Kostas' random thoughts » Security http://www.atreides.org.uk/blog Μη μου τους κύκλους τάρατε Mon, 24 Dec 2007 17:36:53 +0000 http://wordpress.org/?v=2.8.6 en hourly 1 glexec or why changing suexec is a bad idea http://www.atreides.org.uk/blog/2007/06/05/glexec-or-why-changing-suexec-is-a-bad-idea/ http://www.atreides.org.uk/blog/2007/06/05/glexec-or-why-changing-suexec-is-a-bad-idea/#comments Tue, 05 Jun 2007 10:23:07 +0000 Kostas Georgiou http://www.atreides.org.uk/blog/2007/06/05/glexec-or-why-changing-suexec-is-a-bad-idea/ I can not really believe that the LHC grid people want to use glexec in every batch system. The thought of thousands of machines running this really scares me.

The suexec sources+documentation say it clearly but I am going to repeat it one more time “Do not make any changes in the source code unless you really know what you are doing”. Just count the security holes introduced in glexec for an example on what not to do.

]]> http://www.atreides.org.uk/blog/2007/06/05/glexec-or-why-changing-suexec-is-a-bad-idea/feed/ 0 Wordpress upgrade http://www.atreides.org.uk/blog/2007/03/04/wordpress-upgrade/ http://www.atreides.org.uk/blog/2007/03/04/wordpress-upgrade/#comments Sun, 04 Mar 2007 01:01:58 +0000 Kostas Georgiou http://www.atreides.org.uk/blog/2007/03/04/wordpress-upgrade/ Upgraded to 2.1.2 today since 2.1.1 was tainted. There is nothing in the logs to suggest an exploit attempt and with SELinux in enforcing mode it is unlikely that it an attempt would have been succesful but I really need to audit the machine to make sure that everything is OK.

]]> http://www.atreides.org.uk/blog/2007/03/04/wordpress-upgrade/feed/ 0