[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] CERT Advisory a few things I did

Subject: Re: [cobalt-users] CERT Advisory a few things I did
From: craig <craig@xxxxxxxxxxxxx>
Date: Mon Sep 16 05:00:06 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

>
> > Disable gcc except for root
>
> Will this effect any programs that the server runs from a script on the
> web?? Say items like web stats or email programs that are web based??


No this should not affect them at all as they are allready made and
installed

The idea behind this is if you did get compromized then the worms cou;ld
not compile themselfs



>
> What about clients that are installing programs to their directories?? This
> would effectively shut them down wouldn't it??
>

Only if they have shell access and you allow them to comple there own code
IF they are just running perl scripts php etc then this would not be a
problem it would only be a problem if they have to run make


And with the raqFxxk script around giving shell would not be a good idea

Follow-Ups:
- Re: [cobalt-users] CERT Advisory a few things I did
  - From: Dave Thurman (Mailing List Email)

References:
- Re: [cobalt-users] CERT Advisory a few things I did
  - From: Dave Thurman (Mailing List Email)

Prev by Date: Re: [cobalt-users] Re: OpenSSL Worm in the wild
Next by Date: Re: [cobalt-users] CERT Advisory a few things I did
Previous by thread: Re: [cobalt-users] CERT Advisory a few things I did
Next by thread: Re: [cobalt-users] CERT Advisory a few things I did

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index