This article is going to explain how a recent privilege escalation exploit for the works. This exploit affects CentOS 5 and 6 as well as other . Linux kernel version 2.6.37 to 3.8.9 are affected by this exploit. I will explain this exploit from the kernel side and the userland side to help readers get a better understanding of how exactly it works.
…2.2TB Virident FlashMAX II as the cache storage device. EXT4 is the filesystem, and CentOS 6.4 the operating system, although the pre-release modules I received from Virident required the use of the CentOS 6.2 kernel, 2.6.32-220, so that was the kernel in use for all of the benchmarks on both systems. The benchmark tool used was sysbench 0.5 and the version of MySQL used was Percona Server 5.5.30-rel30.1-465. Each test was allowed to run for 7200 seconds, and the first 3600 seconds …
…creation performed very slowly as the number of threads in a process increased. This bug is present on CentOS 5.3 (and earlier) and other linux distros as well.
It is also very possible that this bug impacted research done before August 15, 2008 (in the best case because Linux distro releases are slow) on building high performance threaded applications.
Digging this thing out was definitely one of the more interesting bug hunts in recent memory.
Hopefully, my long (and insane) story …
The Scoop on SmartOS
SmartOS unites extraordinary technologies to create a high performance cloud infrastructure: OpenSolaris, ZFS, DTrace, Zones and KVM Linux. These technologies are combined into a single operating system, providing a highly multi-tenant and …
…# 1144777 ( Ignacio Nin ).rpm packages couldn't be built on 5 and CentOS 5. Bug fixed
When mysqldump was used with --innodb-optimize-keys option it produced invalid # 1081016 ( …for cases when there was an explicitly named foreign key constraint which implied an implicit secondary index with the same name. Fixed by detecting such cases and omitting the corresponding secondary keys from deferred key creation optimization. Bug fixed
Currently we wait 10 seconds for a runit service's supervise/ok named pipe. On slower systems ( cough CentOS 5.x) this 10 second wait is not long enough. This commit updates the embedded runit cookbook that ships in omnibus-chef to match the indefinite block used in the current version of community cookbook:
https://github.com/opscode-cookbooks/runit/blob/1.1.0/libraries/provider runit service.rb#L151-L153
Maximum on PostgreSQL shared_pages on machines where installed …
On CentOS, use RPM directly. sudo rpm -Uvh https://opscode-omnitruck-release.s3.amazonaws.com/el/6/x86_64/chef-server-11.0.6-1.el6.x86_64.rpm
The package just puts the bits on disk (in /opt/chef-server ). The next step is to configure the Chef Server and start it. sudo chef-server-ctl reconfigure
Optionally, run the Opscode Pedant test suite. This …
…Ruby on Rails) previous versions 3.2.11, 3.1.10, 3.0.19 and 2.3.15 Tested on Centos 6.3 i386 with: RoR 3.2.10 passenger 3.0.19 GrayLog2 0.9.6 Description : This module exploits a remote code execution vulnerability in the XML request processor of the Ruby on Rails application framework. This vulnerability allows an attacker to instantiate a remote object, which in turn can be used to execute any ruby code remotely in the context of the application. This module has been tested across …
EPEL .) rpm -Uvh http://passenger.stealthymonkeys.com/rhel/5/passenger-release.noarch.rpm5 / CentOS 5 / ScientificLinux 5: (Note: these packages depend on
RHEL 6 / CentOS 6 / ScientificLinux 6: yum install http://passenger.stealthymonkeys.com/rhel/6/passenger-release.noarch.rpm
Step 2: use
From there you can use Yum to install packages. For example, try one of these: yum install nginx-passenger
or yum install mod_passenger
or yum install passenger-standalone …