There is a new Linux kernel exploit that apparently is being exploited big time:
- http://forums.cpanel.net/f185/x86_64-kernel-exploit-165758.html#post692222
- http://blog.ksplice.com/2010/09/cve-2010-3081/
- http://linux.slashdot.org/article.pl?sid=10/09/20/0217204
What does this mean for us?
We need to make sure that _any_ of our client’s hosted services running on Linux have an up to date kernel. We do so by contacting the hosting provider to verify their systems.
Otherwise our client’s sites may end up serving some exploits.
Further to detecting whether a system has been exploited:
One of the linked to articles on Slashdot Linux: Hole in Linux Kernel Provides Root Rights has this comment which is just too funny not to point out:
Good to see a sense of humour there! :)
Philip Elder
MPECS Inc.
Microsoft Small Business Specialists
Co-Author: SBS 2008 Blueprint Book
*Our original iMac was stolen (previous blog post). We now have a new MacBook Pro courtesy of Vlad Mazek, owner of OWN.
It's funny once you remember all the times you would read a support thread and the trolls would chime in, "Hur hur hur, just run Linux!"
ReplyDeleteDavid,
ReplyDeleteExactly!
Whether we are talking about Linux or Mac Fanz the answer would be somewhat similar. I thought the line was _awesome_! :)
Philip