[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] Secureing cobalt Raq3

Subject: RE: [cobalt-security] Secureing cobalt Raq3
From: "malcolm wild" <cobaltsec@xxxxxxxxxxx>
Date: Tue, 16 Oct 2001 20:08:20 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

If you've been breached its no longer your machine, you'd just be putting
patches on someonelses box ;)

format and restore is the best way.

apply all the current patches from www.cobalt.com/support

although some builds are old e.g. apache there aren't any vulenrabilities if
you take a few precautions.

don't give out shell accounts and don't run services you done need, run the
boxes behind a secure firewall and vet any scripts/programs that clients
want to run.

keep checking the systems for updates/running processes/changed files
security is a continual issue not a fix and forget

after that you sleep better, prevention is better than cure.


-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Martin
Sent: 16 October 2001 19:05
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: [cobalt-security] Secureing cobalt Raq3


Im suffering from intrusions. The default installation of the cobalt Raq3 is
weak!!!
Can somebody give me advise about upgradeing daemons, url where i can get
the upgrades (because the cobalt team seems no to worry in provideing
upgrades, the just install a server with a sendmail 8.9 version for
example!!!), anything that can help me please.
Thanks

References:
- [cobalt-security] Secureing cobalt Raq3
  - From: Martin

Prev by Date: RE: [cobalt-security] Logcheck & Crontab
Next by Date: [cobalt-security] Is this coincidence or what - FTP Scans
Previous by thread: RE: [cobalt-security] Secureing cobalt Raq3
Next by thread: [cobalt-security] Re:

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index