Bob Proulx wrote: > Happy Monday Savannah! > > FYI: I am working through the ssh upgrades on the servers in order to > mitigate the current news. > > regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems > CVE-2024-6387 > https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt
Michael and I teamed up and worked on this across most of the servers, beyond just the ones in the Savannah collection. Earlier in the day Trisquel had not yet posted a security patch. We identified the servers with affected versions. There was an alternative mitigation. And we believe that fail2ban also benefits and protects but 19 systems were found not to be running fail2ban and Michael installed and enabled it on those systems. That's a good infrastructure improvement regardless! Later in the day Trisquel posted an updated securty patched package. The systems were all then upgraded to the fixed version. Tomorrow we will run another full scan of systems to locate any that escaped being fixed today. Crisis averted! :-) Bob
