cve-2014-0196

A new kernel bug has been discovered that allows local users to possibly corrupt memory causing a system crash or gain super user privileges by triggering a race condition with the tty driver involving read and write operations with long strings. Administrators of Linux are advised to upgrade any kernel from 2.6.31-rc3 to 3.14.3 as soon as possible. Proof-of-concept code has already been made available here and here. further reading http://cve.
Read full post gblog_arrow_right

testing puppet

I’d like to cover some information about how you can test puppet modules. I’ve seen a lot of companies creating puppet modules and testing them via direct deployments onto machines. Or worst yet making changes to manifests without any testing at all. The world of puppet testing can seem quite daunting but with the following paragraphs I hope to show you that you can make some very small changes to how you develop puppet modules that will hopefully save you from some very bad situations.
Read full post gblog_arrow_right

setting up ssh & byobu

Like a lot of Unix Administrators I spend most of my day staring at a ssh session. I thought today I’d write about how I connect to servers. Currently I use a windows laptop to do most of my work. This OS was mainly chosen for a couple of reasons. If I have Linux as my desktop I tend to do most of my development work on the desktop and forget to sync it to the projects I’m working on often enough.
Read full post gblog_arrow_right

rate limit the fcc

I came across an interesting plan by a group of webmasters to rate limit the speed of hosted sites for members of the FCC so they could get a taste of what the end of Net Neutrality would mean. The webmasters are rate limiting all web requests to their hosts if the users are coming from FCC IP addresses. The code to limit has been posted on a gist here.
Read full post gblog_arrow_right