The Alpine Linux project is pleased to announce the immediate
availability of version 3.11.3 of its Alpine Linux operating system.

The full lists of changes can be found in the [git
log](http://git.alpinelinux.org/cgit/aports/log/?h=v3.11.3).

Git Shortlog
------------

Andy Postnikov (2):
      community/drupal7: security upgrade to 7.69
      community/phpmyadmin: upgrade to 4.9.4

Bart Ribbers (1):

On Wed, 15 Jan 2020 22:40:01 +0100
Marc Göldner <magol@posteo.de> wrote:

> Hello Paul,
> 
> I've tried installing the lts kernel. When I boot the domU from this
> kernel I get a kernel panic. Do I have to add additional configuration
> parameters?
> 
> In the grub "menu.lst" I just copied the entry of the virtual kernel and
> adopted it for the lts.

Can you file a bug of that? With detailed steps how to reproduce. Also
mention that it works with linux-virt.

On Thu, 16 Jan 2020 09:22:30 -0500
"Drew DeVault" <sir@cmpwn.com> wrote:

> On Thu Jan 16, 2020 at 3:19 PM, Natanael Copa wrote:
> > I think it as been mentioned before but I think it would be nice if we
> > could have 2 operational install modes:
> >
> > - quick: in-the-air extraction/verification of packages (current style)
> > - safe: store all packages locally and verify before trying to extract
> > them
> >
> > safe mode is useful when the network connection is unreliable. In case
> > of network error it could continue where it left off last time, rather
> > than try fetch it all from scratch. Something like

Hi!

On Sun, 29 Dec 2019 18:11:50 +0200
Timo Teras <timo.teras@iki.fi> wrote:

> Hi,
> 
> On Tue, 3 Dec 2019 18:07:17 +0200
> Timo Teras <timo.teras@iki.fi> wrote:
> 
> > Another thing, I really want to improve is the security of 'apk audit'
> > and the system integrity checking. The concept is to create and store
> > signed file manifests in the DB that can be used to establish strong
> > trust in a system. (The current 'apk audit' was designed for 'lbu

On Mon, 30 Dec 2019 14:55:42 +0200
Timo Teras <timo.teras@iki.fi> wrote:

> Hi all,
> 
> I am currently going through the list of data that goes to a package
> and a repository index, as well as the installed db. And trying to
> draft the first schema version of what data goes where. So I am now
> having some issues I'd like to discuss here.
> 
> 1. Repository pinning
> 
> There's one fundamental issue in the current installed-db that causes
> pain - especially when we do strong signing. This is how the package

On Mon, 13 Jan 2020 23:35:54 +0000
David Davies <David.Davies@cybersecure.com> wrote:

> I have read a lot online that seems to indicate that busybox and musl
> don't use or support nsswitch.conf. Is there a way around this so we
> can set AD account permissions on the file system?

It should be possible with musl-nscd package.
https://github.com/pikhq/musl-nscd

-nc

The Alpine Linux project is pleased to announce the immediate
availability of version 3.11.2 of its Alpine Linux operating system.

This is a bugfix release that fixes missing dtbs files for rpi and missing
initramfs image for netboot.

The full lists of changes can be found in the [git
log](http://git.alpinelinux.org/cgit/aports/log/?h=v3.11.2) and [bug
tracker](https://gitlab.alpinelinux.org/alpine/aports/-/milestones/144).

Git Shortlog
------------

Andy Postnikov (1):

We are pleased to announce the release of Alpine Linux 3.11.0, the first in
the v3.11 stable series.

New features and noteworthy new packages
----------------------------------------

* Linux 5.4 kernel (linux-lts)
* Support for Raspberry Pi 4 (aarch64 and armv7)
* Initial GNOME and KDE support
* Support for Vulkan
* MinGW-w64 and DXVK support
* Rust is available on all architectures except s390x

Significant updates

On Wed, 18 Dec 2019 16:39:43 -0400
PICCORO McKAY Lenz <mckaygerhard@gmail.com> wrote:

> maybe you must sear at alpine irc channel or
> https://gitlab.alpinelinux.org/alpine
> 
> but GUYS THE MAN HAVE A POINT HERE! where it's the security channel
> for alpine linux?

Where is the volunteer to set up and manage the security channel? We
need someone that can help us set it up and manage it.

Meanwhile, you can follow the RSS feed from gitlab (follow closed
issues with label T-security):

On Wed, 18 Dec 2019 15:24:52 +0000 (UTC)
"wojciech.kopras@yahoo.com" <wojciech.kopras@yahoo.com> wrote:

> Hi, I would like to keep my systems secure. And I wonder how it can be done with Alpine Linux.

> 
> I tried to find something. Is there anything new regarding https://lists.alpinelinux.org/~alpine/users/%3CCAKXJ0%3Di57cR-9ORP2%3DA-_c0nQPR17twKULskqVQL3Lwo_JuPLg%40mail.gmail.com%3E ?
> 
> I tried to ask also others, but I've got no helpful answer. https://serverfault.com/questions/992400/how-to-get-information-about-security-updates-for-alpine-linux 
> 
> What would you suggest? Or what is the procedure that you use?
> 

To keep your machine updated run `apk upgrade -U -a` regularily. Stable