The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Recent Security Holes in Linux Kernels

Discussion in 'Security' started by bdraco, Oct 19, 2001.

  1. bdraco

    bdraco Guest

    http://www.securityfocus.com/cgi-bin/archive.pl?id=1&mid=221337&start=2001-10-15&end=2001-10-21

    Anybody who is running the kernels mentioned above should upgrade their kernel as soon as possible.

    Anybody running Cpanel got /usr/bin/newgrp chmoded 700 to nullify the problem. However there maybe another exploit because the exploit is not with newgrp itself, it is with the kernel.

    All 2.4 users should upgrade to 2.4.12

    You can obtain the kernel source here:
    http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.12.tar.gz
    If you prefer to compile it yourself the howto is here:
    http://www.linuxdoc.org/HOWTO/Kernel-HOWTO.html

    Or you can use one of the rpms redhat has provided
    http://www.securityfocus.com/cgi-bin/archive.pl?id=1&mid=221455&start=2001-10-15&end=2001-10-21

    !!!IMPORTANT!!! if you choose to use the rpms you must actually read the install instructions or you may end up with an non-booting system.
    http://www.redhat.com/support/docs/howto/kernel-upgrade/kernel-upgrade.html

    ----
    Disclaimer: DarkORB does not provide any support for compiling/installing kernels as we do not install them in the first place; This message is just to inform you of the problem. If you do not know what you are doing seek ( please contact your software vendor that you recieved redhat or mandrake from ) help as you could end up with a non-bootable system.
     
  2. zex

    zex Well-Known Member

    Joined:
    Aug 12, 2001
    Messages:
    98
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Vipme communication and services provides patching and compiling kernel. We also provides compiling linux kernels with special security enhancment such as (non exec stack, heap, bss). Price is 100$ per working hour.
    All questions may be directed to info@vipme.com
     
  3. alareach

    alareach Well-Known Member

    Joined:
    Aug 12, 2001
    Messages:
    57
    Likes Received:
    0
    Trophy Points:
    6
    I am preparing to have one of the NOC\'s I colo at update the kernel on one of my servers with CPANEL installled. Do I need anything special recompiled in the kernel beforehand (such as ipchains, iptables, i.e. ....)??
    -running RH 6.2 with 2.4.7

    Thanks!
    AH


    [Edited on 10/31/01 by alareach]
     
  4. bdraco

    bdraco Guest

    [quote:02b630625a]I am preparing to have one of the NOC\'s I colo at update the kernel on one of my servers with CPANEL installled. Do I need anything special recompiled in the kernel beforehand (such as ipchains, iptables, i.e. ....)??
    -running RH 6.2 with 2.4.7

    Thanks!
    AH


    [Edited on 10/31/01 by alareach] [/quote:02b630625a]

    you probably want ipchains or iptables..
     
Loading...

Share This Page