[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] CERT Advisory a few things I did
- Subject: Re: [cobalt-users] CERT Advisory a few things I did
- From: "Dave Thurman (Mailing List Email)" <listonly@xxxxxxxxxxxxxxxxxxxx>
- Date: Mon Sep 16 05:15:04 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
on 9/16/02 6:48 AM, craig stated:
>>
>>> Disable gcc except for root
>>
>> Will this effect any programs that the server runs from a script on the
>> web?? Say items like web stats or email programs that are web based??
>
>
> No this should not affect them at all as they are allready made and
> installed
>
> The idea behind this is if you did get compromized then the worms cou;ld
> not compile themselfs
>
>
>
>>
>> What about clients that are installing programs to their directories?? This
>> would effectively shut them down wouldn't it??
>>
>
> Only if they have shell access and you allow them to comple there own code
> IF they are just running perl scripts php etc then this would not be a
> problem it would only be a problem if they have to run make
>
>
> And with the raqFxxk script around giving shell would not be a good idea
>
Thanks. I don't allow shell for our users, but you are right about some of
the nasty scripts floating around. Maybe this is just one other way to
harden the box. Thanks again.
--
Thanks!!
Dave Thurman
The Web Presence Group / www.webpresencegroup.net
Listonly <at> webpresencegroup.net / Spam Block 8^Q