[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Hackers. What's the problem?

Subject: Re: [cobalt-users] Hackers. What's the problem?
From: Anthony <austservices@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu Feb 22 18:35:20 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Thu, 22 Feb 2001 abc-123@xxxxxxxxxxx wrote:

> Well, i am not one to defend Cobalt products, but, it is not just Cobalt
> servers getting hacked, it is thousands of others Redhat servers being
> hacked. Worst thing is, that, if one server in your network is hacked, you
> may as well look at all of your toher ones, as the odds are problably 90%
> they are hacked. We are switching from redhat to freebsd and win2000. May
> not help, but sure can not hurt none.


I would have to say though I run Redhat 7.0 servers and keep the servers
like FTP and BIND uptdate. I have not been broken in to not that they have
not tried.

I would have to say that it is more of a Situation of how quick the
servers are updated and watching cert.org and the vendor of the packages
site etc to see as soon as a Security update comes out.


Cobalt appear to take 3-10 times longer than do other vendors to update
their packages.

And i would have to say FreeBSD is a good move. I run them as servers and
gateway routers and firewalls etc and They are great but win2K I think
will be your bigest problem. First when something is broken you need to
get MS to admit it is broken before they will fix it. They have what
appears to be the same problem as Sun Cobalt. Reluctance to admit
problems or speed inhibeted internet links. It breaks, we see it and it
takes them several days to see it and then start on a fix.

I think that is the bigest complaint. Other vendors can keep products
uptodate and working ASAP after the problem is found but it takes weeks if
not months for an uptodate package to be released.

Any way my $0.02 worth

Tired TechSupport


> 
> David
> ----- Original Message -----
> From: "Anthony" <austservices@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
> To: <cobalt-users@xxxxxxxxxxxxxxx>
> Sent: Thursday, February 22, 2001 5:26 PM
> Subject: Re: [cobalt-users] Hackers. What's the problem?
> 
> 
> > On Wed, 21 Feb 2001, Dan Mahoney, System Admin wrote:
> >
> > > I've seen a LOT of info on this list concerning cobalt hacks.  My BIG
> > > question that despite reading all of the emails I still can't get is:
> > >
> > > Where is the insecurity?
> >
> > I have had several RaQ3's hacked some with all services and others
> > without.
> >
> > In both cases both bind and ProFTP were the access points. They are both a
> > cause of hacks.
> >
> > You get different hacks depending what is running ie Telnet or not, Ftp or
> > not etc. They are both a common Problem.
> >
> > Tired Techsupport
> >
> >
> >
> > >
> > > No, I'm not trying to imply there isn't one.  I've had EIGHT cobalts
> > > compromised to date, and I'd love to know which daemon is the cause of
> the
> > > trouble.  Is it ftpd?  bind?  (which runs as root, and not in a
> > > sandbox?).  I've seen mention of these two on the mailing list, but can
> > > anyone for sure tell me what the real problem is?  So I have something
> to
> > > tell all the people who aren't on the list who are asking me?
> > >
> > > Much appreciated.
> > >
> > > -Dan Mahoney
> > >
> > > --
> > >
> > > "One...plus two...plus one...plus one."
> > >
> > > -Tim Curry, Clue
> > >
> > > --------Dan Mahoney--------
> > > Techie,  Sysadmin,  WebGeek
> > > Gushi on efnet/undernet IRC
> > > ICQ: 13735144   AIM: LarpGM
> > > Web: http://prime.gushi.org
> > > finger danm@xxxxxxxxxxxxxxx
> > > for pgp public key and tel#
> > > ---------------------------
> > >
> > >
> > > _______________________________________________
> > > cobalt-users mailing list
> > > cobalt-users@xxxxxxxxxxxxxxx
> > > To Subscribe or Unsubscribe, please go to:
> > > http://list.cobalt.com/mailman/listinfo/cobalt-users
> > >
> >
> > _______________________________________________
> > cobalt-users mailing list
> > cobalt-users@xxxxxxxxxxxxxxx
> > To Subscribe or Unsubscribe, please go to:
> > http://list.cobalt.com/mailman/listinfo/cobalt-users
> 
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>

References:
- Re: [cobalt-users] Hackers. What's the problem?
  - From: abc-123

Prev by Date: [cobalt-users] RaQ4 /usr/adms/html Question
Next by Date: [cobalt-users] syslodg - did cron restart it?
Previous by thread: Re: [cobalt-users] Hackers. What's the problem?
Next by thread: RE: [cobalt-users] Hackers. What's the problem?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index