Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLinuxLinux 64 bit Kernel exploit - patch your systems now
freitasm

BDFL - Memuneh
79309 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

#68372 20-Sep-2010 16:20
Send private message

Just posting this because seeing some Linux users are in the "Linux is so secure I don't have to worry" camp...

Story on Slashdot, security advisory.

And yes, I know it requires access to the machine. But as a system admin do you know what your end users are doing right now?




Please support Geekzone by subscribing, or using one of our referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSync 

Create new topic
muppet
2571 posts

Uber Geek

Trusted

  #382342 20-Sep-2010 16:26
Send private message

freitasm: But as a system admin do you know what your end users are doing right now?



Yes, because I lock the entire system down with Grsecurity. So running your own binary isn't allowed on my systems, it has to be a root owned binary in a root owned directory. Plus everything executed is logged if you're untrusted.

But being a smart-arse aside, this is big hole. But it's nowhere near as bad as that slashdot article paints it!




Audiophiles are such twits! They buy such pointless stuff: Gold plated cables, $2000 power cords. Idiots.

 

OOOHHHH HYPERFIBRE!



freitasm

BDFL - Memuneh
79309 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #382347 20-Sep-2010 16:31
Send private message

You are a good admin and do it. There are hundreds of thousands of systems around, and most likely some underpaid admin is not doing it. So why not let people know about this?

I posted this on Twitter and the only thing I got was replies from haters who started attacking with comments that sound like "Oh, but Linux is still safer." or "This is not as bad as the Windows problems".

For $deity sake, I am not into "my OS is bigger than yours", but just posting a courtesy note, a reminder, to those admins who might have missed it.





Please support Geekzone by subscribing, or using one of our referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSync 

muppet
2571 posts

Uber Geek

Trusted

  #382350 20-Sep-2010 16:34
Send private message

Yea, like I said, I was just being a smart arse.

My main point (I guess not very clearly made) was that the Slashdot article is extremely alarmist when it doesn't need to be. Not that it wasn't worth posting.




Audiophiles are such twits! They buy such pointless stuff: Gold plated cables, $2000 power cords. Idiots.

 

OOOHHHH HYPERFIBRE!



oldmaknz
536 posts

Ultimate Geek


  #382352 20-Sep-2010 16:36

There are a load more 0day local root exploits. Any good sysop will be able to keep people off regular users anyway.

+++ GRsec, great modification for all Linux admins.

Will patch soon. I get automatic upgrades from Cron-apt but I assume it'll be a while before the kernel is patched.

michaelmurfy
meow
13265 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #382355 20-Sep-2010 16:38
Send private message

Puppet is good :) - All my systems are clean.




Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

oldmaknz
536 posts

Ultimate Geek


  #382356 20-Sep-2010 16:40

In fact, this was patched in Ubuntu last week. Admins just need to perform a simple upgrade. Done and done :P

Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright