savannah-hackers-public
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Savannah-hackers-public] Working through ssh upgrade throughout

From: Bob Proulx
Subject: Re: [Savannah-hackers-public] Working through ssh upgrade throughout
Date: Mon, 1 Jul 2024 22:03:03 -0600 
Bob Proulx wrote:
> Happy Monday Savannah!
>
> FYI: I am working through the ssh upgrades on the servers in order to
> mitigate the current news.
>
>     regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems
>     CVE-2024-6387
>     https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt

Michael and I teamed up and worked on this across most of the servers,
beyond just the ones in the Savannah collection.  Earlier in the day
Trisquel had not yet posted a security patch.  We identified the
servers with affected versions.  There was an alternative mitigation.
And we believe that fail2ban also benefits and protects but 19 systems
were found not to be running fail2ban and Michael installed and
enabled it on those systems.  That's a good infrastructure improvement
regardless!

Later in the day Trisquel posted an updated securty patched package.
The systems were all then upgraded to the fixed version.

Tomorrow we will run another full scan of systems to locate any that
escaped being fixed today.

Crisis averted! :-)

Bob
reply via email to
[Prev in Thread] Current Thread [Next in Thread]