[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Secureing cobalt Raq3
- Subject: RE: [cobalt-security] Secureing cobalt Raq3
- From: "malcolm wild" <cobaltsec@xxxxxxxxxxx>
- Date: Tue, 16 Oct 2001 20:08:20 +0100
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
If you've been breached its no longer your machine, you'd just be putting
patches on someonelses box ;)
format and restore is the best way.
apply all the current patches from www.cobalt.com/support
although some builds are old e.g. apache there aren't any vulenrabilities if
you take a few precautions.
don't give out shell accounts and don't run services you done need, run the
boxes behind a secure firewall and vet any scripts/programs that clients
want to run.
keep checking the systems for updates/running processes/changed files
security is a continual issue not a fix and forget
after that you sleep better, prevention is better than cure.
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Martin
Sent: 16 October 2001 19:05
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: [cobalt-security] Secureing cobalt Raq3
Im suffering from intrusions. The default installation of the cobalt Raq3 is
weak!!!
Can somebody give me advise about upgradeing daemons, url where i can get
the upgrades (because the cobalt team seems no to worry in provideing
upgrades, the just install a server with a sendmail 8.9 version for
example!!!), anything that can help me please.
Thanks