[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Re: [cobalt-security] New Exploit?
- Subject: Re: [cobalt-users] Re: [cobalt-security] New Exploit?
- From: "Paul Harvey" <paul@xxxxxxxxxxxxx>
- Date: Tue Dec 11 02:19:11 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
Thanks for the reply. Just checked and the September 20 patch was
installed. The November 13 patch also installed and that required a reboot
as well. Anyway I just rebooted now to be certain.
Thank again.
----- Original Message -----
From: "Taco Scargo" <Taco.Scargo@xxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>; <cobalt-users@xxxxxxxxxxxxxxx>
Cc: <paul@xxxxxxxxxxxxx>
Sent: Tuesday, December 11, 2001 8:11 AM
Subject: [cobalt-users] Re: [cobalt-security] New Exploit?
> Hi Paul,
>
> > I got hacked using the exploit below. Are Cobalts supposed to be
> > protected against this?
> >
> > I use SSH2 and have patches in place. They seem to have got into root
via
> > one of our users.
> >
> > Does anyone know what version of Linux is used on the Raq4?
>
> The latest kernel for RaQ 4 is 2.2.16C28. This version includes the patch
to
> close the above mentioned rule. So either you hadn't installed the latest
kernel
> (which was posted on September 20, 2001) or you didn't reboot after
> installation.
>
> With regards,
>
> Taco Scargo
>
> Product Manager, EMEA
>
> Sun Microsystems Tel. +31 (33) 451 6319
> Sun Cobalt Server Appliances taco.scargo@xxxxxxx
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>