13 Dec
2010
13 Dec
'10
5:47 p.m.
Hi Philip,
On Mon, Dec 13, 2010 at 05:36:48PM +0000, Philip Veale wrote:
No, I really am running 3.36 and not 4.x
I'm not even sure what version the distro is now, the apt sources are
a horrible mess. It's _old_ anyway :(
Possibly you are running debian sarge then, in which case I'm amazed
you're still in control of the server. :/
I don't think there's been a *remote* root exploit in anything
common since then but plenty of local ones..
I'm not sure of the steps to reproduce the exploit. You may well be
right that your exim is too old to be affected but I wouldn't rely
on it. Also there's bound to be something else, so I'd recommend
taking advantage of:
https://tools.bitfolk.com/wiki/Migrating_to_a_new_VPS
as a matter of urgency.
Cheers,
Andy
--
http://bitfolk.com/ -- No-nonsense VPS hosting