Update Criticizes Security Red Hat / Fedora Linux OpenSSH
As many of you will know some days ago one or more of Red Hat servers were compromised. Committed is a short word to say who broke the safety net there and went as he pleased. We now know that both Fedora and Red Hat were cracked.
As a direct result Fedora is changing their package to encrypt your key. The intruder was able to sign a small number of OpenSSH packages relating only to Red Hat Enterprise Linux 4 (for i386 and x86_64) and Red Hat Enterprise Linux 5 (x86_64).
This update has been classified as safety critical. If you manage a Red Hat-based server and is connected to the Internet, update the system immediately.
Official announcement from Red Hat Network - RHN
Last week Red Hat detected an intrusion on Certain of its computer systems and took immediate action. While the investigation into the intrusion is on-going, our initial focus was to review and test the distribution channel we use with our customers, Red Hat Network (RHN) and its associated security measures. Based on these efforts, we remain highly confident that our systems and processes Prevent the intrusion from compromising RHN or the content distributed via RHN and accordingly believe that customers who keep their systems updated using Red Hat Network are not at risk. We are issuing this alert Primarily for those who may Obtain Red Hat binary packages via channels other than those of official Red Hat subscribers.
The following products are affected:
=> Red Hat Desktop (v. 4)
=> Red Hat Enterprise Linux (v. 5 server)
=> Red Hat Enterprise Linux AS (v. 4)
=> Red Hat Enterprise Linux AS (v. 4.5.z)
=> Red Hat Enterprise Linux Desktop (v. 5 client)
=> Red Hat Enterprise Linux ES (v. 4)
=> Red Hat Enterprise Linux ES (v. 4.5.z)
=> Red Hat Enterprise Linux WAS (v. 4)
How can I update or patch my system
Enter the affected system as root and type the following command:
[root @ redhatserver ~] # yum update
And yet many people prefer Redhat to Debian, ignorant!
More information
Although the tree depends CentOS Red Hat, this was not affected by the bug.
Popularity: 4%





























