[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Re: interesting hack symptoms

Subject: Re: [cobalt-security] Re: interesting hack symptoms
From: Theodore Jones <theoj@xxxxxxxxxxxxx>
Date: Sat, 04 Nov 2000 16:07:23 -0800
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Peter,

Ok.  Well you guys seem to be power users, so I'll take your advice into strong
consideration on doing the updates.

Thansk much,

~ T

Linking Internet - Peter Batenburg wrote:

> i agree with you completely.. so far i have installed several rpms for rh
> 6.2 on raq3.. and no problems.. there aren't much differences between
> cobaltos and redhat.. yeah.. some extra kernel patches.. ;)
>
> At 22:44 4-11-00 +0000, you wrote:
>
> >On Sat, 4 Nov 2000, Michael Aronoff wrote:
> >
> > > >----- Original Message -----
> > > >       Does that patch require the installation require the update of
> > > OS3?.... I
> > > >haven't done that one yet because of all the horrors I heard about from
> > > other
> > > >users on the regular cobalt list....
> > >
> > > Look, I agree that you need to be careful about Cobalt patches, BUT you are
> > > running an ever greater security risk by not installing them!!!  They often
> > > fix known security exploits and other problems.  The best thing to do is
> > > subscribe to cobalt-users and cobalt-developers and read them!!  People on
> > > these lists will talk about weather a patch causes problems , things to
> > look
> > > out for and so on.  I always wait about a week after a patch is released
> > > before I install it.  That way I am being prudent but still secure.
> >
> >It's not really a secure practice to wait a week before patching
> >something.
> >
> >Lets say I come along, nmap your network, find a few boxes running qpopper
> >2.53 and old sendmail, I note down the version numbers, wait for an hole
> >to be found, and crack into the boxes.  I then trojan them up with
> >kernel modules, run a few sniffers etc etc etc.  You then come along and
> >install the patch, and think you're secure.
> >
> >Also worth bareing in mind Cobalt currently take about a month with
> >patches for security issues, so they can test them.
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security

References:
- [cobalt-security] Re: interesting hack symptoms
  - From: Michael Aronoff
- Re: [cobalt-security] Re: interesting hack symptoms
  - From: Linking Internet - Peter Batenburg

Prev by Date: Re: [cobalt-security] [Raq3i] securely using rpc.statd and otherrpcservices
Next by Date: [cobalt-security] syslog.conf Settings
Previous by thread: Re: [cobalt-security] Re: interesting hack symptoms
Next by thread: [cobalt-security] [Raq3i] interesting hack symptoms >> reply to Michael

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index