Free PKG file downloads

Please note:

All packages and files on this page are provided under the following terms and conditions:

• They are provided **AS IS**
• Without warranty or support of any kind
• Without the implied suitability of merchantability
• Without the implication that they are error free
• Without the implication that they can be uninstalled
• Without the implication that they will cause no conflicts

In short: These packages work for us, they might not work for you. If you do not accept the above mentioned risks, terms and conditions, then please look elsewhere. Thank you.

/root/backspace.sh is a shell script that edits the /root/.inputc file to allow proper backspace key function when logged in as root.

This RPM will install the script as /root/backspace.sh and will execute it once so that it edits /root/.inputc and fixes the backspace key issue. For more information also see this article.

Reboot Required: No
Sends registration email: No

Midnight Commander
mc-4.5.55-SOL1.i586.rpm md5sum: 6aa0bad0c134b3e2ec54c5403a46ec83	Posted: Feb 14, 2005	Size: 1.230.890 bytes

Midnight Commander is a visual shell much like a file manager, only with many more features. It is a text mode application, but it also includes mouse support if you are running GPM. Midnight Commander's coolest features are its abilities to FTP, view tar and zip files, and to poke into RPMs for specific files.

Reboot Required: No
Sends registration email: No

Pine & Pico
pine-4.58-SOL1.i586.rpm md5sum: 19e82eb95d0be1914f2f21fcdc3272e5	Posted: Feb 14, 2005	Size: 2.330.987 bytes

Pine is a very popular, easy to use, full-featured email user agent which includes a simple text editor called pico. Pine supports MIME extensions and can also be used to read news. Pine also supports IMAP, mail and MH style folders. Pine should be installed because Pine is a very commonly used email user agent. It also contains the file editor "pico" which is ideally suited for quick editing tasks and less cumbersome than "vi".

Reboot Required: No
Sends registration email: No

This package is a repackaged version of the official Sun Cobalt RaQ4-All-Security-2.0.1-15959.pkg. It fixes multiple buffer overruns in Postgresql. In addition, Postgresql debugging is now disabled by default.

However, this patch does not contain the PHP upgrade which is usually included in the official Sun Cobalt RaQ4-All-Security-2.0.1-15959.pkg!

Therefore this patch can be installed just fine on servers which have a third party PHP installation - like the Solarspeed.net PHP or the one from PKGmaster.com. See our news article about this matter for more information.

If you do not have a third party PHP installation, then do not install this patch - use the official Sun Cobalt patch instead! (The official patch can be found here).

Reboot Required: YES
Sends registration email: No

If you have OpenSSH from PKGmaster.com installed, then you have to uninstall it first (!!)

OpenSSH enables you to connect securely (encrypted) to your Sun Cobalt appliance. This Package Contains both client and Server software.

Please note that there is no evidence that the SSH protocol is vulnerable to the OpenSSL/TLS timing attack described in http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf

This package is statically compiled against openssl-0.9.7a and zlib-1.1.4.

Reboot Required: No
Sends registration email: No

Three weeks after the last vulnerability in Sendmail was announced another root exploit one has been found in Sendmail. These patches fix both vulnerabilities:

a.) A "Remote Header Processing Vulnerability" in Sendmail. Attackers may remotely exploit this vulnerability to gain "root" or superuser control of any vulnerable Sendmail server. The full details of this vulnerability are outlined in ISS X-Force's Advisory.

b.) Michal Zalewski found a vulnerability in Sendmail versions 8.12.8 and prior which could possibly lead to a remote root exploit. The findings are outline here.

The PKGs above were built with the patches which the Sendmail consortium released to address this issue (patch a / patch b).

The Qube3, RaQ4, XTR and the RaQ550 PKG are fully uninstallable. The RaQ2 and RaQ3 package cannot be uninstalled.

Please note: 

a.) RaQ3 and RaQ4 only: If you have the first unofficial Sendmail patch installed, then remove the listfile /var/lib/cobalt/RaQ*-Solarspeed.net-Sendmail-*.md5lst first:

rm /var/lib/cobalt/RaQ*-Solarspeed.net-Sendmail-*.md5lst

Then install the new package either from the GUI or the command line.

b.) If you have MailScanner installed (the one NOT from Solarspeed.net - ours is fine), then you might have to restart MailScanner manually from the command line after applying this patch. 

c.) It does not matter if you already have the Sun Cobalt patch 16402 installed or not. But make sure that you install our patch after you installed 16402.

d.) If you have a RaQ550 and the package fails to install, then please confirm that the checkbox "Package must be authenticated" (in BluelinQ / Settings) is NOT checked.

