[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] raq3 no admin interface
- Subject: Re: [cobalt-security] raq3 no admin interface
- From: "Kevin D" <kdlists@xxxxxxxxxxxxxxx>
- Date: Mon, 2 Jul 2001 09:17:47 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
From: "David Yates Buckley" <yates@xxxxxxxxx>
> Why is a utility like this not part of cobalt distribution...!!!
> It is so obvious a way to check for a break in!
Such scripts only check for known exploits, and a crafty hacker can evade
detection by such a script. Don't let this single tool lull you into a false
sense of security. Rely on multiple tools - logs, baseline file checks, etc.
And don't forget to do regular security audits (check for suid root files,
check root history, check your /tmp directories, etc).
Kevin