[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] RE: The nasty RaQ hack...

Subject: Re: [cobalt-security] RE: The nasty RaQ hack...
From: Eugene Crosser <crosser@xxxxxxxxxxx>
Date: 24 Jan 2003 12:05:22 +0300
Organization:
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Fri, 2003-01-24 at 11:48, Mail List wrote:

> You might want to chmod 700 gcc for a bit of extra security -that 
> RaQFuCk.sh script (or was it the SSL exploit) needs to get hold of gcc to 
> do it's thing.

Yup, that's a neat idea.  Many UNIX exploits/worms rely on the C
compiler, so closing access to it will thwart them.  I guess I'd add it
to my "quick security guide"...

Eugene

Follow-Ups:
- Re: [cobalt-security] RE: The nasty RaQ hack...
  - From: Larry Smith

References:
- [cobalt-security] RE: The nasty RaQ hack...
  - From: Mail List

Prev by Date: [cobalt-security] RE: The nasty RaQ hack...
Next by Date: Re: [cobalt-security] Secure GUI
Previous by thread: [cobalt-security] RE: The nasty RaQ hack...
Next by thread: Re: [cobalt-security] RE: The nasty RaQ hack...

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index