Dirty COW (CVE-2016-5195) is a privilege escalation vulnerability in the Linux Kernel.
A race condition was found in the way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings.
Impact
- An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system and gain root access instantly.
- This flaw allows an attacker with a local system account to modify on-disk binaries, bypassing the standard permission mechanisms that would prevent modification without an appropriate permission set.
It’s highly recommended to patch the system kernel in all Debian, Ubuntu, CentOS and RHEL distros to prevent system breakage.
Are you running a vulnerable version?
If you are not a customer subscribed under our Server Management plan and would like to have this vulnerability patched please purchase a 1x Hour of Support plan.
Don’t hesitate to contact us for any questions you may have through our Contact Form page or LiveChat!
How to Install KISS My Firewall on Ensim Control Panel
KISS My Firewall is a FREE iptables script designed for a typical web server. It takes advantage of the latest firewall technologies including stateful packet inspection and connection tracking. It also contains some preventative measures for port scanning, DoS attacks, and IP spoofing, among other things.
KISS My Firewall 2 is very easy to install and does not require any initial configuration. It will work with any stock installation of Ensim WEBppliance Basic & Pro, Plesk, and Webmin. Cpanel installations require some modifications.
When logged in as root ( “su -” ), type:
cd /usr/bin
wget http://www.indotek.com/kiss/kiss-2.2.tar.gz
tar zxvf kiss-2.2.tar.gz
That’s it! To get it running anywhere on the command line, you simply type:
To stop the firewall, type:
To get status information, type:
If you want to block an offenders IP address/subnet, simply edit the BLOCK_LIST variable in the /usr/bin/kiss file. You can separate IP addresses and subnet’s with a space. Once you are finished, simply restart KISS by typing:
Reset the license for Ensim Pro Control Panel Linux
Ensim Pro Control Panel license is tied to a MAC-address. Therefore, when you change your network card, Ensim does not recognize the license as valid anymore.
Rename /etc/appliance/.license/.LIC_file and /etc/appliance/.license/.MLK_file so that the license would be treated as a new one by Ensim
# mv /etc/appliance/.license/.MLK_file /etc/appliance/.license/.MLK_file.bak
# mv /etc/appliance/.license/.LIC_file /etc/appliance/.license/.LIC_file.bak
Once this is done, we need to contact support to reset the license.
IP aliases disappears after network services is restarted in Ensim
If networks service has been restarted server looses the IP aliases set by ensim.
To get all IP aliases back restart virtualhosting service.
# service virtualhosting restart
How to disable anonymous FTP in EnsimPro for Linux
By deafult the configuration file is: /etc/proftpd.conf has the last line as:
include “/etc/proftpd/anonymousftp”
which means anonymous ftp is enabled.
Upon commenting this out with a ” # ” and restarting the service ,anonymous ftp is disabled.
