How to tell if I've been hacked?
Andrew Farris
flyindragon1 at aol.com
Thu Aug 27 00:03:04 UTC 2009
On Wed, 2009-08-26 at 14:38 +0200, Nils Kassube wrote:
> Andrew Farris wrote:
[snip]
> > Who's been talking about the linux kernel being vulnerable? Thats not
> > more MS FUD is it?
>
> It would be more interesting to know which vulnerability is meant. But
> as long as that is unknown it is not useful to claim it is MS FUD. After
> all there was an old vulnerability discovered recently.
I wasn't claiming it was MS FUD. I was simply asking if thats where the
OP heard it.
> If it is this vulnerability [1], it is exploitable for local attackers
> only. But beware, someone connected via SSH would count as a local
> attacker as well.
Good point. I never use ssh, therefore I didn't think about this
possibility. Thanks for pointing it out, though.
[snip]
> Only a few examples: [1], [2], [3], [4], [5]. Don't pretend Linux is invincible.
>
>
> Nils
>
> [1] <https://lists.ubuntu.com/archives/ubuntu-security-announce/2009-August/000952.html>
> [2] <http://lkml.org/lkml/2009/8/13/549>
> [3] <http://www.theregister.co.uk/2009/08/14/critical_linux_bug/>
> [4] <http://archives.neohapsis.com/archives/fulldisclosure/2009-08/0174.html>
> [5] <http://linux.slashdot.org/story/09/08/13/2022212/Local-Privilege-Escalation-On-All-Linux-Kernels>
I wasn't trying to indicate that linux is invincible... on the contrary,
I'm well aware of the fact that no system is perfect/foolproof.
Although, in hindsight, my message was somewhat poorly constructed, and
didn't quite get my point across. For that, I apologize.
--
Andrew
_____________________________
Beware of a dark-haired man with a loud tie.
More information about the ubuntu-users
mailing list