Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Patch management tool

from [Steffen Kluge] Network Security [Permanent Link]
Subject: RE: Patch management tool
Date: Thu, 09 Sep 2004 17:17:13 +1000 
On Wed, 2004-09-08 at 02:31, Todd Towles wrote:

I use Yum on my FC2 box. I modified my yum.conf to use all the mirrors
and everything. After doing a Nessus scan on my own box, I saw that my
SSH verion was pre-3.7.1

Not good, yum didn't see it and I had to update my OpenSSH myself.


The current openssh package for FC2 is openssh-3.6.1p2-34, which is the
one FC2 was released with. There are no updates, so yum isn't missing
anything.

Keep in mind that RedHat usually backports security fixes into their
maintained package versions, rather than dropping in new versions that
often entail changed functionality as well. Most large distro's do it
that way, for obvious reasons of stability and compatibility.

Simple-minded vuln scanners that raise alerts based on reported software
versions alone, rather than testing for the presence of specific
vulnerabilities are just dumb (yet annoyingly common).

The openssh package that comes with FC2 has no publicly known
vulnerabilities, and contains fixes for all published security bugs,
including those discovered in fall 2003. You can verify that by reading
the changelog (rpm -q --changelog openssh) or by reading RH's errata.

Only install latest versions from the original maintainers if you need
the added functionality and have tested their compatibility with your
environment. Unless you like a gamble...

Cheers
Steffen.

Attachment: signature.asc
Description: This is a digitally signed message part

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Help understanding a trace of an nmap scan, Omar Herrera
Next by Date:  Re: Any caveats for linux under VMware, pen testing?, Troy Frost
Previous by Thread:  RE: Patch management tool, Todd Towles
Next by Thread:  RE: Patch management tool, Harper, Patrick
Indexes:  [Date] [Thread] [Top] [All Lists]