[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [2] [cobalt-users] Suggestion for Sun Cobalt Team

Subject: RE: [2] [cobalt-users] Suggestion for Sun Cobalt Team
From: "Alex Lee" <alex@xxxxxxxxxx>
Date: Thu Feb 22 07:43:50 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> Many bought / leased a cobalt at a CoLo and it is very painful to do
> a full restore for several reasons:
>
> 1.: It is a manual task and you are being charged with a few hundred
>
> 3.: You have to tell your clients that you were hacked (!)  Which might
>
> 4.: this is no guarantee that this never happens again ...

All valid points. Has anyone calculated the cost analysis of rebuilding the
server from scratch (with a backup) vs hiring a internet security expert to
audit your system and clean it?

If you fail to notify your users if you got hacked, then you put them in
jeopardy if they had any confidential information stored or passed through
your server. You also take the risk of encountering future problems as you
cannot be certain if you eradicated all traces of the intruder(s).

There is no guarantee that you will never be hacked again - no one saw the
BIND bug coming (or that it would have affected so many possible machines).

The good thing that came out of this past month is the increase in awareness
of security issues in providing Internet services.

btw, the above message is my opinion entirely and does not reflect Sun
Cobalt policy.


alex

Follow-Ups:
- RE: [2] [cobalt-users] Suggestion for Sun Cobalt Team
  - From: flash22

References:
- RE:[2] [cobalt-users] Suggestion for Sun Cobalt Team
  - From: RaQ3

Prev by Date: [cobalt-users] phpPgAdmin
Next by Date: Re: [cobalt-users] admin & root pwds don't match
Previous by thread: RE:[2] [cobalt-users] Suggestion for Sun Cobalt Team
Next by thread: RE: [2] [cobalt-users] Suggestion for Sun Cobalt Team

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index