Difference between revisions of "Vuln kernel dmesg"

From Atomicorp Wiki
Jump to: navigation, search
(Created page with "= Kernel dmesg restrictions are not in effect = This vulnerability means that all users are able to read the kernel system log. This log may contain sensitive information t...")
 

Latest revision as of 18:38, 10 February 2012

[edit] Kernel dmesg restrictions are not in effect

This vulnerability means that all users are able to read the kernel system log. This log may contain sensitive information that could be used by a user to compromise the system.

Non-ASL kernels allow users and processes to access the kernel system log.

The ASL kernel contains security measures to prevent this.

If you see this vulnerability it can only be caused if you are not running the ASL kernel.

[edit] Next Steps

Check to see if you are using the ASL kernel by going to this link.

If you are not running the ASL kernel:

Please check that you have the kernel installed and then reboot your system into the ASL kernel.

Note: If you have a VPS system, you will not have your own kernel. Please install ASL on the host server.

Personal tools