[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] wish to Cobalt: suppressing "sensitive" information

Subject: RE: [cobalt-users] wish to Cobalt: suppressing "sensitive" information
From: "Jerome Tytgat" <j.tytgat@xxxxxxxx>
Date: Thu Sep 21 02:44:48 2000

> The biggest argument for this is not whether or not
> it is a Cobalt system because Cobalt's port 81/444 admin
> server is a dead giveaway.  But whether or not the box is
> x86 or mips, since most remote root sploits use shell code.  If
> someone is smashing the stack and using the wrong shell code
> they are going nowhere fast, and it might leave some
> funk behind to aid in detection.
>
> Jeff-

What we offer with these information is : what exploit to use,
what file to modify, which user/guest/admin to suid to, which
rootkit to use for modify the system... Simply implement
a sniffer...

With a Linux box we can control, we can get rid of lots of problem.

Does that mean Cobalt is for NO SECURITY ????

Once they are in, they are behind our firewall... so they might
(MAY) go to other customers server doing bad things.


No security is really bad security...
_______________________________________________________________
>ISION FRANCE
Jérôme Tytgat
System and Network security Administrator
mailto:j.tytgat@xxxxxxxx    	  http://www.ision.fr
_______________________________________________________________

Follow-Ups:
- Re: [cobalt-users] wish to Cobalt: suppressing "sensitive" information
  - From: Kris Dahl

References:
- Re: [cobalt-users] wish to Cobalt: suppressing "sensitive" information
  - From: Jeff Bilicki

Prev by Date: RE: Re[3]: [cobalt-users] wish to Cobalt: suppressing "sensitive"information
Next by Date: [cobalt-users] Name Based accounts
Previous by thread: Re: [cobalt-users] wish to Cobalt: suppressing "sensitive" information
Next by thread: Re: [cobalt-users] wish to Cobalt: suppressing "sensitive" information

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index