[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-users] SHP Installed, CGI WRAP should I, shouldnt I? Answer from sun if pos.
- Subject: [cobalt-users] SHP Installed, CGI WRAP should I, shouldnt I? Answer from sun if pos.
- From: "cobalt raq4" <cobalt_list@xxxxxxxxxxx>
- Date: Thu Aug 29 01:51:01 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
Hi all,
We are one of the 'lucky' ones that waited a cautionary few days after the
release of the SHP-patch before install. We read all of the 'is it ok?'
posts and the subsequent replys of 'yeah, its fine for me', 'We have
installed it on our raqs no problem' and felt fine to go ahead.
Upon installing it, a week or so after its release, I felt as sure as I
could be that the SHP was good-to-go and installed it on our raqs. Imagine
my surprise when the posts started to trickle through about the problems.
Though this has only to be confirmed today, the general consensus seemed to
agree that a problem existed.
Well, now another one exists. From the standpoint of the early adopters of
the SHP. We have the new CGI Wrap package to deal with (yet) another
security hole but should we hold back on installing this?
For us early adopters
a) Are we ok to install the cgi package, or could this cause further
problems when it comes to patching/removing/replacing the SHP?
c) will the cgi-wrap package even work on a SHP patched raq?
b) Are there any security measures we can take to protect against the
possible cgi problems whilst waiting for an authoritive answer to the above.
( We have the obvious, shp! portsentry, logsentry, fcheck, chkrootkit, fully
patched etc )
I would really apreciate all comments and suggestions.
Thanks all.
MJM
_________________________________________________________________
Chat with friends online, try MSN Messenger: http://messenger.msn.com