[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] [RaQ3i] interesting hack symptoms >> answer to Peter

Subject: Re: [cobalt-security] [RaQ3i] interesting hack symptoms >> answer to Peter
From: Gossi The Dog <gossi@xxxxxxxxxxxxxx>
Date: Sat, 4 Nov 2000 22:40:27 +0000 (GMT)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

<snip>

...
> also going on the suggestion stated previously in this forum that it's best not to
> mess with something if it's working stable right now, unless it is >really<
> imporant to have the latest and greatest.

Yeah, but when it comes to security updates, it often pays of to get it
sorted.  People are scanning for insecure boxes all the time, and if
you're one of them you can almost bet somebody is going to come along and
exploit it.

The only thing to -really- worry about are remote services - as in, are
things like proftp, qpopper and apache up to date, and if you've installed
anything yourself (eg ssh or whatever), are you keeping that up-to-date.

References:
- [cobalt-security] [RaQ3i] interesting hack symptoms >> answer to Peter
  - From: Theodore Jones

Prev by Date: Re: [cobalt-security] [Raq3i] securely using rpc.statd and other rpc services
Next by Date: Re: [cobalt-security] Re: interesting hack symptoms
Previous by thread: [cobalt-security] [RaQ3i] interesting hack symptoms >> answer to Peter
Next by thread: RE: [cobalt-security] netstat-ing and finger service

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index