nanog mailing list archives
Re: Yahoo! Lessons Learned
From: Wayne Bouchard <web () typo org>
Date: Thu, 10 Feb 2000 00:00:04 -0700 (MST)
It's a matter of writing non-exploitable code so attack software like trinoo and tribe don't end up on your systems due to buffer-overflows in rpc or other services.I put the emphasis back on the server admins. Security patches were readily available on the Sun site. Ignoring applicable security patches for months is likely to get you hacked and abused on todays net.
Yes.. and new patches appear each and every week. Do YOU want to schedule reboots for 80 some servers on a weekly basis? *IF* you get approval for such frequent reboots, you still have the problem of the administrative nightmare. Especially if you've made custom modifications to the systems and have to be carefull exactly which patches you apply instead of doing a blanket install. Now, from the other end of this, this is no excuse not to keep your servers up to date. You may just end up checking it, say, monthly instead of weekly. ---------------------------------------------------------------------- Wayne Bouchard [Immagine Your ] web () typo org [Company Name Here] Network Engineer ----------------------------------------------------------------------
Current thread:
- Re: Yahoo! Lessons Learned, (continued)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 09)
- Re: Yahoo! Lessons Learned Wayne Bouchard (Feb 09)
- Re: Yahoo! Lessons Learned Wayne Bouchard (Feb 09)
- RE: Yahoo! Lessons Learned Ron Buchalski (Feb 08)
- Re: Yahoo! Lessons Learned John Payne (Feb 09)
- Re: Yahoo! Lessons Learned Vadim Antonov (Feb 08)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 08)
- Re: Yahoo! Lessons Learned Henry R. Linneweh (Feb 08)
- Re: Yahoo! Lessons Learned Joe Shaw (Feb 08)
- Re: Yahoo! Lessons Learned Bryan Bradsby (Feb 09)
- Re: Yahoo! Lessons Learned Wayne Bouchard (Feb 09)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 08)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 09)
- Re: Yahoo! Lessons Learned Paul Ferguson (Feb 09)
- Re: Yahoo! Lessons Learned Forrest W. Christian (Feb 09)
- Re: Yahoo! Lessons Learned jlewis (Feb 09)
- Message not available
- Re: Yahoo! Lessons Learned Paul Ferguson (Feb 10)
- Re: Yahoo! Lessons Learned Daniel Senie (Feb 09)
- Re: Yahoo! Lessons Learned Andrew Brown (Feb 09)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 09)