[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] RAQ3 vulnerabilities

Subject: Re: [cobalt-security] RAQ3 vulnerabilities
From: Parker Morse <morse@xxxxxxxxxxx>
Date: Tue, 04 Dec 2001 09:49:10 -0500
Organization: Sinauer Associates, Inc.
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

We were discussing...
> I'd be surprised if it hasn't. The hacked site (see begining of this topic)
> seems to online even with the ROM kernel, so it must have network support.

Maybe I just haven't been doing this long enough... but why is/was the
vandalized site still online? I mean, if it's not serving what it's supposed
to serve anyway, why not stop the httpd (or yank the network cable, or the
power cable, or whatever's appropriate ;-) instead of broadcasting a
cracker's boast?

The only answer I can come up with is, "The sysadmin isn't paying
attention," and other evidence seems to back that up. Is there something
else I'm missing?

Thanks,

pjm

Follow-Ups:
- Re: [cobalt-security] RAQ3 vulnerabilities
  - From: Michael Stauber

References:
- Re: [cobalt-security] RAQ3 vulnerabilities
  - From: Michael Stauber

Prev by Date: [cobalt-security] RE: root kitted
Next by Date: Re: [cobalt-security] RAQ3 vulnerabilities
Previous by thread: Re: [cobalt-security] RAQ3 vulnerabilities
Next by thread: Re: [cobalt-security] RAQ3 vulnerabilities

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index