-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 16.07.2012 10:01, Bret Busby wrote: > Hello. > > I have a server that is running Firestarter on Debian 5. > > I have forgotten the root password, and have not logged into root > on that computer, or updated the system, for about a year, I > think. Did you update that system? If not, you may be "lucky" and your kernel still is vulnerable to a (local) root-exploit. Iirc there was one at start of this year (or was that last year?....it was some pre 3.x kernel).
Greetings HP PS: It may have been this one: http://git.zx2c4.com/CVE-2012-0056/tree/mempodipper.c - -- This address only accepts mail from debian mailing lists. Everything else is sent to /dev/null -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.19 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAlAD2qMACgkQjLvx8ViUjYJLewCfa0Nd7NEZBIJA6L1FGyfBIqSA 3mUAn2geGXKe1VmKIE+I8cqAAoamSe51 =tA9E -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5003daa9.9070...@spahan.ch
