Category Archives: Announcements

Stack Clash vulnerability in memory management in Unix OS

Technion got a report about Stack Clash vulnerability in the memory management in Unix OS.

Please see  https://blog.qualys.com/securitylabs/2017/06/19/the-stack-clash for more details.

Its the Unix server/client administrator responsibility to update the OS for this vulnerability.

דווח על לקוי במערכות הפעלה שונות, בעיה בניהול זיכרון, המאפשר הרצת קוד בהרשאות ROOT.

באחריות מנהל המערכת\שרת לבצע את העדכונים לצורך תיקון הבעיה.

Commands to update Linux OS:

For Ubuntu server/client 1604 LTS  :

Apt-get update

For RHEL enterprise version 6/7/8:

yum –security update

 

DNS split was done on the 20/06/17 at 8:15

DNS split was done on the 20/06/17 at 8:15 AM.

It was done to secure Technion network.

DNS name translation was sliced to 3 categories:

  1. Host names that are  accessible from out side the Technion LAN
  2. Host names that are  accessible from the Technion  LAN
  3. Host names that are  accessible only inside the Faculty CS LAN

DNS changes take about 1 hours to propagate to the internet outside the Technion.

Please contact Helpdesk if you encounter any related problem.