[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Closing the doors [Was RE: Linux differences]

Subject: Re: [cobalt-users] Closing the doors [Was RE: Linux differences]
From: flash22@xxxxxxx
Date: Fri Mar 9 06:01:07 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Fri, 9 Mar 2001, Colin J. Raven wrote:

> >I'm familiar with Unix, and don't want to wade through linux books just
> >to find the differences from normal Unix systems.
> 
> Am I being excessively cynical in my old age, or does this seem like
 troll-like to anyone else?

oh,yeah....I'm still waiting with baited breath for a definition of
'standard unix' ;0

> 4. Subscription to "cobalt-[announce|users|security|developers]@list.cobalt.com *requires* valid "Registration Code" to be subscribed.
> I think we have innumerable non-cobalt owners on these lists. Some may
well be lurking simply to learn and that's wonderful.  Unfortunately 
I think we have a significant script kiddie population also,
 together with others who have less than noble intent. 

Unfortunatly what comes to mind is a few postings along the lines of " i
am thinking of buying a Raq...can thay do this..do you like them etc...
I'd hate to lock those folks out of usefull feedback...

Sure there are script kiddies, but they are there regardless, if they
scare you, you don't have a secure machine -/
If they don't scare you, you don't understand security -/
(There , now i've shot both feet too )

Google indexes this list...has it's good points, and it's bad points,
recently i had someone try a very strange username on my machine in a
password attack, on a hunch i searched for it in google, and surprise, i
found it on a HP system admins list...(known hole in factory config)

For me it was usefull to be able to find it, but i suppsoe the kiddie
found it there too, that's the problem with information...


> I would venture to suggest that the recent outbreak of RAQ3 hacking
originated from a  subscriber or subscriber[s]

Doubtfull, given how much IP address walking i have seen on certain ports,
it doesn't really take all that long to scan 2^30 ip addresses you know ;)

Now if you want to propose people should be licenced to be able to use a
datalink with real bandwith, i'm with you ;-

That doesn't mean people shouldn't be carefull about what they post to a
public list tho, i shudder everytime someone posts a 'i think this is
funny, should there be a /bin/sh command in my inetd file?

I have visions of hundreds of people getting free root shells -,

also probably ober half of the people posting use other email addresses ,
partly just for pragmatic reasons (like not having your customers find all
your stupid questions by accident in a google search -)

> harvesting email addresses from the list, and
automagically-port-scanning

Would kind of limit them to MX domains ;) i get probes on IP's that don't
even go anywhere ...

>...as the need to parcel out  investigative resources in a prudent manner
> which  responds to the magnitude of the threat or significance of the
>alleged crime.

References:
- [cobalt-users] Closing the doors [Was RE: Linux differences]
  - From: Colin J. Raven

Prev by Date: [cobalt-users] MX Records and FormMail Script
Next by Date: [cobalt-users] Echoed Status and Content-type Problem
Previous by thread: Re: [cobalt-users] MX Records and FormMail Script
Next by thread: Re: [cobalt-users] Closing the doors [Was RE: Linux differences]

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index