[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Sheflug] Another Worm....

To: "Sheflug" <sheflug [at] vuw.ac.nz>
Subject: [Sheflug] Another Worm....
From: "Barrie Bremner" <nospam [at] barriebremner.com>
Date: Wed, 4 Apr 2001 20:36:09 +0100
List-help: <http://www.sheflug.co.uk>
List-owner: <mailto:sheflug-admins [at] vuw.ac.nz>
List-post: <mailto:sheflug [at] vuw.ac.nz>
List-subscribe: <mailto:sheflug-request [at] vuw.ac.nz?Subject=subscribe>
List-unsubscribe: <mailto:sheflug-request [at] vuw.ac.nz?Subject=unsubscribe>
Reply-to: "Sheflug" <sheflug [at] vuw.ac.nz>
Sender: sheflug-bounce [at] vuw.ac.nz

Alex Hudson writes:
 > In case no-one's seen yet: there's another one...
 > 
 > 
 >     Adore, http://www.sans.org/y2k/adore.htm
 > 
 > 
 > Same again. BIND exploits (same as before) on all distros; plus LPDng,
 > statd and wu-ftpd if you're on RedHat 7. I can't really see this one
 > spreading (it doesn't take advantage of anything new AFAICS), and you
 > really should be patched up by now, but just in case :-)

MMMm.

Looks like a modified Lion, the patches have been out so long, it's a
joke - might press a few people into checking the relevant errata pages...

Maybe (I can but hope) this increase in worm activity (OOOoooo, all 3
of them) might press the distros to start locking things down a little
better.
Likewise, say what you will about RedHat, but if they are going to ship
RH7.1 with services off (workstation installs only, IIRC)
marketforces/oneupmanship might press other big distros to follow or
improve upon the idea.

Although there are some "secure" distros out there, I think it still
needs the popular groups to make it more fashionable.
This is one of the few areas a "feature" should be rammed down people's
throats - if you need it, learn how to turn it on.

OpenBSD's idea of OpenSSH and little else (of course on top of all the
auditting and sensible defaults) running on a default install is
great.
If they miss something on the audit, the simple fact that it wasn't
turned on by default could save a large proportion of sysadmins/users
a sleepless night.

Baz.
-- 
Barrie J. Bremner

email: baz at barriebremner.com | OpenPGP ID: 5164F553

http://barriebremner.com/
[Contact information available at website]

   "Linux? Is that some kind of MacOS?"
      -- BT technical support

---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word 
 "unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.

Follow-Ups:
- RE: [Sheflug] Another Worm....
  - From: Craig Andrews <craig [at] fishbot.org.uk>

References:
- [Sheflug] Another Worm....
  - From: Alex Hudson <home [at] alexhudson.com>

Prev by Date: [Sheflug] Another Worm....
Next by Date: [Sheflug] AccessSpace NIS (lots of Q's)
Prev by thread: [Sheflug] Another Worm....
Next by thread: RE: [Sheflug] Another Worm....
Index(es):
- Date
- Thread