[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Cobalt to provide compensation for server hack?

Subject: Re: [cobalt-users] Cobalt to provide compensation for server hack?
From: Colin Smith <colin@xxxxxxxxxxxxxxxxxxxx>
Date: Thu Feb 22 04:10:05 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Sat, 17 Feb 2001, System Admin wrote:

> One of our RAQ3 servers was a victim of the recent hack. Has anyone taken up
> the issue of compensation for this incident with Cobalt? Surely they must be
> liable as they failed to provide sufficient server protection. We had all
> patches loaded and security was still compromised.

Um, do Cobalt say that their boxes are uncrackable? Nope. Is it *your*
responsibility to make sure that your network remains uncompromised? Yes.

Cobalts are a doddle to set up and get on a network. The do pretty much
exactly what it says on the tin. If you drop those boxes onto the Internet
without really understanding what's required to harden vanilla boxes then
I don't see how it can be Cobalt's fault.

It's one thing to run an easy to use vanilla server appliance on a secure
network, it's quite another to run a hardened server on the Internet.
Being competent to do the first does not make you competent to do the
second.

Your time would be better spent auditing your systems. You're on the
various security mailing lists? You're a member of a reputable
professional computing body?

-- 
regards,
Colin.

References:
- [cobalt-users] Cobalt to provide compensation for server hack?
  - From: System Admin

Prev by Date: [cobalt-users] Re: [SPYWARE???] how do i get online streaming on my raq 3
Next by Date: Re: [cobalt-users] PGP for Raq3
Previous by thread: RE: [cobalt-users] Cobalt to provide compensation for server hack?
Next by thread: FW: [cobalt-users] Cobalt to provide compensation for server hack?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index