Quick PSA or reminder: If you're running Linux connected to the Internet, especially with exposed services, you'll want to patch for copy.fail.

--
|08 ■ |12NuSkooler |06// |12Xibalba |08- |07"|06The place of fear|07"
|08 ■ |03xibalba|08.|03vip |08(|0344510|08/|03telnet|08, |0344511|08/|03ssh|08) |08 ■ |03ENiGMA 1/2 WHQ |08| |03Phenom |08| |0367 |08| |03iMPURE |08| |03ACiDic --- ENiGMA 1/2 v0.4.0-beta (linux; x64; 22.22.2)
* Origin: Xibalba -+- xibalba.vip:44510 (21:1/121)

Quick PSA or reminder: If you're running Linux connected to the Internet, especially with exposed services, you'll want to patch for copy.fail.

Please elaberate. I don't know what that file is, where to locate it, or how to patch it.
---

-FltCapt Dallas Vinson, SFI

... Error 3032 - Recursion error. See error 3032.

--- Mystic BBS v1.12 A48 (Linux/64)
* Origin: Legends of Yesteryear (21:3/235)

Quick PSA or reminder: If you're running Linux connected to the Internet, especially with exposed services, you'll want to patch for copy.fail.

https://youtu.be/GD0-t01R21s



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

Quick PSA or reminder: If you're running Linux connected to the Inter especially with exposed services, you'll want to patch for copy.fail.

Please elaberate. I don't know what that file is, where to locate it, or how to patch it.

TechHeart's video seems good on this (seriously, go put it on at half speed in the background, if nothing else, so that it gets better viewing numbers), but I figure I'll give a simplified summary on the bug:

Assume that all users on your Linux system now have the power of root, unless you specifically patch this.

Personally, I will probably be lazy on this, as I'm not running any Linux systems where there are users who are not me. And I'm sure I'm a danger to myself, but I could just login as root anyway. This exploit would just save me from using a password.

--- Mystic BBS v1.12 A48 (Linux/64)
* Origin: Storm BBS (21:2/108)

Quick PSA or reminder: If you're running Linux connected to the Inter especially with exposed services, you'll want to patch for copy.fail.

Please elaberate. I don't know what that file is, where to locate it, or how to patch it.

It's part of the kernel update. Just upgrade your system, should pull from the standard updates. For instance, apt update.

... Real Programmers balance their checkbooks in hex

--- Mystic BBS v1.12 A49 2023/04/30 (Linux/64)
* Origin: Clutch BBS * telnet://clutchbbs.com (21:1/199)

Geri Atricks around Friday, May 8th...

Please elaberate. I don't know what that file is, where to locate it, or how to patch it. ---

https://copy.fail/ has a good chunk of the info

I think all major distros have likely patched at this point, just make sure you get the updates & reboot to load the latest kernel.

--
|08 ■ |12NuSkooler |06// |12Xibalba |08- |07"|06The place of fear|07"
|08 ■ |03xibalba|08.|03vip |08(|0344510|08/|03telnet|08, |0344511|08/|03ssh|08) |08 ■ |03ENiGMA 1/2 WHQ |08| |03Phenom |08| |0367 |08| |03iMPURE |08| |03ACiDic --- ENiGMA 1/2 v0.4.0-beta (linux; x64; 22.22.2)
* Origin: Xibalba -+- xibalba.vip:44510 (21:1/121)

Adept around Friday, May 8th...

This exploit would just save me from using a password.

lol, useful as a time saver too!



--
|08 ■ |12NuSkooler |06// |12Xibalba |08- |07"|06The place of fear|07"
|08 ■ |03xibalba|08.|03vip |08(|0344510|08/|03telnet|08, |0344511|08/|03ssh|08) |08 ■ |03ENiGMA 1/2 WHQ |08| |03Phenom |08| |0367 |08| |03iMPURE |08| |03ACiDic --- ENiGMA 1/2 v0.4.0-beta (linux; x64; 22.22.2)
* Origin: Xibalba -+- xibalba.vip:44510 (21:1/121)

TechHeart's video seems good on this (seriously, go put it on at half speed in the background, if nothing else, so that it gets better viewing numbers), but I figure I'll give a simplified summary on the bug:

Assume that all users on your Linux system now have the power of root, unless you specifically patch this.

Dude - thank you... and why 1/2 speed??? Do I talk too fast?!?!? :P

Theres a new video coming this weekend - while there are SOME outlier distros STILL affected by CopyFail, we got a new vuln today; Dirty Frag - it uses some bits of the CopyFail CVE and some other modules and there are now CURRENT distros that are affected. For example, I popped root on Ubuntu, Debian 13, Garuda... just as easily as CopyFail.

Yes... most distros will be updated this weekend - but man, that AI landscape is gonna bring us MORE priv escalation CVEs that we just haven't been looking at IMO.

Crazyness... also, I didn't know you watched TechHeart and that makes me smile!!! :P



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

Dude - thank you... and why 1/2 speed??? Do I talk too fast?!?!? :P

Nah, just that evidently "watch time" is a metric that YouTube uses. So, if you want to maximize watch time for a channel, you can watch at half speed, and presumably it'll make YouTube that much more likely to suggest it.

I don't imagine it's a big difference, and perhaps they've changed the algorithm, but still...

Crazyness... also, I didn't know you watched TechHeart and that makes me smile!!! :P

I can't say I watch _every_ video, but I do like supporting BBS scene people.

And much of your content is interesting and informative, anyway. Especially if it hits on a topic I was directly interested in.

--- Mystic BBS v1.12 A48 (Linux/64)
* Origin: Storm BBS (21:2/108)