Dailydave mailing list archives
Re: build an appliance without a shell
From: ken_i_m () fatair net
Date: Thu, 4 Mar 2004 09:48:02 -0700
On Thu, Mar 04, 2004 at 08:20:52AM -0800, Rodney Thayer (rodney () canola-jones com) wrote:
It's a grey area. In the specific case I found a problem, here's the scenario the shipped product gave me:
[...]
This means: -- they had ssh -- they had a shell -- they consciously assigned a password I entered as the root password. In trying to quantify the risk there, the only solid statement I can come up with that's cross-platform is "DO NOT SHIP A SHELL".
[...] The lesson I get here is "don't buy a blackbox appliance". -- Ken Dyke "Bits at the speed of light" _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://www.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- build an appliance without a shell ken_i_m (Mar 04)
- RE: build an appliance without a shell Pete Herzog (Mar 04)
- RE: build an appliance without a shell Rodney Thayer (Mar 04)
- Re: build an appliance without a shell ken_i_m (Mar 04)
- RE: build an appliance without a shell Rodney Thayer (Mar 04)
- Re: build an appliance without a shell Rodney Thayer (Mar 04)
- Re: build an appliance without a shell Darryl Luff (Mar 07)
- Re: build an appliance without a shell david maynor (Mar 04)
- RE: build an appliance without a shell Pete Herzog (Mar 04)