We're on Discord! Please join our server now if you don't want to miss anything! (More info) | Join the UCC4 contest! (More info)

* WalrusIRC & Discord main room

If you have a forum account, have more than 4 posts and are not part of a restricted usergroup, then you can chat in our main Discord server room directly from here and continue using the forums at the same time. Or you can join our server directly and access many more discussion rooms!

Author Topic: CodeWalrus server vulnerable to CVE-2016-2107  (Read 2097 times)

0 Members and 1 Guest are viewing this topic.

Offline Legimet

  • Full User
  • Join Date: Feb 2015
  • Location:
  • Posts: 58
  • Post Rating Ratio: +2/-0
    • Legimet
  • Gender: Male
CodeWalrus server vulnerable to CVE-2016-2107
« on: December 26, 2016, 11:03:23 pm »
You can test it here: https://filippo.io/CVE-2016-2107/#codewalr.us
The ssllabs.com test currently gives codewalr.us an F grade: https://www.ssllabs.com/ssltest/analyze.html?d=codewalr.us
You'll have to upgrade OpenSSL.



Offline xlibman

  • Omni founder & CW co-founder
  • CodeWalrus Staff
  • Super User
  • Moderator
  • Forum Maintenance
  • Original 5
  • Join Date: Nov 2014
  • Location: Quebec, Canada
  • Posts: 19071
  • Post Rating Ratio: +101/-5
    • dj_omnimaga
    • DJOmnimaga.music
    • @DJOmnimaga
    • dj_omnimaga
    • @DJOmnimaga
    • /u/DJ_Omnimaga
    • DJOmnimaga
    • 112/11286
    • @djomnimaga
    • @DJOmnimaga
    • DJ Omnimaga music store
  • Gender: Male
  • Calculators owned: TI-84 Plus C Silver Edition, TI-84 Plus CE, Casio fx-CG10
  • Consoles, mobile devices and vintage computers owned: Samsung i5510, Nintendo Switch, Playstation TV

Bandcamp|Reverbnation|Facebook|Youtube|Twitter
Retired Omnimaga admin (2001-11) and editor (2012-14)

Offline Streetwalrus

  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location:
  • Posts: 2903
  • Post Rating Ratio: +20/-0
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #2 on: December 26, 2016, 11:37:09 pm »
Time to update debian and reboot the server. Whenever you're ready Juju.

Offline aeTIos

  • Dabbler in C
  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location: Ede, NL
  • Posts: 1049
  • Post Rating Ratio: +12/-0
  • hi
    • r_vdijk
    • /u/aetios
    • aetios
  • Gender: Male
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #3 on: December 26, 2016, 11:44:53 pm »
Thanks for the heads up, we'll fix it.
ceci n'est pas une signature

Offline Streetwalrus

  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location:
  • Posts: 2903
  • Post Rating Ratio: +20/-0
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #4 on: December 26, 2016, 11:48:41 pm »
Oh well, I did it. It was long overdue anyway, should be fixed now.

f*** debian for being s*** overall.

Offline Legimet

  • Full User
  • Join Date: Feb 2015
  • Location:
  • Posts: 58
  • Post Rating Ratio: +2/-0
    • Legimet
  • Gender: Male
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #5 on: December 26, 2016, 11:53:32 pm »
If you're using Debian, you might want to look at apticron, a script which sends emails about updates :)

Offline Streetwalrus

  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location:
  • Posts: 2903
  • Post Rating Ratio: +20/-0
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #6 on: December 26, 2016, 11:56:35 pm »
Thanks for the tip.

Offline xlibman

  • Omni founder & CW co-founder
  • CodeWalrus Staff
  • Super User
  • Moderator
  • Forum Maintenance
  • Original 5
  • Join Date: Nov 2014
  • Location: Quebec, Canada
  • Posts: 19071
  • Post Rating Ratio: +101/-5
    • dj_omnimaga
    • DJOmnimaga.music
    • @DJOmnimaga
    • dj_omnimaga
    • @DJOmnimaga
    • /u/DJ_Omnimaga
    • DJOmnimaga
    • 112/11286
    • @djomnimaga
    • @DJOmnimaga
    • DJ Omnimaga music store
  • Gender: Male
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #7 on: December 27, 2016, 08:11:50 am »
@Streetwalrus almost quit the CW staff team because DigitalOcean used Debian last Summer O.O
  • Calculators owned: TI-84 Plus C Silver Edition, TI-84 Plus CE, Casio fx-CG10
  • Consoles, mobile devices and vintage computers owned: Samsung i5510, Nintendo Switch, Playstation TV

Bandcamp|Reverbnation|Facebook|Youtube|Twitter
Retired Omnimaga admin (2001-11) and editor (2012-14)

 


You can also use the following HTML or bulletin board code to share it on your page or forum signature!


Also do not forget to check our affiliates below.
Planet Casio TI-Planet Calc.news BroniesQC BosaikNet Velocity Games