ADMIN - Explore the new world of system administration! Special introductory offer! Order by September 30th to save 10% off the regular subscription price! Each issue delivers technical solutions to the real-world problems you face every day. Learn the latest techniques for better:
network security
system management
troubleshooting
performance tuning
virtualization
cloud computing
on Windows, Linux, Solaris, and popular varieties of Unix.
Distributions such as Ubuntu and Debian are currently in the process of issuing updates to their users to remove a problem with the Rsync tool.
The Rsync synchronization tool is vulnerable to a buffer overflow, however, this assumes that the Extended Attribute (xattr) option is enabled. Versions 2.6.9 through 3.0.1 are affected. The new 3.0.2 version resolves the issue. The "rsync --version" command displays the version number and an overview of the program attributes; if you see "xattrs" in the list, your version of Rsync is affected, unless a "no" prefix precedes the "xattrs" entry. The developers have published a links to a pathc on their security page.
Comments