Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sat, 16 Aug 2003 14:32:36 -0400 Glenn Burkhardt <gbburkhardt at aaahawk.com> wrote: > Boy, I'll say. One of our machines in Taiwan was cracked into by > someone in Hungary using one of the (unfortunately, too many) root > exploits in the Samba software. Yes, I'm at fault for allowing access > to the Samba port over the Internet. They changed the root password, > and modified a dozen different system files, including 'ifconfig' and > 'ps'. > > Trust no one! I second that. Also note that many attacks may come from the back door or from within. I had eased up on the firewall rules at the BCS back in 1994 because it was blocking reverse DNS. I started to take more crap from the staff (who didn't know anything) and some other volunteers. However, our biggest security hole was the Resource center, where any idiot could come in off the street and break into our servers. Note that our business systems were isolated so the risk was small. - -- Jerry Feldman <gaf at blu.org> Boston Linux and Unix user group http://www.blu.org PGP key id:C5061EA9 PGP Key fingerprint:053C 73EC 3AC1 5C44 3E14 9245 FB00 3ED5 C506 1EA9 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/Pnud+wA+1cUGHqkRAtDSAJ4wGbQgdBZ+BhM0bJBNmmThiLWQSACfUYLk MoWP7PmF+VLE/2ay+gOYVVg= =VloA -----END PGP SIGNATURE-----
BLU is a member of BostonUserGroups | |
We also thank MIT for the use of their facilities. |