Post release update: The Qube3 and RaQ550 packages (and RPM files) have been renamed to avoid possible problems during the installation.

Reboot Required: No
Sends registration email: No

Eudora/Qualcom Qpopper-4.0.5 (Security upgrade)
RaQ34-Qpopper-4.0.5.pkg md5sum: c945018328749e647b2f39a12d0164ab	Posted: March 14, 2003	Size: 104,643 bytes

A vulnerability was discovered in Qpopper-4.0.4 which could lead to a potential exploit. By default Sun Cobalt RaQs are not vulnerable to this discovered exploit, but people who installed our free Qpopper-4.0.4 for the RaQ3 and RaQ4 should install this PKG as soon as possible.

Please note: If you have our Qpopper-4.0.4 installed, then delete the file /var/lib/cobalt/RaQ34-Solarspeed.net-Qpopper-4.0.4.md5lst first.

Qpopper is the POP2/POP3 service installed on the RaQs. On an up to date patched RaQ Qpopper-3.0.2 is installed. The newer Qpopper-4.0.5 is much faster and (opposed to Qpopper-3.0.2) supports APOP properly. Works fine with POP-before-SMTP, too.

Please note: Once you have this PKG file installed and plan to use APOP for an account, then you might need to change/update the password for this account through the Admin Interface. Afterwards APOP will work just fine for that account.

Reboot Required: No
Sends registration email: No

Sendmail "Remote Header Processing Vulnerability" patch (Security upgrade)
RaQ3-Sendmail-8.9.3C7sol1.pkg md5sum: a723c08c864e662888d38361a53b7d2c	Posted: March 03, 2003	Size: 335,218 bytes
RaQ4-Sendmail-8.10.2-C1sol1.pkg md5sum: 4e0e620fd650915761cbe1f4d082bfb3	Posted: March 03, 2003	Size: 226,179 bytes
RaQXTR-Sendmail-8.10.2-C1sol1.pkg md5sum: e981c8aab1520ce487d3d17ed1092e3a	Posted: March 04, 2003	Size: 226,299 bytes
RaQ550-Sendmail-8.11.6-1C4sol1.pkg md5sum: 54f5c3ef06ae3d8f39a00ce72962e8bb	Posted: March 03, 2003	Size: 259,767 bytes
Qube3-Sendmail-8.10.2-C2sol1.pkg md5sum: 76564600eae27df000d69550a6a03aa1	Posted: March 04, 2003	Size: 226,572 bytes

This PKGs fix a "Remote Header Processing Vulnerability" in Sendmail. Attackers may remotely exploit this vulnerability to gain "root" or superuser control of any vulnerable Sendmail server. The full details of this vulnerability are outlined in ISS X-Force's Advisory.

The PKGs above were built with a patch that the Sendmail consortium released to address this issue.

The Qube3, RaQ4, XTR and the RaQ550 PKG are fully uninstallable. The RaQ3 package cannot be uninstalled.

Please note: If you have MailScanner installed (the one NOT from Solarspeed.net - ours is fine), then you might have to restart MailScanner manually from the command line after applying this patch. 

If you have a RaQ550 and the package fails to install, then please confirm that the checkbox "Package must be authenticated" (in BluelinQ / Settings) is NOT checked.

Reboot Required: No
Sends registration email: No

Bind-8.3.4 (Security upgrade)
RaQ34-Bind-8.3.4.pkg md5sum: e17ec0afd3824f49ef0ea2f11539eda3	Posted: Nov 17, 2002	Size: 5,346,348 bytes

If you have our Bind-8.3.3.pkg installed, then upgrade ASAP! (Bind-8.3.3-2 is safe)

This PKG for the RaQ3 and RaQ4 upgrades the DNS server to BIND-8.3.4 by replacing the standard BIND-8.2.3 present on the RaQs. It will not affect your DNS records present on the server. This Bind-8.3.4 is supposed to fix multiple vulnerabilities. One of them has the potential of arbitrary code execution via a buffer overflow.

