On Sun, Sep 19, 2010 at 04:51:30PM +0200, Loic Dachary wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Sylvain Beucler wrote: > > On Thu, Aug 12, 2010 at 07:13:06PM +0200, Loic Dachary wrote: > >>> Well, we lost all the history :( > >> I will upload the history back in munin-old > >>> It's pretty useful to measure the impact of a new change. > >>> > >> I agree. It seems the structure of data / directories / html / > >> templates changed with the newer version of munin and I was not > >> able to get it to continue. > >>>> I have performed a full backup of the maggie.gna.org host. > >>> Hmm, where? > >>> > >>> maggie is also the compilation environment for the gnapgnap > >>> packages (apt.gna.org) and I don't master that part - I'd like > >>> have to keep access to there. > >>> > >> Funny you would say that : it's on tothere.tld > >> /mnt/maggie.gna.vm.gnt/ from munin.gna.org > > > > I assume it's lost now? :/ I can't find it anymore. > mount /dev/backup-2010-03-24/maggie.gna.vm.gnt /mnt/maggie.gna.vm.gnt > > it's not always mounted. If you C-r the root bash history you'll find > this line the next time.
Maybe we're not on the same box: munin.gna.org has no line like this in .bash_history, and /dev/backup-2010-03-24 doesn't exist. > > In other news, we need to upgrade the box as it's vulnerably to the > > "anybody can become root" kernel exploit from 2 days ago. > > > Is it for logged in user ? Or can it be exploited from the existing > installed programs ? Users need to run a custom executable (the exploit) to become root. Normally we blocked all ways for users to run custom programs at Gna. > > I'm not sure how to proceed safely, since this box is apparently > > installed with Debian testing (?). A fixed kernel is available in > > unstable (version -23). > Is there a backported kernel yet ? There is a backported kernel for stable/lenny since a few hours ago, but in this case we need to install the kernel from 'unstable', which will enter testing/squeeze in a matter of days. -- Sylvain _______________________________________________ Project mailing list [email protected] https://mail.gna.org/listinfo/project
