Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [vulnerabilities]

85 questions
0
votes
1 answer

How to fix these vulnerability "" (CVE-2020-2781) ** Upgrade IBM Java to version 7.0.10.65 "" in rhel 7 server

I got this type of vulnerabilities on a rhel server after scan "(CVE-2020-2781) ** Upgrade IBM Java to version 7.0.10.65 Download and apply the upgrade from: https://www.ibm.com/developerworks/java/jdk/"" Can I fix this vulnerability by install or…
Newlinux-men
  • 15
  • 1
  • 5
0
votes
1 answer

How to fix Weak TLS 1.2 Encryption

I have a requirement to disable below weak TLS ciphers in Windows Server 2016. I tried to reasearch and it says "The Microsoft SCHANNEL team does not support directly manipulating the Group Policy and Default Cipher suite locations in the registry"…
tim
  • 11
  • 1
0
votes
1 answer

Prevent TLS/SSL Birthday attacks on 64-bit block ciphers (SWEET32)

Our recent VA report shows that there are TLS/SSL Birthday attacks on 64-bit block ciphers possible on Kubernetes etcd ports. Suggested solution is Configure the server to disable support for 3DES suite. Our problems are : How to disable support…
Sachith Muhandiram
  • 223
  • 4
  • 9
0
votes
2 answers

Cleaning and upgrading legacy infrastructure

I am a fullstack engineer in a small company, and I am responsible for everything related to technology, from infrastructure, to code. I arrived a few months ago, and quickly realised that there were many issues, both code-related but also…
Youri
  • 103
  • 2
0
votes
1 answer

Does the BootHole Vulnerability Effect Grub1 or Only Grub2?

I've been doing some reading on BootHole to help understand our attack surface and see everything talking about GRUB2, but nothing about GRUB "Legacy" or GRUB1. Wondering if it has tested against this older version of the bootloader. Older distros…
Ken S.
  • 479
  • 5
  • 14
-1
votes
1 answer

What does ISIC option "-t" mean?

As I already found out, ISIC tool has an option "-t" only for tcpsic or tcpsic6 and it means percentage of packets with wrong checksum. In tcpsic case my router works fine. But when Ive been testing my router with isic -s rand -d 192.168.10.20 -t…
Ain Mditrevi
  • 1
  • 3
-1
votes
2 answers

Risks of not updating an Ubuntu server on a local network?

Through work I recently came across a server that is used by 10-20 users daily as a sort of web server. It is running Ubuntu 12 and it has not been updated for a very long time it seems. Currently there are over 300 security updates waiting to be…
Uberswe
  • 159
  • 3
  • 9
-1
votes
1 answer

Check my own servers for vulnerabilities

We are a small early stage startup with not so much money to spend. We have less than 3 servers that we want to monitor for security issues. Our website is essentially on one server having: Ubuntu A Single-Page-App (full javascript) An API…
Sebastien Lorber
  • 99
  • 2
-1
votes
1 answer

Unknown logins in vsftpd - hacked?

I'm running logwatch and there I've seen some strange activity. There are two different ip adresses (I'll call this guy hacker) where it seems they logged in successfully through vsdftpd: hacker's IP 1: 91.121.106.53 vsftpd.log.1:Tue Feb 19…
Stefan Profanter
  • 365
  • 1
  • 5
  • 17
-1
votes
1 answer

Programs and tool to scan open source software for vulnerabilities?

Since my business uses a lot of open source software I was wondering if there was a way to scan for vulnerabilities in the code before we either compile it, ./configure, make etc... Or as scripting languages for either web servies for to run on…
Definity
  • 127
  • 6
1 2 3 4 5
6