Author Topic: CodeWalrus server vulnerable to CVE-2016-2107  (Read 1698 times)

0 Members and 1 Guest are viewing this topic.

Offline Legimet

  • Full User
  • Join Date: Feb 2015
  • Location:
  • Posts: 58
  • Post Rating Ratio: +2/-0
    • Legimet
  • Gender: Male
CodeWalrus server vulnerable to CVE-2016-2107
« on: December 26, 2016, 11:03:23 pm »
You can test it here: https://filippo.io/CVE-2016-2107/#codewalr.us
The ssllabs.com test currently gives codewalr.us an F grade: https://www.ssllabs.com/ssltest/analyze.html?d=codewalr.us
You'll have to upgrade OpenSSL.



Offline xlibman

  • Omni founder & CW co-founder
  • CodeWalrus Staff
  • Super User
  • Forum Maintenance
  • Original 5
  • CodeWalrus Supporter
  • *
  • Join Date: Nov 2014
  • Location: Quebec, Canada
  • Posts: 19016
  • Post Rating Ratio: +100/-5
    • dj_omnimaga
    • DJOmnimaga.music
    • @DJOmnimaga
    • dj_omnimaga
    • @DJOmnimaga
    • /u/DJ_Omnimaga
    • DJOmnimaga
    • 112/11286
    • @djomnimaga
    • @DJOmnimaga
    • DJ Omnimaga music store
  • Gender: Male
  • Calculators owned: TI-84 Plus C Silver Edition, TI-84 Plus CE, Casio fx-CG10
  • Consoles, mobile devices and vintage computers owned: Samsung i5510, Nintendo Switch, Playstation TV

Bandcamp|Reverbnation|Facebook|Youtube|Twitter
Retired Omnimaga admin (2001-11) and editor (2012-14)

Offline Streetwalrus

  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location:
  • Posts: 2903
  • Post Rating Ratio: +20/-0
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #2 on: December 26, 2016, 11:37:09 pm »
Time to update debian and reboot the server. Whenever you're ready Juju.

Offline aeTIos

  • Dabbler in C
  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location: Ede, NL
  • Posts: 1049
  • Post Rating Ratio: +12/-0
  • hi
    • r_vdijk
    • /u/aetios
    • aetios
  • Gender: Male
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #3 on: December 26, 2016, 11:44:53 pm »
Thanks for the heads up, we'll fix it.
ceci n'est pas une signature

Offline Streetwalrus

  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location:
  • Posts: 2903
  • Post Rating Ratio: +20/-0
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #4 on: December 26, 2016, 11:48:41 pm »
Oh well, I did it. It was long overdue anyway, should be fixed now.

f*** debian for being s*** overall.

Offline Legimet

  • Full User
  • Join Date: Feb 2015
  • Location:
  • Posts: 58
  • Post Rating Ratio: +2/-0
    • Legimet
  • Gender: Male
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #5 on: December 26, 2016, 11:53:32 pm »
If you're using Debian, you might want to look at apticron, a script which sends emails about updates :)

Offline Streetwalrus

  • Super User
  • Original 5
  • Join Date: Nov 2014
  • Location:
  • Posts: 2903
  • Post Rating Ratio: +20/-0
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #6 on: December 26, 2016, 11:56:35 pm »
Thanks for the tip.

Offline xlibman

  • Omni founder & CW co-founder
  • CodeWalrus Staff
  • Super User
  • Forum Maintenance
  • Original 5
  • CodeWalrus Supporter
  • *
  • Join Date: Nov 2014
  • Location: Quebec, Canada
  • Posts: 19016
  • Post Rating Ratio: +100/-5
    • dj_omnimaga
    • DJOmnimaga.music
    • @DJOmnimaga
    • dj_omnimaga
    • @DJOmnimaga
    • /u/DJ_Omnimaga
    • DJOmnimaga
    • 112/11286
    • @djomnimaga
    • @DJOmnimaga
    • DJ Omnimaga music store
  • Gender: Male
Re: CodeWalrus server vulnerable to CVE-2016-2107
« Reply #7 on: December 27, 2016, 08:11:50 am »
@Streetwalrus almost quit the CW staff team because DigitalOcean used Debian last Summer O.O
  • Calculators owned: TI-84 Plus C Silver Edition, TI-84 Plus CE, Casio fx-CG10
  • Consoles, mobile devices and vintage computers owned: Samsung i5510, Nintendo Switch, Playstation TV

Bandcamp|Reverbnation|Facebook|Youtube|Twitter
Retired Omnimaga admin (2001-11) and editor (2012-14)

 


You can also use the following HTML or bulletin board code to share it on your page or forum signature!


Also do not forget to check our affiliates below.
Planet Casio TI-Planet Calc.news BroniesQC BosaikNet Velocity Games