LINUX.IE, website of the Irish Linux Users' Group
Tux rules!

   
Home
New Users
Articles
Download
Projects
Community
Vendors

  Print Version
Email to...
 
Archives:


planetILUG

Recent News

News Archive


Join the
ILUG
on FaceBook


Join the
ILUG
on LinkedIn


Join the
ILUG SETI
Group



















 
 :: Mailing Lists

[ILUG] kernel security hole

[ILUG] kernel security hole

Pádraig Brady P at draigBrady.com
Wed Feb 13 17:37:38 GMT 2008 

oscar cassetti wrote:
> Hi,
> 
> I think that if you are running a 2.4 kernel series you are ok. I
> believe you should run this kernel if your server is mission critical.
> You can always update to 2.6.24.2 or downgrade to kernels prior to 2.6.17.
> Then there are some general security tricks that prevent those kind of problem.
> Eg. if a compiler is not installed then it is more difficult to
> compile those stuff.  You should also run webserver in chroot
> environments.

Isn't it trivial to break out of chroots?

> PAM and stuff like aide and syslog ng can help.
> some references
> http://kerneltrap.org/node/15471
> http://kerneltrap.org/Linux/Patching_CVE-2008-0600_Local_Root_Exploit

Aren't there loads of local root exploits already?
Why so much news about this one?

Pádraig.

More information about the ILUG mailing list
Read this without the formatting.
                                                                                                    

  

Hosted by HEAnet


 Maintained by the ILUG website team. The aim of Linux.ie is to support and help commercial and private users of Linux in Ireland. You can display ILUG news in your own webpages, read backend information to find out how. Networking services kindly provided by HEAnet, server kindly donated by Dell. Linux is a trademark of Linus Torvalds, used with permission. No penguins were harmed in the production or maintenance of this highly praised website. Looking for the Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
RSS Version
Powered by Dell