Hello everybody I have some questions about what's happening and I'm sure I'm not the only one!
Q&A / Discussion Thread re: The Current State of Affairs
Where do you get up to date news about vulnerabilities and patches? How will we know when the latest vulnerabilities are patched and when new vulns are disclosed (I'm assuming there may be more to come)?
I know these vulnerabilities make servers vulnerable, but do they effect everyday single-user computers? Should we be keeping our Linux computers offline for now?
From what I've gathered about this latest one, it's a local privilege escalation, so someone would have to either have direct access (either physically or via ssh or the like), or they'd have to get you to run their exploit, so it's mostly relevant to public ssh servers like town, perhaps less so to your average desktop/laptop PC on a home network behind a NAT/firewall.
