The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Insecure kernel

Discussion in 'General Discussion' started by ThunderHostingDotCom, Jul 15, 2003.

  1. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    I received the belos error when logging into my WHM. What do I need to do to upgrade my kernal? I already tried up2date --nox -f kernel then rebooted my server & the update did not work. Please help. Thank you in advance.

    You are running an insecure kernel (2.4.18-10smp). You should upgrade to a newer version as soon as possible to avoid your system being compromised.

    cPanel.net Support Ticket Number:
     
  2. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    Which boot loader are you using?

    cPanel.net Support Ticket Number:
     
  3. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    No clue how do I find out?

    cPanel.net Support Ticket Number:
     
  4. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    grep bootloader /root/anaconda-ks.cfg

    cPanel.net Support Ticket Number:
     
  5. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!

    I did pico /root/anaconda-ks.cfg & the below is what I got...

    # Kickstart file automatically generated by anaconda.

    install
    lang en_US
    langsupport --default en_US.iso885915 en_US.iso885915
    keyboard us
    mouse generic3ps/2 --device psaux
    skipx
    network --device eth0 --bootproto static --ip 209.51.135.122 --netmask 255.255.255.248 --gateway 209.51.135.121 --nameserver 209.$
    rootpw --iscrypted $1$ÎÁóîÏM/î$B6BOSBhW2tD.tG07SFccY/
    firewall --medium --port ssh:tcp --trust eth0
    authconfig --enableshadow --enablemd5
    timezone America/New_York
    bootloader
    # The following is the partition information you requested
    # Note that any partitions you deleted are not expressed
    # here so unless you clear all partitions first, this is
    # not guaranteed to work
    #clearpart --all
    #part /boot --fstype ext3 --size=50 --ondisk=hda
    #part /var --fstype ext3 --size=10000 --ondisk=hda
    #part /usr --fstype ext3 --size=10000 --ondisk=hda
    #part / --fstype ext3 --size=3000 --ondisk=hda
    #part swap --size=1024 --ondisk=hda
    #part /backup --fstype ext3 --size=1 --grow --ondisk=hdb
    #part /home --fstype ext3 --size=1 --grow --ondisk=hda

    %packages
    @ Printing Support
    @ Sound and Multimedia Support
    @ Network Support
    @ Dialup Support
    @ Messaging and Web Tools
    @ Server
    esound-devel
    cdparanoia-devel
    VFlib2-devel
    pspell-devel
    cups-devel
    libogg-devel
    libvorbis-devel
    alchemist-devel
    rsync
    audiofile-devel
    arpwatch
    aspell-devel
    shapecfg
    sox-devel
    libao-devel
    isdn4k-utils-devel
    cdrecord-devel

    %post
    /usr/sbin/useradd dv2
    chfn -f 'dv2' dv2
    /usr/sbin/usermod -p '$1$tmüIcÉæÞ$0RVJTMGIeTa85N/59GTmL1' dv2

    cPanel.net Support Ticket Number:
     
  6. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    Looks like you're using GRUB. Check your GRUB config to make sure that the new kernel has entries within.

    cPanel.net Support Ticket Number:
     
  7. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!

    & how do I check my GRUB config?

    cPanel.net Support Ticket Number:
     
  8. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    Do ls -la /boot and paste the output here. This will allow me to see what kernel you downloaded today and create & post the appropriate grub conf entries for you.

    Also post the output from cat /etc/grub.conf

    cPanel.net Support Ticket Number:
     
  9. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!

    ls -la /boot

    total 9420
    drwxr-xr-x 4 root root 1024 Nov 20 2002 ./
    drwxr-xr-x 22 root root 4096 Jul 15 01:06 ../
    -rw-r--r-- 1 root root 5824 Jun 24 2001 boot.b
    -rw-r--r-- 1 root root 612 Jun 24 2001 chain.b
    -rw-r--r-- 1 root root 40598 Aug 7 2002 config-2.4.18-10smp
    -rw-r--r-- 1 root root 39947 Apr 18 2002 config-2.4.18-3
    drwxr-xr-x 2 root root 1024 Nov 16 2002 grub/
    -rw-r--r-- 1 root root 125429 Nov 16 2002 initrd-2.4.18-10smp.img
    -rw-r--r-- 1 root root 128788 Nov 15 2002 initrd-2.4.18-3.img
    -rw-r--r-- 1 root root 477 Nov 16 2002 kernel.h
    drwx------ 2 root root 12288 Nov 15 2002 lost+found/
    -rw-r--r-- 1 root root 23108 Jun 24 2001 message
    lrwxrwxrwx 1 root root 20 Nov 15 2002 module-info -> module-in
    fo-2.4.18-3
    -rw-r--r-- 1 root root 14431 Aug 7 2002 module-info-2.4.18-10smp
    -rw-r--r-- 1 root root 14431 Apr 18 2002 module-info-2.4.18-3
    -rw-r--r-- 1 root root 640 Jun 24 2001 os2_d.b
    -rwxr--r-- 1 root root 0 Nov 20 2002 quota.user*
    lrwxrwxrwx 1 root root 23 Nov 16 2002 System.map -> System.map
    -2.4.18-10smp
    -rw-r--r-- 1 root root 501549 Aug 7 2002 System.map-2.4.18-10smp
    -rw-r--r-- 1 root root 465966 Apr 18 2002 System.map-2.4.18-3
    -rwxr-xr-x 1 root root 3221932 Aug 7 2002 vmlinux-2.4.18-10smp*
    -rwxr-xr-x 1 root root 2835238 Apr 18 2002 vmlinux-2.4.18-3*
    lrwxrwxrwx 1 root root 16 Nov 15 2002 vmlinuz -> vmlinuz-2.4.1
    8-3
    -rw-r--r-- 1 root root 1117511 Aug 7 2002 vmlinuz-2.4.18-10smp
    -rw-r--r-- 1 root root 1030147 Apr 18 2002 vmlinuz-2.4.18-3



