[BlueOnyx:12272] Re: Kernel 0-day vulnerability + SSHd Spam Exploit (libkeyutils.so.1.9)
Eiji Hamano
bluequartz at hypersys.ne.jp
Thu Feb 21 23:37:59 -05 2013
Hi
> ---- Chris Gebhardt wrote -----
> You'll need to restrict access to SSH with a firewall of some sort (ie:
> hardware firewall, ACL at the router, or IPTABLES) to avoid getting hit
> by this.
Yes, Restricted access of SSH is nice.
I proposed it in the past, it did not accept although.
> ---- Michael Stauber wrote -----
> If you suspect that your BlueOnyx server is sending SPAMs and has either
> /lib64/libkeyutils.so.1.9 or /lib/libkeyutils.so.1.9 present, then
> please contact me offlist (!) and allow me to take a look at the box.
Why ? You said :
>> don't trust any data on the old box and start fresh.
Eiji Hamano
More information about the Blueonyx
mailing list