[PLUG] 0-day FreeBSD exploit

Sean Collins on 30 Nov 2009 18:52:58 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] 0-day FreeBSD exploit

From: Sean Collins <sean@seanmcollins.com>

To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>

Subject: [PLUG] 0-day FreeBSD exploit

Date: Mon, 30 Nov 2009 21:51:35 -0500

Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>

Sender: plug-bounces@lists.phillylinux.org

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Heads up PLUG: We've got a huge local root hole. Think back to the vmsplice local root exploit two years ago on linux. Yeah, it's that easy. http://lists.freebsd.org/pipermail/freebsd-security/2009-December/005369.html Thankfully, all my services are run inside jailed environments, so even if they break root they were confined to that jail. The main system runs no services and has public-key only ssh. If anyone else needs help patching their systems, hit me up and I'll be happy to help. Thank You, Sean Collins -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.12 (Darwin) iEYEARECAAYFAksUhLsACgkQ9g9WSXiROTFkdQCghlQyb5hdUONziHZuXaA+quqh CugAniGl5hwkKh4RuRoiRgawyHxlKqs8 =RBAv -----END PGP SIGNATURE----- ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

Prev by Date: Re: [PLUG] open office, was notebooks for high school

Previous by thread: [PLUG] [plug-announce] December 2, 2009: "Using stored procedures in PostgreSQL and replication with Slony"

Index(es):

Date

Thread