fedora and RHEL4 blocks current instance of the worm out of the box

Posted Nov 9, 2005 17:38 UTC (Wed) by scottt (guest, #5028)
In reply to: SE Linux systems not vulnerable by treed
Parent article: A Linux worm on the loose?

From Mark Cox's blog on 7 Nov 2005:

"Our analysis showed that the default SELinux targeted policy on Enterprise Linux 4 would have blocked the specific instances of this worm seen so far, but is not sufficient to block a worm written differently from exploiting this vulnerability if left unpatched. Time to make sure all your servers are up2date!"