    cat /etc/grub.conf


    # grub.conf generated by anaconda
    #
    # Note that you do not have to rerun grub after making changes to this file
    # NOTICE: You have a /boot partition. This means that
    # all kernel and initrd paths are relative to /boot/, eg.
    # root (hd0,0)
    # kernel /vmlinuz-version ro root=/dev/hda5
    # initrd /initrd-version.img
    #boot=/dev/hda
    default=0
    timeout=10
    splashimage=(hd0,0)/grub/splash.xpm.gz
    title Red Hat Linux (2.4.18-10smp)
    root (hd0,0)
    kernel /vmlinuz-2.4.18-10smp ro root=/dev/hda5
    initrd /initrd-2.4.18-10smp.img
    title Red Hat Linux (2.4.18-3)
    root (hd0,0)
    kernel /vmlinuz-2.4.18-3 ro root=/dev/hda5
    initrd /initrd-2.4.18-3.img

    cPanel.net Support Ticket Number:
     
  10. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    You don't have an updated kernel in /boot nor are there any new entries in your grub config file. If you execute "up2date -l | grep kernel" does it list the kernel as being out of date?

    If it does:

    up2date --configure
    24 hit enter
    C (upper case "c") hit enter
    hit enter again

    Now execute up2date -u

    You may also want to check to make sure you have enough available disk space in /boot.
     
  11. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!

    SO just do this in SSH to find out if my kernel is out of date?

    up2date -l | grep kernel

    cPanel.net Support Ticket Number:
     
  12. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    Correct.

    cPanel.net Support Ticket Number:
     
  13. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!

    Oh & I have 50M on /boot with 32% left. Is that ok?

    cPanel.net Support Ticket Number:
     
  14. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    Ok I did
    up2date -l | grep kernel
    via SSH & it did not list a think it just went back to a blank command prompt.

    cPanel.net Support Ticket Number:
     
  15. alwaysweb

    alwaysweb Well-Known Member

    Joined:
    Mar 8, 2002
    Messages:
    97
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Dallas, TX
    cPanel Access Level:
    Root Administrator
    Ahem, just hire someone to update your kernel for you if you don't know how. ;)

    (and secure your box too, I'm willing to bet you haven't done so.)

    cPanel.net Support Ticket Number:
     
  16. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!

    Actually you would loose that bet! I did in fact hire someone to update the kernel & secure it a few times over the past year but it is time to update the kernel once again & the person I had do it before is not around so that is why I am here, to learn it myself.

    cPanel.net Support Ticket Number:
     
  17. Rich Z

    Rich Z Member

    Joined:
    Dec 28, 2002
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    Any suggestions on whom to hire for this task? I would also like to be able to take the time to learn how to do this, but time is in very short supply lately.

    cPanel.net Support Ticket Number:
     
  18. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    After I did "rpm -i kernel-2.4.20-18.7.i386.rpm" I got this error...

    error: open of kernel-2.4.20-18.7.i386.rpm failed: No such file or directory

    What should I do now?

    cPanel.net Support Ticket Number:
     
  19. tAzMaNiAc

    tAzMaNiAc Well-Known Member

    Joined:
    Feb 16, 2003
    Messages:
    559
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Sachse, TX
    make sure it is actually in the dir you tried to wget it from.

    You can use the tab key -- i.e.

    rpm -i kernel-2<tab here>

    it will then auto complete it for you if it's there.

    If not, then WGET again and watch to see if it actually downloaded.

    Brenden

    cPanel.net Support Ticket Number:
     
  20. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!

    Ok, I did what you said above & it still gave me that error. So I did WGET again & this is what it gave me. It looks like it downloaded fine...

    root@thunder [/]# wget http://updates.redhat.com/7.3/en/os...0-18.7.i386.rpm
    --12:37:30-- http://updates.redhat.com/7.3/en/os...0-18.7.i386.rpm
    => `os...0-18.7.i386.rpm'
    Resolving updates.redhat.com... done.
    Connecting to updates.redhat.com[66.187.224.52]:80... connected.
    HTTP request sent, awaiting response... 302 Moved Temporarily
    Location: http://www.redhat.com/errors/404.html [following]
    --12:37:30-- http://www.redhat.com/errors/404.html
    => `404.html.1'
    Resolving www.redhat.com... done.
    Connecting to www.redhat.com[66.187.232.50]:80... connected.
    HTTP request sent, awaiting response... 200 OK
    Length: 5,896 [text/html]

    100%[====================================>] 5,896 191.93K/s ETA 00:00

    12:37:30 (191.93 KB/s) - `404.html.1' saved [5896/5896]

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page