, I haven't noticed any additional changes/fixes, and judging by the small size of the update it probably is limited to the security updates. But still, a big thanks should go out to Nokia and the CSSU team for the support! I never thought we would see another official update to the N900 from Nokia and it's welcome no matter how small it is.

Re: Announcement - PR1.3.1 official security update
 

it was small like my penis

Re: Announcement - PR1.3.1 official security update
 

I bought a second N900 this summer, the warranty of which extends to July 27, 2013. Do you want me to PM extra details to you, or how exactly do I "let the council know"? I could even send a scan of the receipt if it would help!

Re: Announcement - PR1.3.1 official security update
 

This is a good thread, where we can find all of those, who still don't use cssu:)

Re: Announcement - PR1.3.1 official security update
 

I dont use CSSU, I love portrait.
And i'm not sure i will update this patch either :)

Re: Announcement - PR1.3.1 official security update
 

The update went through fine for me, although I noticed Bluetooth was turned off afterwards. Turned it back on and it works fine. I haven't noticed if any other settings have changed.

Re: Announcement - PR1.3.1 official security update
 

The first part kind of confuses me. Doesn't CSSU contain portrait as one of its main features?

The second disturbes me. It's a security issue. It's a must to take care of it or otherwise don't user the N900 on the internet! If not by this update delete the CA by hand then if you know how!

Re: Announcement - PR1.3.1 official security update
 

Your right!!! i meant landscape... i don't get why people want portrait on a keyboard device.

Delete the CA... why would that help.. i thought the patch blocks the cert provide or flags the bad certs.
regardless.. not updating this one right now... i'll try it out on one of my other N900's :D

Re: Announcement - PR1.3.1 official security update
 

In my case there were certain buildings were neither GPS nor
cell tower location worked.
That was even before PR1.3.1 .
I guess that is because the phone is logged into some kind of
"cell phone amplifier" that are mounted in the building .
Currently I am in such a building so I cannot test.
;-)

Re: Announcement - PR1.3.1 official security update
 

An apt-get dist-upgrade fcked my device - literally fcked it up :mad:

Re: Announcement - PR1.3.1 official security update
 

...what does that mean for nitdroid?

Re: Announcement - PR1.3.1 official security update
 

Another thing you don't get is what the CSSU can actually do. I use CSSU to block applications from going into portrait. Any and all of them, including those who otherwise don't provide the option.

Re: Announcement - PR1.3.1 official security update
 

Never execute dist-upgrade on Maemo 5 for obvious reasons...

Re: Announcement - PR1.3.1 official security update
 

Is the CSSU update already available?

Re: Announcement - PR1.3.1 official security update
 

I see that a few people have already reported issued with AGPS... so far, since the update, I have had zero GPS functionality whatsoever. My N900 is unable to locate itself for foursquare check-ins, or to show its location in the IM client.

Is anyone else experiencing this issue?

Re: Announcement - PR1.3.1 official security update
 

FWIW I am using CSSU and my AGPS hasn't worked in over a month (tried both nokia and google SUPL servers, and rebooted after changing). I have to stand outside and wait several minutes to get a GPS lock anywhere.

Re: Announcement - PR1.3.1 official security update
 

I decided to reflash my N900 today, and what a surprise - new update. I updated it without reading this thread first and now have a question.
-Non-CSSU users, you can update. If you ever want to install the CSSU, the installer will work fine on PR1.3.1.
-The CSSU already includes the core fixes, the UI is what needs to be updated, you should not try to install this if you want the CSSU, we'll provide the UI update as soon as it's out. by MAG.
So, can I install CSSU now or not? I'm a little confused here.
Thanks.

Re: Announcement - PR1.3.1 official security update
 

read my lips:

yes you can install the CSSU.

Re: Announcement - PR1.3.1 official security update
 

I get almost instant GPS-lock with supl.google.com, but the Nokia SUPL has been abysmal since at least July for me.

Re: Announcement - PR1.3.1 official security update
 

Another "me too" here -- I was playing with Google Latitude on Monday, no problems with GPS. Did the security update on Tuesday evening. Today, AGPS doesn't seem to work; have to wait for the non-assisted GPS to lock on. (Once that happens, of course, everything is fine again.)

I'm not using CSSU, haven't touched my kernel, still using Nokia's supl. I suppose I should try out the Google supl; it does seem more like this would be a problem with the internet connection than with the security update.


