I have just seen the message from Marcus about the local root exploit in Linux kernel (CVE-2006-2451). He doesn't give a workround, but I imagine that putting * hard core 0 in /etc/security/limits.conf would be pretty effective (although it doesn't catch people already logged on). Is that correct? Bob
On Fri, Jul 14, 2006 at 04:48:05PM +0100, Bob Vickers wrote:
I have just seen the message from Marcus about the local root exploit in Linux kernel (CVE-2006-2451). He doesn't give a workround, but I imagine that putting
* hard core 0
in /etc/security/limits.conf would be pretty effective (although it doesn't catch people already logged on). Is that correct?
Hmm. I think so, yes. Ciao, Marcus
participants (2)
-
Bob Vickers
-
Marcus Meissner