2024年7月

Linux出了个大漏洞,CVE-2024-6387,就是ssh可以远程未授权Root登录。想象一下是多可怕。。
我的机器都是debian,国外机器源都是直接用的debian官方的,国内阿里和腾讯的是用的相应的他们的镜象。
国外apt的ssh都已经更新了,阿里也更新了,但腾讯仍然停留在老版。这是十足的坑爹啊! **7/2早上,在晚了几个小时后腾讯也终于更新了。但如果运气不好,机器早就给人黑了!
国外太慢,阿里又不让腾讯的机器访问他家镜像,迫不得已,用了爱国云的镜像,问题解决!

root@VM-28-14-debian:~# apt update
Hit:1 http://mirrors.tencentyun.com/debian bookworm InRelease
Get:2 http://mirrors.tencentyun.com/debian bookworm-updates InRelease [55.4 kB]
Get:3 http://mirrors.tencentyun.com/debian-security bookworm-security InRelease [48.0 kB]
Fetched 103 kB in 0s (216 kB/s)
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
All packages are up to date.    这太过份了吧!!!
root@VM-28-14-debian:~# vi /etc/apt/sources.list
root@VM-28-14-debian:~# apt update
Get:1 http://mirrors.huaweicloud.com/debian bookworm InRelease [151 kB]
Get:2 http://mirrors.huaweicloud.com/debian bookworm-updates InRelease [55.4 kB]
Get:3 http://mirrors.huaweicloud.com/debian-security bookworm-security InRelease [48.0 kB]
Get:4 http://mirrors.huaweicloud.com/debian bookworm/main amd64 Packages [8,786 kB]
.....
3 packages can be upgraded. Run 'apt list --upgradable' to see them.
root@VM-28-14-debian:~# apt upgrade
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
Calculating upgrade... Done
The following packages were automatically installed and are no longer required:
  linux-headers-6.1.0-17-amd64 linux-headers-6.1.0-17-common linux-headers-6.1.0-18-amd64 linux-headers-6.1.0-18-common
  linux-headers-6.1.0-20-amd64 linux-headers-6.1.0-20-common linux-headers-6.1.0-21-amd64 linux-headers-6.1.0-21-common
  linux-headers-6.1.0-9-common linux-image-6.1.0-17-amd64 linux-image-6.1.0-18-amd64 linux-image-6.1.0-20-amd64
  linux-image-6.1.0-21-amd64
Use 'apt autoremove' to remove them.
The following packages will be upgraded:
  openssh-client openssh-server openssh-sftp-server     更新了
3 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Need to get 1,513 kB of archives.
After this operation, 0 B of additional disk space will be used.
Do you want to continue? [Y/n] y
.....
  1. 1
  2. 2
  3. 3