Update: Ok, I just tried out the Google supl (after waiting long enough for the previous satellite list to go stale), and yes, the AGPS now gives me a near-instant GPS lock on. So, I guess the Nokia supl is the problem here...

Re: Announcement - PR1.3.1 official security update
 

when can we expect the CSSU UI update dear MAG......rite now apt-get method shows this update, after CSSU update this will stay there or not? thanks.

Re: Announcement - PR1.3.1 official security update
 

My update was successful but I'm not happy with just security fix.

Re: Announcement - PR1.3.1 official security update
 

I have not seen any such lockscreen update.
When I updated to PR1.3.1, it only updated libmaemosec-certman-applet0, libmaemosec-certman0, libmaemosec0, maemosec-certman-applet, maemosec-certman-common-ca, maemosec-certman-tools and mp-fremantle-generic-pr and nothing else.

I am using supl.google.com for AGPS and it can take up to a minute to get a proper GPS lock on the location I am actually at. (although some of the delay can be explained by the fact that I run at 2G to preserve the battery life)

Re: Announcement - PR1.3.1 official security update
 

Examining the changes, it seems to have updated the
maemo-security-certman package (which builds libmaemosec0, libmaemosec-certman0, maemosec-certman-tools and maemosec-certman-common-ca packages). The previous version was 0.1.6. The new version is 0.2.0 and the changes seem to be:
maemo-security-certman (0.1.7) unstable; urgency=low

* Added '-e' command line switch to cmcli to echo the
key id of installed certificates.
Fixes: NB#154963

maemo-security-certman (0.1.8) unstable; urgency=low

* Backported fix of NB#172389 from Harmattan: cryptoki_module causes
a crash if not all certificates can be fetched from the store.
This can be caused by a broken store or similar causes.
Fixes: MB#10423
* Updated the root certificate set.

maemo-security-certman (0.1.9) unstable; urgency=low

Updated the root certificate set. Removed the compromised
DigiNotar CA and a bunch of expired roots and added the new
roots. Common-ca now matches NSS 3.13 changeset 76201:04a58ba1ce1e
of Aug 31, 2011 from http://hg.mozilla.org/mozilla-central/.
Also backported from Harmattan the handling of several certificates
with the same public key, which is needed for Verisign roots
00d85a4c25c... and f3a27298eeb...

maemo-security-certman (0.2.0) unstable; urgency=low

Added explicit blacklisting of compromised or rogue
certificates following the Mozilla model. A new shared
cert domain "blacklist" now contains all blocker certs from
Mozilla's built-in certdata.txt as in changeset 76451:cf1ba8f0dbf7
Sep 02. See Mozilla bug 683261 for further information.
The downside is that the blacklisted certificates appear
in the settings applet as if they were valid since it shows the
contents of all domains regardless of their type the same way.
This must be fixed in the maemo-security-certificates-applet.

maemo-security-certman is LGPL and the source code for versions up to 0.2.0 (including any new dev packages) is at http://gitorious.org/maemo-5-certifi...curity-certman including all the root CAs and keys

There was also an update to maemo-security-certman-applet (which builds maemosec-certman-applet and libmaemosec-certman-applet0) from version 0.1.2 to version 0.1.4. Changes seem to be:
maemo-security-certman-applet (0.1.3) unstable; urgency=low

* Handle properly certificate names with markup characters in them
Fixes: NB#122916

maemo-security-certman-applet (0.1.4) unstable; urgency=low

Release 0.1.4
Mark blacklisted certificates invalid. Also replaced the faulty
debian/copyright file with proper license info.

This package is unfortunatly "nokia proprietary" licensed. There is a git page here http://maemo.gitorious.org/maemo-af/...certman-applet that just says something about "maemo-security-certman-applet" being gone.

As for the CSSU, they can already pull the 0.2.0 maemo-security-certman into their own maemo-security-certman tree (if they havent already done so), its just the update to maemo-security-certman-applet they are waiting for Nokia on. I suspect that maemo-security-certman-applet will remain closed source but with permission given to the CSSU to distribute the maemosec-certman-applet_0.1.4+0m5_armel.deb and libmaemosec-certman-applet0_0.1.4+0m5_armel.deb packages.

The good thing is that with maemo-security-certman being LGPL and open source, updating it with new root certificate sets in the future is definatly possible.

Re: Announcement - PR1.3.1 official security update
 

sorry....big mistake!!
it was the mango theme lockscreen! so sorry......