[ale] CRITICAL LINUX FLAW OPENS THE DOOR TO FULL ROOT ACCESS (RHE)

Alex Carver agcarver+ale at acarver.net
Sun May 20 13:13:35 EDT 2018


On 2018-05-20 07:00, Steve Litt via Ale wrote:
> On Thu, 17 May 2018 13:47:33 -0400
> Jim Kinney via Ale <ale at ale.org> wrote:
> 
>> On Thu, 2018-05-17 at 13:12 -0400, Solomon Peachy via Ale wrote:
>>> On Thu, May 17, 2018 at 11:46:12AM -0400, DJ-Pfulio via Ale wrote:
>>>   
>> In the article, they talk about servers and mysql ... who would run
>> those on dhcp? Serious question - who and why?
>>
>>>
>>> In networks I've administered, everything but the DHCP server and
>>> the core routers has their (static!) addresses assigned via DHCP.  
>>
>> +1
>>
>> Makes network changes easy
> 
> Couldn't you accomplish the same thing using Puppet, Chef or Ansible?
> 

Only if those can also support microdevices (embedded systems) that do
not have clients available for those management packages.  Tiny embedded
devices (like thermometers as an example) don't have much more than a
basic TCP/IP stack and just enough code to parse a DHCP packet.

A few embedded systems can manage some basic HTTP clients so if those
management packages can perform a replay script of some form
(interacting with the device as if it was a person on a terminal or
browser) then perhaps so.


More information about the Ale mailing list