Skip to main content

Full Kernelcare Product and prevention of symlink ownership attacks

Comments

13 comments

  • cPRex Jurassic Moderator

    Hey there! I reached out to KernelCare directly about this since I'm also getting some odd results when I test with AlmaLinux 9, but I haven't heard back from them yet.  I'll be sure to reply as son as I hear something!

    1
  • Andrew

    I think the reason for this is that under extra patchset no patched kernel is available yet for this type of OS however the symlink protection is also available under the free one which might work in your case so can you give this a try:

    kcarectl –set-patch-type free –update

    then follow the instructions above.

    Andrew N. - cPanel Plesk VMWare Certified Professional
    Do you need immediate assistance? 20 minutes response time!*
    EmergencySupport - Professional Server Management and One-time Services

    0
  • EneTar

     # kcarectl --set-patch-type free --update
    'free' patch type is unavailable for your kernel

    0
  • cPRex Jurassic Moderator

    You shouldn't need to use the free patch when you're a paid customer.

    I still haven't heard back from KernelCare about this issue.

    0
  • cPRex Jurassic Moderator

    I just heard back from KernelCare and they aren't aware of this issue on their end.  Could you submit a ticket and then we can get it escalated to KernelCare for you?

    0
  • EneTar

    I guess I can do that, does the ticket require access to my server?

    0
  • cPRex Jurassic Moderator

    Yes, they would require access to troubleshoot this behavior.

    0
  • AmedeoSca

    I have the same problem... no news?

     

    0
  • cPRex Jurassic Moderator

    AmedeoSca - I don't see any additional details on my end for this problem, so it would likely be best to submit a ticket.

    0
  • EneTar

    cPRex what does kernelcare report on your almalinux 9 box, does it still have issues?

    0
  • cPRex Jurassic Moderator

    So far we haven't been able to reproduce this - could someone in this thread submit a ticket and then we can escalate it to KernelCare directly?

    0
  • AmedeoSca

    From here seems that the latest kernel havo no patch....

    https://patches.kernelcare.com/?search=&distro=almalinux9-arm64&type=kernel 

    0

Please sign in to leave a comment.