[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?

Subject: Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?
From: Wouter van Reeven <wouter.vanreeven@xxxxxxx>
Date: Mon Sep 16 02:24:46 2002
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

Hi,


there is a temporary solution for this worm : run

chmod 700 /usr/bin/gcc

as root. The worm needs to be able to compile in order to execute.Disabling the execution permissions for the httpd user will preventthis, therefore prevent the worm from executing. It's nothing permanentof course, since no one will be able to compile apart from root...



Wouter van Reeven

paulos wrote:

Has anyone looked at disabling SSLv2 as mentioned in the CERT advisory?Might be the only thing we can do right now until Sun rush out afix/upgrade...




---------- Original Message -----------
From: Chris Adams <cmadams@xxxxxxxxxx>
To: cobalt-developers@xxxxxxxxxxxxxxx
Sent: Sun, 15 Sep 2002 22:18:02 -0500
Subject: [cobalt-developers] Re: OpenSSL patch for Linux worm?

Once upon a time, Sherwin T. Ang <sherwin@xxxxxxxxxx> said:
will cobalt release a package for this? or are they on a holiday, it's

been

a day since the flaw came out, darn. i am starting to feel the effect of

Sun

taking over Cobalt.


Actually, it has been almost three months since security holes were
fixed in mod_ssl (the Apache module for SSL) and over six weeks since
security holes were fixed in OpenSSL (the library that handles SSL).

Sun has not released an update for the RaQs that fixes eitherproblem, even though they've released fixes for Solaris IIRC.

--
Chris Adams <cmadams@xxxxxxxxxx>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.

_______________________________________________
cobalt-developers mailing list
cobalt-developers@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-developers


------- End of Original Message -------

_______________________________________________
cobalt-developers mailing list
cobalt-developers@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-developers



--
_____________________________________________________________________
         ______            SUN MICROSYSTEMS
        /_____/\        "We make the Net Work"
       /____ \\ \
      /_____\ \\ /
     /_____/ \/ / /     Wouter van Reeven
    /_____/ /   \//\    Sun Cobalt Support Engineer
    \_____\//\   / /    Sun Services
     \_____/ / /\ /
      \_____/ \\ \
       \_____\ \\       Visit us at http://www.sun.com/
        \_____\/        http://www.cobalt.com/
_____________________________________________________________________

Follow-Ups:
- Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?
  - From: Gerrit Rüsing
- Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?
  - From: Oleg Volkov

References:
- Re: [cobalt-developers] OpenSSL patch for Linux worm?
  - From: jale
- Re: [cobalt-developers] OpenSSL patch for Linux worm?
  - From: Sherwin T. Ang
- [cobalt-developers] Re: OpenSSL patch for Linux worm?
  - From: Chris Adams
- Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?
  - From: paulos

Prev by Date: Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?
Next by Date: Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?
Previous by thread: Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?
Next by thread: Re: [cobalt-developers] Re: OpenSSL patch for Linux worm?

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index