Ping a Specific Port

Question

Déjà vu

Asked: 2010-09-23 22:31:35 +0800 CST2010-09-23 22:31:35 +0800 CST 2010-09-23 22:31:35 +0800 CST

Linux 64b dangerous kernel exploit

772

Many of you know the recent and dangerous kernel exploit CVE-2010-3081.

See /.

What is the actual risk for a server?
Do we have to patch urgently all systems?

Or, since it seems only a local user may gain root access, standalone servers are pretty safe?

1 Answers

Voted

Luke404 · Answer 1 · 2010-09-23T23:02:39+08:00

Best Answer

Luke404

2010-09-23T23:02:39+08:002010-09-23T23:02:39+08:00

Seems like it's only locally exploitable, but that actually means "exploitable by locally running code" - if you let people upload and run CGIs on your system, you're screwed anyway.

If no code can get on your system from the outside, you're ok. Example: database server that only exposes the MySQL TCP socket should be safe (that's IMHO, you have to do your homework).

Personally I don't run any 32bit code on x86_64 servers, so I actually never had compatiblity compiled in any of my kernels, just like I do for any feature I'm not actively using (yes I do roll my own kernels for prod systems).

4

Linux 64b dangerous kernel exploit

Ping a Specific Port

How do I tell Git for Windows where to find my private RSA key?

How do you restart php-fpm?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?