[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Howto trace hack

Subject: RE: [cobalt-users] Howto trace hack
From: "Crocket" <crocket@xxxxxxxxxxx>
Date: Mon Mar 22 01:07:00 2004
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

> We tend to see this exploit regularly.., not only in that gallery module,
> also in poorly programmed PHP scripts by customers..
> This type of hack is the one that is 99% of the (attempted) hacks on our
> servers..

> It ususally ends there.., due them trying to set up an irc or ftp server,
> which in turn is blocked by the firewall..

Hi Jeroen,

We've asked Gerald to install his Security package on this server like he
did on our other servers. Thanks Gerald for the quick service ;-).
This server was still in the progress of getting all vhosts copied to from a
raq4 so we hadn't come to that security part yet.
But it's another lesson to not postpone such an important part on future
server adds.

Now my question, is the included firewall blocking things like that from now
by default or is there anything to configure ?
I don't mean the gallery exploit itself but the install of unwanted software
at unwanted places ...

Thanks for the help list!
John

Follow-Ups:
- RE: [cobalt-users] Howto trace hack
  - From: Jeroen Wunnink

References:
- RE: [cobalt-users] Howto trace hack
  - From: Jeroen Wunnink

Prev by Date: RE: [cobalt-users] Howto trace hack
Next by Date: RE: [cobalt-users] Howto trace hack
Previous by thread: RE: [cobalt-users] Howto trace hack
Next by thread: RE: [cobalt-users] Howto trace hack

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index