[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] URGENT Hacking
- Subject: RE: [cobalt-security] URGENT Hacking
- From: "Chris Weiss" <chris@xxxxxxxxxxxxx>
- Date: Mon, 4 Sep 2000 15:18:41 -0400
C'mon people.
Expecting Cobalt to solve your security issues related to general
configuration is a little absurd. Much of what has been flying around shows
how junior many of the people on this list truly are. If this is your first
experience with Unix/Linux - buy some books and get some training.
There are many general Unix tricks for securing your machine that work on
Raqs and are not Cobalt specific. You should run Crack against your
password file with multiple dictionaries, you should run TCP wrappers,
restricting access where possible for services such as FTP, you should check
your file permissions religiously, etc., etc. There are things that every
Unix sysadmin worth his or salary should know.
Go to www.sans.org or a similar site and look up security links. You will
be amazed how many security holes can be plugged simply by making minor
configuration modifications.
Chris Weiss
Chief Scientist
Database Engineering
Pure Carbon
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Mark Baker -
Cobalt Lists
Sent: Monday, September 04, 2000 1:32 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] URGENT Hacking
Is anyone from cobalt networks on the list to comment on this please??
Is there a patch?
Regards,
Mark Baker
Dark Marketing Ltd
http://www.yoursitehere.co.uk
Reply e-mail: mark@xxxxxxxxxxxxxxxxxx
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security