[clug] My windows box got rooted last week... how at risk
Roppola, Antti - BRS
Antti.Roppola at brs.gov.au
Wed Jun 11 07:25:03 GMT 2008
I ws going to say, that when running services, the number of
vulnerabilities becomes irrelavnt once it exceeds zero.
From: linux-bounces+antti.roppola=brs.gov.au at lists.samba.org
[mailto:linux-bounces+antti.roppola=brs.gov.au at lists.samba.org] On
Behalf Of Mike Carden
Sent: Wednesday, 11 June 2008 2:31 PM
To: Canberra Linux User Group
Subject: Re: [clug] My windows box got rooted last week... how at risk
> Running a recent Linux with SELinux and behind a firewall will make
> you fairly safe. But also make sure you use decent passwords, run
> chkrootkit and the like occasionally, don't use root unnecessarily and
> check your logs.
Whereas running a 2.4.27 kernel machine with port 22 open to the world
for ssh with a weak password or a 2.6.20 Debian machine with the
compromised openSSH server is a recipe to turn your network into a
zombie for bulk scripted attacks.
Allegedly. Of course I don't know anyone silly enough to have such a
network. No sir.
Anyway, the rootkitted box has been rebuilt with a 2.6.24 kernel and
linux mailing list
linux at lists.samba.org
------IMPORTANT - This message has been issued by The Department of Agriculture, Fisheries and Forestry (DAFF). The information transmitted is for the use of the intended recipient only and may contain confidential and/or legally privileged material. It is your responsibility to check any attachments for viruses and defects before opening or sending them on.
Any reproduction, publication, communication, re-transmission, disclosure, dissemination or other use of the information contained in this e-mail by persons or entities other than the intended recipient is prohibited. The taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this e-mail in error please notify the sender and delete all copies of this transmission together with any attachments. If you have received this e-mail as part of a valid mailing list and no longer want to receive a message such as this one advise the sender by return e-mail accordingly. Only e-mail correspondence which includes this footer, has been authorised by DAFF
More information about the linux