[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] RAQ3 & RAQ4 Hacked...

Subject: Re: [cobalt-security] RAQ3 & RAQ4 Hacked...
From: Paul Jacobs <paul@xxxxxxxxxxxxxxxxxx>
Date: Sun, 31 Mar 2002 19:10:40 -0800
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

At 07:01 PM 3/31/2002, you wrote:

On Sunday 31 March 2002 07:46 pm, Ben Koshy wrote:
> Update: Turns out we isolated it to a newly activated NFS Daemon on that
> box.  Anyone know of vunrenbilities on the NFS Daemon there?  Are there
> patches or security that can be applied?
>

You shouldn't be running NFS accessable to the Internet.
It is usually run on an protceted internal private network
--
Gerald Waugh : Registered Linux user # 255245
http://www.frontstreetnetworks.com
New Haven, CT, United States of America
9:59pm up 10 days, 6:24, 2 users, load average: 1.25, 1.32, 1.52


Yep, but NFS is not very secure to start with..

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security


Paul Jacobs /Senior Network Eng.
Yourwebcentral.com
"Host ANY website "
http://www.yourwebcentral.com
mailto:paul@xxxxxxxxxxxxxxxxxx

References:
- RE: [cobalt-security] RAQ3 & RAQ4 Hacked...
  - From: Ben Koshy
- Re: [cobalt-security] RAQ3 & RAQ4 Hacked...
  - From: Gerald Waugh

Prev by Date: Re: [cobalt-security] RAQ3 & RAQ4 Hacked...
Next by Date: [cobalt-security] Blocking mail from ip/domain name etc.
Previous by thread: Re: [cobalt-security] RAQ3 & RAQ4 Hacked...
Next by thread: Re: [cobalt-security] RAQ3 & RAQ4 Hacked...

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index