Ancestors

Written by nixCraft 🐧 on 2025-01-15 at 18:06

The rsync utility in Linux, *BSD, and Unix-like systems are vulnerable to multiple security issues, including arbitrary code execution, arbitrary file upload, information disclosure, and privilege escalation. Hence, you must patch the system ASAP https://www.cyberciti.biz/linux-news/cve-2024-12084-rsyn-security-urgent-update-needed-on-unix-bsd-systems/

[#]infosec #security #linux #unix

=> View attached media

=> More informations about this toot | More toots from nixCraft@mastodon.social

Written by bazkie, bonkwave superstar on 2025-01-15 at 18:20

@nixCraft aw heck! thanks for the headsup

I wonder how this works; like when am I vulnerable? whenever I use rsync? or just having it installed? or neither? I'm a security noob lol

=> More informations about this toot | More toots from bazkie@beige.party

Toot

Written by nixCraft 🐧 on 2025-01-15 at 18:37

@bazkie Are you running rsync in a daemon mode for the public? The risk is highest for you. Either way, having installed rsync opens up attacks from both external and internal users; hence, updating both the client and server is recommended. Even a bug in the PHP script on your web server can run rsync, and from there, it can escalate. Nasty stuff.

=> More informations about this toot | More toots from nixCraft@mastodon.social

Descendants

Written by bazkie, bonkwave superstar on 2025-01-15 at 18:49

@nixCraft I think it's going over ssh for me.. I only run it on my local machine to upload backups to my remote vps. I am the sole user of both systems, so internal is no threat.

I wonder if I should just remove rsync from my server since I'm not running it there ever!

=> More informations about this toot | More toots from bazkie@beige.party