[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] raq3 no admin interface
- Subject: Re: [cobalt-security] raq3 no admin interface
- From: Bill Irwin <bill_irwin@xxxxxxxx>
- Date: Mon, 02 Jul 2001 11:21:24 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
David Yates Buckley wrote:
>
> Thank you!
>
> I ran it and apart from some can't exec statements, it was a series of
> "nothing found" which means that I have not been hacked yet?
>
> Why is a utility like this not part of cobalt distribution...!!!
> It is so obvious a way to check for a break in!
>
> Thank you very much, you actually took a huge load off my mind as the
> server was behaving a bit odd at times and I could not ensure it was safe.
>
> I am off for vacation for ten days waiting to receive an SMS from the
> server with a query:
> "Hi, I've been hacked, what should I do?"
>
> And actually I would not know what to say except:
> PURCHASE NEW SERVER
> RESTORE SITES
> TRASH OLD SERVER
>
> I think I will post a query about this when I return....
>
> Thanks a lot, again...
>
> yates
I couldn't answer why some of this stuff is not included. It's my firm
belief that security should become a big concern. In light of the recent
"hacker war" between US and Chinese, and other incidents where
competitors have had huge gaping security holes, a beefed up
security-like server would be a STRONG selling point.
Please note that some use of security RPMS on our servers may do damage
if used incorrectly. Anytime that I give out info, I'll post it with
warnings if there is that capability. ALso please note that anytime I
give out info, its not in an official capacity (for which I should
probably turn off my sig file).
**Disclaimer**
Views expressed in this email are not those of my employers, nor should
they be construed as such.
--
Bill Irwin
Technical Support Engineer
Sun Microsystems, Inc.