Tekil Mesaj gösterimi - Sshd Exploit? - R10.net

Konu Sshd Exploit?

20-02-2013, 10:11:08

#7

JustRulz

Kimlik doğrulama veya yönetimden onay bekliyor.

4. RECOMMENDATIONS

We suggest you take one of the following actions immediately, in order of
preference:

A - Upgrade to curl and libcurl 7.29.0

B - Apply this patch and rebuild libcurl

http://curl.haxx.se/curl-sasl.patch

C - Rebuild curl with support for vulnerable protocols IMAP, POP3 and SMTP
disabled.

D - Disable the vulnerable protocols IMAP, POP3 and SMTP at run-time to
forbid libcurl from using them. You can do this with the
CURLOPT_PROTOCOLS option.

----
Action required:
------------------------------
Our managed cPanel customers need not do anything unless contacted directly
by us. Self managed customers will need to do the following to detect the
file in question and correct the exploit:

1. SSH to server
2. Run 'updatedb'
3. Run 'locate libkeyutils.so.1.9'

Please follow the steps below to clear the expliot.

1. SSH to the server
2. cd /lib64/
3. rm libkeyutils.so.1.9
4. rm libkeyutils.so.1
5. ln -s libkeyutils.so.1 libkeyutils.so.1.3
6. Restart ssh
7. yum update kernel and Reboot to close any active connections

Feel free to open a trouble ticket if you have any questions.