Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Corporate Anti-Virus strategies



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Sat, 16 Aug 2003 14:32:36 -0400
Glenn Burkhardt <gbburkhardt at aaahawk.com> wrote:

> Boy, I'll say.  One of our machines in Taiwan was cracked into by
> someone in Hungary using one of the (unfortunately, too many) root
> exploits in the Samba software.  Yes, I'm at fault for allowing access
> to the Samba port over the Internet.  They changed the root password,
> and modified a dozen different system files, including 'ifconfig' and
> 'ps'.
> 
> Trust no one!
I second that. Also note that many attacks may come from the back door
or from within. I had eased up on the firewall rules at the BCS back in
1994 because it was blocking reverse DNS. I started to take more crap
from the staff (who didn't know anything) and some other volunteers.
However, our biggest security hole was the Resource center, where any
idiot could come in off the street and break into our servers. Note that
our business systems were isolated so the risk was small. 
- -- 
Jerry Feldman <gaf at blu.org>
Boston Linux and Unix user group
http://www.blu.org PGP key id:C5061EA9
PGP Key fingerprint:053C 73EC 3AC1 5C44 3E14 9245 FB00 3ED5 C506 1EA9
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQE/Pnud+wA+1cUGHqkRAtDSAJ4wGbQgdBZ+BhM0bJBNmmThiLWQSACfUYLk
MoWP7PmF+VLE/2ay+gOYVVg=
=VloA
-----END PGP SIGNATURE-----




BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org