[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Cobalt to provide compensation for server hack?

Subject: Re: [cobalt-users] Cobalt to provide compensation for server hack?
From: "Kevin D" <kdlists@xxxxxxxxxxxxxxx>
Date: Fri Feb 16 15:55:01 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> +One of our RAQ3 servers was a victim of the recent hack. Has
> +anyone taken up
> +the issue of compensation for this incident with Cobalt?

You should talk to the BIND people, they are the ones who's software had the
exploit. Cobalt just distributes it.

> +Surely
> +they must be
> +liable as they failed to provide sufficient server protection. We had all
> +patches loaded and security was still compromised.

Cobalt is not responsible for the administration and security of your
server. YOU are. If you got hacked, YOU are to blame, not cobalt. I don't
know of any 100% secure server/software. (if you find one, let us all know).
The reality of network administration is that we work with imperfect
systems, so you have to expect that holes will eventually be exploited. The
key is to be proactive with multiple layers of security. You can't just
expect to throw your idiot-proof cobalt server on a public T1 and have it be
perfectly safe and sound.

> Just add this to the list of Cobalt's shortcomings as a Vendor.

Or to your list of shortcomings as a network administrator...

Kevin

References:
- FW: [cobalt-users] Cobalt to provide compensation for server hack?
  - From: Tony

Prev by Date: Re: [cobalt-users] macintosh client with outlook express not able to download pop mail from qube2
Next by Date: RE: [cobalt-users] H4CK3R5 and Korea
Previous by thread: Re: [cobalt-users] Cobalt to provide compensation for server hack?
Next by thread: RE: [cobalt-users] Cobalt to provide compensation for server hack?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index