Full Disclosure mailing list archives
Re: !SPAM! Automated ssh scanning
From: Chris Adams <adamsc () gmail com>
Date: Mon, 30 Aug 2004 00:39:02 -0700
On Sat, 28 Aug 2004 00:40:32 +0200, Robert Jaroszuk <zim () iq pl> wrote:
I have checked today dist-upgraded debian sarge, with *default* kernel (2.4.18-bf2.4), and it is still *vulnerable* to do_brk, kmod, and ptrace exploits. This kernel seems to be *not* patched since 2002.
This raises a very good question - why are known-insecure kernels still being officially distributed? If you use stable you'll get a 2002 binary if you chose "kernel-image-2.4.18-686" but a secure kernel if you chose "kernel-image-2.4.18-1-686" instead - quite a difference from a seeming insignificant version number change. It's hard to think of a scenario where it wouldn't be preferable to pull the bad packages or at least include a prominent "Your system has a major security hole" warning and a suggestion that you install the patched kernel instead. This has definitely improved in sarge where you have the "kernel-image-2.4-686" and "kernel-image-2.6-686" packages with dependencies tracking the current kernel, making the easy choice the secure one as well. Chris _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: !SPAM! Automated ssh scanning, (continued)
- RE: !SPAM! Automated ssh scanning Todd Towles (Aug 26)
- RE: !SPAM! Automated ssh scanning Stephen Agar (Aug 26)
- RE: !SPAM! Automated ssh scanning Ron DuFresne (Aug 26)
- Re: !SPAM! Automated ssh scanning Tremaine (Aug 26)
- Re: !SPAM! Automated ssh scanning Richard Verwayen (Aug 26)
- Re: Automated ssh scanning Matt Zimmerman (Aug 26)
- Re: !SPAM! Automated ssh scanning sec-focus (Aug 26)
- Re: !SPAM! Automated ssh scanning andreas (Aug 27)
- Re: !SPAM! Automated ssh scanning Robert Jaroszuk (Aug 27)
- Re: Automated ssh scanning Matt Zimmerman (Aug 27)
- Re: !SPAM! Automated ssh scanning Chris Adams (Aug 30)
- RE: !SPAM! Automated ssh scanning Ron DuFresne (Aug 26)
- Re: !SPAM! Automated ssh scanning Ron DuFresne (Aug 26)
- Re: !SPAM! Automated ssh scanning gadgeteer (Aug 28)
- Re: Re: !SPAM! Automated ssh scanning Maarten (Aug 28)
- Re: Re: !SPAM! Automated ssh scanning gadgeteer (Aug 28)
- Re: Re: Re: !SPAM! Automated ssh scanning Maarten (Aug 29)
- Re: Re: Re: !SPAM! Automated ssh scanning gadgeteer (Aug 29)
- Re: Re: Re: Re: !SPAM! Automated ssh scanning Maarten (Aug 29)
- Re: !SPAM! Automated ssh scanning gadgeteer (Aug 29)
- Re: Re: !SPAM! Automated ssh scanning Ron DuFresne (Aug 28)