i tried to upgrade my vserver installation from an 'ancient' 2.4.20 ctx 16 up to
2.4.24, 1.26, 0.28 (Tested with Debian Woody and SuSE 8.1).
On my Testserver I found out, that the root-exploit is still working - aswell on updated old system (synced of productive server) and clean (means fresh installed) suse 8.1 system! Is there an special patch i need for vs1.26?
I found also that the vserver build script of 0.28 problems with debian: Everytime i try to start sshd i get the error: sshdPRNG is not seeded.
BTW: is ctx16 vulnerable by any vserver root-exploit? Actually, I'm quite happy with my expensive patched 2.4.20 - so i would prefer to patch ctx16 if possible. Maybe there is another workaround: Did anybody tried to secure vserver via systrace alredy? I think I'm going to test this tomorrow.
greetinXs, Michael Hilscher -- Would Mozart have been more productive if he had scribes to help him, a secretary and a CEO to lead his way? -- Linus Torvalds
_______________________________________________ Vserver mailing list [EMAIL PROTECTED] http://list.linux-vserver.org/mailman/listinfo/vserver
