[1920] in SIPB_Linux_Development
Re: FYI: New attack on Linux (and Windows) machines
daemon@ATHENA.MIT.EDU (Salvatore Valente)
Tue Nov 18 14:06:25 1997
Date: Tue, 18 Nov 1997 14:04:18 -0500
To: linux-announce@MIT.EDU, linux-help@MIT.EDU
Cc: cfyi@MIT.EDU, linux-dev@MIT.EDU
Reply-To: linux-help@MIT.EDU
In-Reply-To: "[1912] in SIPB_Linux_Development"
From: Salvatore Valente <svalente@MIT.EDU>
Emil wrote:
A bug in the Linux kernel was recently discovered which allows
a malicious user to *remotely* reboot or halt the machine.
If you are running RedHat 4.0 and you do not want to (or do not know
how to) build and install a new kernel which does not have this bug,
you can fix your system by running (as root):
attach linux
rpm -U /mit/linux/kernel/redhat-4.0/kernel-2.0.18-6TD.i386.rpm
To use this kernel, you must have the kernel-modules package
installed. To ensure this, run the following command:
(This command will probably fail. Don't worry if it does.)
rpm -i /mit/linux/kernel/redhat-4.0/kernel-modules-2.0.18-6TD.i386.rpm
And then reboot the system:
/sbin/shutdown -r now
Note: This fix is only right for you if you are running Linux 2.0.18.
The command "uname -r" should say 2.0.18.
I hope this helps,
Sal Valente <svalente@mit.edu>
