On Thu Jan 18, 2001 at 10:43:32AM -0500, Mark Weaver wrote:
> Has anyone heard about the latest exploit by script kiddies and what
> they're doing to RedHat machines? I was wondering if Mandrake 7.2 machines
> are vulnerable in the same way.
Only if you haven't been updating your system with the security
updates supplied. Both of the vulnerabilities this worm takes
advantage of were fixed last year. For more information, view:
http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-021.php3
http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-014.php3
Both vulnerabilities were fixed last year. FYI, they were fixed by
RedHat at the same time, so the servers that were all hit with it
*could* have prevented it by being timely in their updates (and by
timely I mean they could have updated their system four months after
the fix was issued and still been protected!)
--
[EMAIL PROTECTED], OpenPGP key available on www.keyserver.net
1024D/FE6F2AFD 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD
- Danen Consulting Services www.danen.net, www.freezer-burn.org
- MandrakeSoft, Inc. Security www.linux-mandrake.com
Current Linux uptime: 1 day 18 hours 13 minutes.