Please note: 

• This PKG upgrades Bind to a newer version than the one which is usually found on a RaQ3 or RaQ4. Therefore you will have to skip future Sun Cobalt patches which target Bind - or there might be conflicts.
  
• If you have our Bind-8.3.3-2.pkg (from Nov 14th)  installed, then you are already protected and don't need to upgrade again.
  
• If you have the older Bind-8.3.3.pkg (from 3rd July) installed, then you should upgrade. 
  
• If the new PKG refuses to be installed through the GUI, then remove the file /var/lib/cobalt/RaQ34-Solarspeed.net-Bind-8.3.3.md5lst and try again.

Reboot Required: No
Sends registration email: No

OpenSSH-3.5p1-1 (Privilege Separation enabled - statically compiled against OpenSSL-0.9.6g and Zlib-1.1.4)
RaQ3-RaQ4-OpenSSH-3.5p1-1.pkg md5sum: f738dae9c3babc4f6a9bbc89bf533072	Posted: Nov 06, 2002	Size: 1,807,977 bytes
RaQ550-SSH-3.5p1-1.pkg md5sum: 222a804f1581df90b2389a050be9fbde	Posted: Nov 06, 2002	Size: 1,797,939 bytes
Qube3-XTR-SSH-3.5p1-1.pkg md5sum: 6f440836e4a019437bc2427913c53156	Posted: Nov 29, 2002	Size: 1,753,553 bytes

If you have OpenSSH from PKGmaster.com installed, then you have to uninstall it first (!!)

OpenSSH enables you to connect securely (encrypted) to your Sun Cobalt appliance. This Package Contains both client and Server software.

None of our versions are/were affected by the recently discovered trojan in OpenSSH !

This package is statically compiled against openssl-0.9.6g and zlib-1.1.4.

Reboot Required: No
Sends registration email: No

University of Washington IMAP-2001a (Security fix!)
RaQ34-IMAP-2001a.pkg md5sum: 94bb02c6b5ad4f8c1ae7cb39cf466338	Posted: April 28, 2002	Size: 2,166,351 bytes

The RaQ3 and RaQ4 usually use the University of Washington IMAP version 4rev1 v12.264.

A vulnerability exists in version 12.264 of the University of Washington IMAPd server (UM-IMAP), implementing IMAP4rev1. This weakness could allow a logged in user to execute arbitrary code. As far as is known this does not allow the user to get root access, instead the code or shell is executed with the user's privileges.

This PKG installs IMAP-2001a (2001.315) which has this vulnerability fixed and comes with many enhancements. Works fine with POP-before-SMTP, too.

Reboot Required: No
Sends registration email: No

phpMyAdmin-2.2.6 (newer one available as paid service)
RaQ34-phpMyAdmin-2.2.6.pkg md5sum: a67fac4c44d3aba486281502db973428	Posted: April 25, 2002	Size: 390,605 bytes

This PKG installs phpMyAdmin-2.2.6 and enables it for all virtual websites.

Each of your virtual sites will have a browser based admin interface for MySQL at http://[sitename]/phpmyadmin/

The URLs are password protected and login is only granted to those who login with a valid MySQL username and password.

Requirements: PHP and MySQL.

Reboot Required: No
Sends registration email: No

Midnight Commander 4.5.42
RaQ3-RaQ4-Midnight-Commander-4.5.42.pkg md5sum: 76b6b59793324d66d214d9beb3faa6cd	Posted: April 25, 2002	Size: 1,392,741 bytes
Qube3-XTR-RaQ550-mc-4.5.42.pkg md5sum: 99849c0862463adeb587ebb472af949f	Posted: Nov 29, 2002	Size: 1,354,355 bytes

If you work a lot on the shell through SSH and know the old Norton Commander for DOS, then you'll love Midnight Commander. All file operations are just a few keystrokes away. The included editor, ftp client and the search and replace functions make it an extremely useful addition for anyone who has to spend more than a few minutes on the shell.

Once this PKG is installed anyone with shell access can type "mc" in their console and Midnight Commander will open up.

Please note: Some of the most useful functions of Midnight Commander are only available through the F2 to F10 keys. Not all types of terminal and not all SSH or Telnet clients support the use of these function keys. In that case use the ESC key and then press the corresponding number to simulate the F-key. Example: For F10 press ESC 0, for F4 press ESC 4

Reboot Required: No
Sends registration email: No