Linux is not invulnerable..
Not FUD: genuine interest in loopholes
For instance, he said he created a Linux kernel exploit system called Enlightenment that ultimately won him some negative interest from the U.S.'s National Security Agency (NSA). According to Spengler, Enlightenment can disable Linux access control policy, including features such as Security-Enhanced Linux (SELinux) and AppArmor -- and in doing so, proves an important point, he said.
Over my head but still some user action required ??
The noted exploit is -well-above my head but certainly being used:
an enormous DDOS attack from several IP addresses in China that are all attempting to hit phpmyadmin links to determine what the version is.
This literally brings the server to its knees. Over this past weekend, we saw over 600 thousand connection attempts. It took over 5 hours to firewall all those IP addresses (and I'm sure we got legitimate users too).
Just want to give a heads up to everyone. Over the past 6 hours or so we have seen some script kitty activity that has gotten through phpmyadmin on a few of our servers. The versions of phpmyadmin were not the latest, but not that old either. After getting in, there seems to be your standard ssh brute force attacks that run outgoing scans afterwards.