[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] RE: The nasty RaQ hack...
- Subject: Re: [cobalt-security] RE: The nasty RaQ hack...
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
- Date: 24 Jan 2003 12:05:22 +0300
- Organization:
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Fri, 2003-01-24 at 11:48, Mail List wrote:
> You might want to chmod 700 gcc for a bit of extra security -that
> RaQFuCk.sh script (or was it the SSL exploit) needs to get hold of gcc to
> do it's thing.
Yup, that's a neat idea. Many UNIX exploits/worms rely on the C
compiler, so closing access to it will thwart them. I guess I'd add it
to my "quick security guide"...
Eugene