At some point you will find it very handy to be able to run the same command on multiple servers. Sure, you could just put a list of IPs in a file and run something against it using a for loop, but gsh is going to make your life much easier.
Continue Reading…


On March 21st, the openssh package was updated to patch two moderate vulnerabilities; CVE-2015-5600 and CVE-2016-3115.
Continue Reading…


If you’re running a nameserver using BIND, you likely want to update before someone zeros in on you causing named to crash.
Continue Reading…


Today, a co-worker alerted me to the ‘drown attack’. DROWN is an acronym for “Decrypting RSA with Obsolete and Weakened eNcryption”. While it’s a spin on an older vulnerability, it also builds upon it. This has been declared CVE-2016-0800.
Continue Reading…

On Feb 16th, Google and Red Hat announced a critical glibc stack-based buffer overflow bug. Here’s how you can patch it on Red Hat (RHEL), CentOS, etc..
Continue Reading…