[clug] My windows box got rooted last week... how at risk isLinux? [SEC=UNCLASSIFIED]

Roppola, Antti - BRS Antti.Roppola at brs.gov.au
Wed Jun 11 07:25:03 GMT 2008 

I ws going to say, that when running services, the number of
vulnerabilities becomes irrelavnt once it exceeds zero.

Antti 

-----Original Message-----
From: linux-bounces+antti.roppola=brs.gov.au at lists.samba.org
[mailto:linux-bounces+antti.roppola=brs.gov.au at lists.samba.org] On
Behalf Of Mike Carden
Sent: Wednesday, 11 June 2008 2:31 PM
To: Canberra Linux User Group
Subject: Re: [clug] My windows box got rooted last week... how at risk
isLinux?

> Running a recent Linux with SELinux and behind a firewall will make 
> you fairly safe.  But also make sure you use decent passwords, run 
> chkrootkit and the like occasionally, don't use root unnecessarily and

> check your logs.

Whereas running a 2.4.27 kernel machine with port 22 open to the world
for ssh with a weak password or a 2.6.20 Debian machine with the
compromised openSSH server is a recipe to turn your network into a
zombie for bulk scripted attacks.

Allegedly. Of course I don't know anyone silly enough to have such a
network. No sir.

Anyway, the rootkitted box has been rebuilt with a 2.6.24 kernel and
etc, etc.

--
MC
--
linux mailing list
linux at lists.samba.org
https://lists.samba.org/mailman/listinfo/linux

------IMPORTANT - This message has been issued by The Department of Agriculture, Fisheries and Forestry (DAFF). The information transmitted is for the use of the intended recipient only and may contain confidential and/or legally privileged material. It is your responsibility to check any attachments for viruses and defects before opening or sending them on. 

Any reproduction, publication, communication, re-transmission, disclosure, dissemination or other use of the information contained in this e-mail by persons or entities other than the intended recipient is prohibited. The taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this e-mail in error please notify the sender and delete all copies of this transmission together with any attachments. If you have received this e-mail as part of a valid mailing list and no longer want to receive a message such as this one advise the sender by return e-mail accordingly. Only e-mail correspondence which includes this footer, has been authorised by DAFF 
------

More information about the linux mailing list