On 12 May 2014 22:15, "Keith Keller" <kkeller@xxxxxxxxxxxxxxxxxxxxxxxxxx> wrote: > Actually, I was wondering about mitigation along the lines of > blacklisting a module, tuning a sysctl parameter, or some other > mitigation that wouldn't require a new kernel. Perhaps such mitigation > isn't even possible with this issue. > Yeah I've not seen any mitigations that would work for CentOS. I wonder if a systemtap module would be feasible like that one a few months or so ago. For the time being I guess that doubly vigilant is important. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Heads up on local root escalation
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: Heads up on local root escalation
- From: James Hogarth <james.hogarth@xxxxxxxxx>
- Date: Tue, 13 May 2014 07:41:38 +0100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <21q74bxsvs.ln2@goaway.wombat.san-francisco.ca.us>
- References:
- Heads up on local root escalation
- From: James Hogarth
- Re: Heads up on local root escalation
- From: Keith Keller
- Re: Heads up on local root escalation
- From: Akemi Yagi
- Re: Heads up on local root escalation
- From: Keith Keller
- Heads up on local root escalation
- Prev by Date: Re: Change server name in postfix configuration
- Next by Date: Re: find with exclude directory
- Previous by thread: Re: Heads up on local root escalation
- Next by thread: Re: Heads up on local root escalation
- Index(es):
 |