Re: some new remote kernel exploit?

Alan Cox (alan@lxorguk.ukuu.org.uk)
08 Apr 2003 12:59:22 +0100


On Maw, 2003-04-08 at 02:33, Jure Pecar wrote:
> I'm pretty much without ideas how to track this down ... expect to sit at
> the computer for the next 24h and be ready to start dumping traffic at the
> moment it starts again.

If its an attack, then it would imply someone patched the kernel image
syscall table stuff or around there and got it wrong, perhaps precisely
because your kernels are custom.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/