[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] RISKY BUSINESS

Subject: [cobalt-users] RISKY BUSINESS
From: "Robert Dayton" <pudgybuddha@xxxxxxxxxxxxx>
Date: Wed May 2 23:27:02 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

You know, I see poor souls getting hacked in here all the time. It's almost
like they're missing the ugly simple truth:

If you don't want your users running malicious scripts, do not allow cgi
access and keep ftp uploads to admin's only. Allow no anonymous access.

Firewall your stuff and only keep the ports open for the services that you
REALLY need.

Ditch FrontPage server extensions.

Although I am not an ISP, I distribute an app on the Qube's and sometimes
people want to play with them and host their friend's websites. I don't give
them the admin codes, check any code out before posting it, and tell them
that if they ever use the null modem cable to get console, all support is
dropped for the app.

If you run a tight ship, no-one can rock the boat.

Rob
----- Original Message -----
From: <baltimoremd@xxxxxxxxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Thursday, May 03, 2001 7:10 AM
Subject: Re: [cobalt-users] German ISPs (was: dip.t-dialin.net IP Range)


> On Thu, 3 May 2001, Jeffery L. JT Vogt wrote:
>
> > >Was our position harsh? Yes.  Did we loose legit traffic? Yes. Did we
make
> > >a change at their end? Yes.   So, maybe your idea has merit.
> >
> > Thom,
> >
> > Thanks for your comments.  It's exactly on point.  As for the idea
> > having merit, as was brought up with regrds to MAPS/RBL, it certainly
> > works for *them* for curtailing spam.  Unfortunately, outside of you nad
> > the mysterious "Chuck" there's been zero interest.
>
> I have to admit, when I first broached the idea to our group, there was
> a combination of negatives about cutting off Juno, similar to the ones
> here about "most of Germany", and general inaction.
>
> But, obnoxious soul that I am, I just kept on posting about it.
>
> Perhaps, and I don't know how/if it could be done, a more interesting
> approach would be to:
>
> Allow access to port 80 so that web pages could be viewed
> Allow access to those IP's where you know you have a customer who
> requires access.
>
> If the above could be done, then the bulk of the legit users could
> access what they need, and the rest can go pack sand.
>
> I would think that the conglomeration of smart folks on this list could
> figure out how to do the above, if it's technically possible(and perhaps
> even if it isn't).
>
> thom
>
> baltimoremd@xxxxxxxxxxxxxxx             Thom LaCosta K3HRN Webmaster
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users

Follow-Ups:
- [cobalt-users] [RaQ3] RaQ3-All-Kernel-4.0.1-2.216C24III.pkg
  - From: Sean Chester
- Re: [cobalt-users] RISKY BUSINESS
  - From: Dylan Smith
- Re: [cobalt-users] RISKY BUSINESS
  - From: Carrie Bartkowiak

References:
- Re: [cobalt-users] German ISPs (was: dip.t-dialin.net IP Range)
  - From: baltimoremd

Prev by Date: Re: [cobalt-users] German ISPs (was: dip.t-dialin.net IP Range)
Next by Date: Re: [cobalt-users] SSL problem on Raq4
Previous by thread: Re: [cobalt-users] German ISPs (was: dip.t-dialin.net IP Range)
Next by thread: [cobalt-users] [RaQ3] RaQ3-All-Kernel-4.0.1-2.216C24III.pkg

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index