[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] next question

Subject: Re: [cobalt-users] next question
From: SM <nntp@xxxxxxxxx>
Date: Mon Jan 7 04:51:02 2002
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Hi,
At 15:54 06-01-2002 -0800, root wrote:
>I had a new-hire working on my qube 3 last evening setting up an email 
>server, and I caught him doing something with a program called pg.  How do I 
>know if my server now has a backdoor?  What kind of security measures do you 
>all recommend for the qube?  I looked up pg, it's an sql client, and I found 
>that an older version has a built in exploit that collects passwords in 
>conjunction with apache.  Should I be worried about this, or am I just being 
>too paranoid?

Did you ask the person what he/she was doing? :)  If the person had
root/admin access he/she doesn't even have to bother putting in a backdoor
to access your system.

If you are serious about security, keep an eye on the logs and on what
processes the box is running.  The best security measure is to learn about
how the box works.

Regards,
-sm

References:
- [cobalt-users] next question
  - From: root

Prev by Date: [cobalt-users] IPChains/PMFirewall: Mult Subnets
Next by Date: Re: [cobalt-users] RaQ2 Hacked - sshd vulnerability?
Previous by thread: Re: [cobalt-users] next question
Next by thread: [cobalt-users] RaQ2 Hacked - sshd vulnerability?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index