Re: Mysteriously hacked?
From: David (thunderbolt01_at_netscape.net)
Date: 06/08/04
- Next message: cfh: "Iptables Rule Placement"
- Previous message: Moritz Lenz: "Re: Unknown service on port 21 and 143 detected via nessus - Next steps?"
- In reply to: François Duranleau: "Mysteriously hacked?"
- Next in thread: François Duranleau: "Re: Mysteriously hacked?"
- Reply: François Duranleau: "Re: Mysteriously hacked?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 08 Jun 2004 20:58:17 GMT
François Duranleau wrote:
>
> Some info on my Linux box and the network: I am running Debian (Sarge,
> a.k.a. testing), kernel version 2.4.25, no ipchains or iptables, but I
If that is a stock 2.4.25 kernel then you may find this short
clip from a kernel security notice of interest.
Why aren't you running a firewall too?
#--- snip ---
The most serious of the fixed issues is an overflow in
ip_setsockopt(), which could allow a local attacker to gain root
access, or to crash or reboot the machine. This bug affects 2.4
kernels from 2.4.22 - 2.4.25.
#---
-- Confucius: He who play in root, eventually kill tree. Registered with The Linux Counter. http://counter.li.org/ Slackware 9.1.0 Kernel 2.4.26 SMP i686 (GCC) 3.3.3 Uptime:7 days, 11:49, 1 user, load average: 1.02, 1.04, 1.00
- Next message: cfh: "Iptables Rule Placement"
- Previous message: Moritz Lenz: "Re: Unknown service on port 21 and 143 detected via nessus - Next steps?"
- In reply to: François Duranleau: "Mysteriously hacked?"
- Next in thread: François Duranleau: "Re: Mysteriously hacked?"
- Reply: François Duranleau: "Re: Mysteriously hacked?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
