[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] RAQ3 vulnerabilities
- Subject: Re: [cobalt-security] RAQ3 vulnerabilities
- From: Parker Morse <morse@xxxxxxxxxxx>
- Date: Tue, 04 Dec 2001 09:49:10 -0500
- Organization: Sinauer Associates, Inc.
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
We were discussing...
> I'd be surprised if it hasn't. The hacked site (see begining of this topic)
> seems to online even with the ROM kernel, so it must have network support.
Maybe I just haven't been doing this long enough... but why is/was the
vandalized site still online? I mean, if it's not serving what it's supposed
to serve anyway, why not stop the httpd (or yank the network cable, or the
power cable, or whatever's appropriate ;-) instead of broadcasting a
cracker's boast?
The only answer I can come up with is, "The sysadmin isn't paying
attention," and other evidence seems to back that up. Is there something
else I'm missing?
Thanks,
pjm