[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] RISKY BUSINESS

Subject: Re: [cobalt-users] RISKY BUSINESS
From: "Robert Dayton" <pudgybuddha@xxxxxxxxxxxxx>
Date: Thu May 3 01:11:53 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

I see what you're saying. Dude, I'd @#$%ing panic if I was in the webhosting
business and had to rely on the RAQ to keep me out of trouble. I would get a
Dell server with a bunch of goodies and run RedHat on it and keep up to date
with stuff. At least with that setup you can quickly implement changes
without waiting for Cobalt to rise to the occasion.

RAQ has too many problems, too many vulnerabilities, and not enough room to
truly customize stuff easily the way it should be. Every day I get over 100
emails about pour souls who are stuck. Some hacked, some fried, some just
stuck. I feel sorry for the people in here that have lost their ass because
they trusted the RAQ.

With a regular RedHat system you can make more intricate changes and
configurations to protect yourself.

If you have a RAQ, they do make good nightstands if you put legs on them.

Rob
----- Original Message -----
From: "Dylan Smith" <dyls@xxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Thursday, May 03, 2001 8:16 AM
Subject: Re: [cobalt-users] RISKY BUSINESS


>
>
> > You know, I see poor souls getting hacked in here all the time. It's
> almost
> > like they're missing the ugly simple truth:
> >
> > If you don't want your users running malicious scripts, do not allow cgi
> > access and keep ftp uploads to admin's only. Allow no anonymous access.
>
> Although no anonymous access is something I subscribe to - what use is a
> webhost that doesn't allow its users to upload files? If a user can't
upload
> files, how do they get their HTML online? If you don't allow cgi access,
> what extra do you offer over Tripod etc. who don't charge for their
> services?
>
> There are always tradeoffs involved in running a server where you allow
> other people access. When you price your service, you have to add
something
> in there to cover the costs of a malicious user. From the number of
> successful webhosting companies out there, the tradeoff with allowing
users
> to upload their own files and have cgi access is acceptable to most
> (fortunately!)
>
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users

Follow-Ups:
- Re: [cobalt-users] RISKY BUSINESS
  - From: Dylan Smith
- [cobalt-users] Major problems with RaQ3
  - From: Michael D. Bathrick

References:
- Re: [cobalt-users] German ISPs (was: dip.t-dialin.net IP Range)
  - From: baltimoremd
- [cobalt-users] RISKY BUSINESS
  - From: Robert Dayton
- Re: [cobalt-users] RISKY BUSINESS
  - From: Dylan Smith

Prev by Date: [cobalt-users] Telnet and FTP not working
Next by Date: Re: [cobalt-users] RISKY BUSINESS
Previous by thread: Re: [cobalt-users] RISKY BUSINESS
Next by thread: Re: [cobalt-users] RISKY BUSINESS

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index