The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is Linux version 2.4.21-40.ELsmp secure?

Discussion in 'General Discussion' started by dwh2, Sep 12, 2006.

  1. dwh2

    dwh2 Well-Known Member

    Joined:
    Jan 14, 2004
    Messages:
    106
    Likes Received:
    0
    Trophy Points:
    16
    I'm supposed to be on Red Hat Enterprise, which I heard is not affected by the recent kernel vulnerability.

    But just to be sure, does this sound secure to you or do I need to update?

     
  2. AndyReed

    AndyReed Well-Known Member
    PartnerNOC

    Joined:
    May 29, 2004
    Messages:
    2,222
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Minneapolis, MN
    If you really need to learn about kernel security, read this article which addresses your very question: http://www.securityfocus.com/columnists/296

    In addition, I always urge our clients and the cPanel users to be vigilant about securing and hardening their servers. This is a continuous projcess and you have to saty on top of server security, otherwise you might loose.
     
    #2 AndyReed, Sep 12, 2006
    Last edited: Sep 12, 2006
  3. dwh2

    dwh2 Well-Known Member

    Joined:
    Jan 14, 2004
    Messages:
    106
    Likes Received:
    0
    Trophy Points:
    16
    Thanks for responding but...that article was about how Linux needs better security. I couldn't find where it addressed my question. Did I miss something or did you link the wrong article by mistake?

    BTW, I ran up2date -u and rebooted and it still says the same version...
     
  4. dwh2

    dwh2 Well-Known Member

    Joined:
    Jan 14, 2004
    Messages:
    106
    Likes Received:
    0
    Trophy Points:
    16
    In /var/log/messages I'm seeing lines starting with kernel:
    Some say lots of weird wording like:
    ** IN_TCP DROP ** IN=eth0 OUT=MAC= (some mac address)....
    I think those are related to BFD or APF firewall but not sure.
    At the end I'm getting some lines like:

    smb_get_length: recv error =5
    smb_request: result -5, setting invalid
    smb_retry: successful, new pid=nnnn, generation=9
     
  5. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    You should update the kernel to the latest one from RH. You should signup to their OS announcement mailing list so that you're notifed of errata and security releases which include an explaination of the reason for the updated package (including kernels) and their likely severity if security related.
     
  6. dwh2

    dwh2 Well-Known Member

    Joined:
    Jan 14, 2004
    Messages:
    106
    Likes Received:
    0
    Trophy Points:
    16
    Thanks. It really is all so confusing I'm not sure which mailing list I'm supposed to even join?

    Did I make a mistake by trying
    ?

    I can't understand why it still says the same version.

    BTW Chirpy, I once tried to hire your services to watch over my server, but I never heard back from you by PM or by email...
     
  7. joako

    joako Well-Known Member

    Joined:
    Aug 7, 2003
    Messages:
    97
    Likes Received:
    2
    Trophy Points:
    8
    If I am not mistaken, you are running the latest kernel for RHEL 3.
     
Loading...

Share This Page