nanog mailing list archives
Re: Yahoo! Lessons Learned
From: Bryan Bradsby <Bryan.Bradsby () capnet state tx us>
Date: Wed, 9 Feb 2000 09:00:42 -0600 (CST)
It's a matter of writing non-exploitable code so attack software like trinoo and tribe don't end up on your systems due to buffer-overflows in rpc or other services.
I put the emphasis back on the server admins. Security patches were readily available on the Sun site. Ignoring applicable security patches for months is likely to get you hacked and abused on todays net. Combine that with outgoing spoofed IP filters and we are beginning to make effective countermeasures. Yes, I will acknowledge the strong tendency to avoid touching a production server, but scheduled upgrade outages are vastly superior to hitting the front page as a trinoo source. Unfortunately all three above point to a need for improvement in the good netizen department. -bryan (as a server admin, this is where i say mea culpa)
Current thread:
- Re: Yahoo! Lessons Learned, (continued)
- Re: Yahoo! Lessons Learned Henry Kilmer (Feb 09)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 09)
- Re: Yahoo! Lessons Learned Wayne Bouchard (Feb 09)
- Re: Yahoo! Lessons Learned Wayne Bouchard (Feb 09)
- RE: Yahoo! Lessons Learned Ron Buchalski (Feb 08)
- Re: Yahoo! Lessons Learned John Payne (Feb 09)
- Re: Yahoo! Lessons Learned Vadim Antonov (Feb 08)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 08)
- Re: Yahoo! Lessons Learned Henry R. Linneweh (Feb 08)
- Re: Yahoo! Lessons Learned Joe Shaw (Feb 08)
- Re: Yahoo! Lessons Learned Bryan Bradsby (Feb 09)
- Re: Yahoo! Lessons Learned Wayne Bouchard (Feb 09)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 08)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 09)
- Re: Yahoo! Lessons Learned Paul Ferguson (Feb 09)
- Re: Yahoo! Lessons Learned Forrest W. Christian (Feb 09)
- Re: Yahoo! Lessons Learned jlewis (Feb 09)
- Message not available
- Re: Yahoo! Lessons Learned Paul Ferguson (Feb 10)
- Re: Yahoo! Lessons Learned Daniel Senie (Feb 09)
- Re: Yahoo! Lessons Learned Andrew Brown (Feb 09)