Re: Shorewall for web server?

On Wed, 2005-12-28 at 21:49 +0800, John Summerfied wrote:
> I've seen a couple of cracked boxes. The first thing the intruders did
> was install their own server, an IRC bot. It was licenced under the
> GPL, and they complied with the licence, giving me the source code to
> it.
>
> It's true the boxes had servers on them: one needs ssh for remote
> maintenance, and it's the nature of useful server (boxes) that they
> run server software on them, but the intruders didn't use the existing
> ervers except to gain entry.

And how did they crack your box, and install stuff on it? It'd be an
exploit of a *service* of some kind. If there was no service on the
firewall (the only machine that they can directly access), then they
couldn't install anything on it. They have to have something to
exploit.

> The protection offered by a firewall against incoming attacks is
> vastly overrated.

That's for sure, particularly if people believe that just having one
protects them without any effort on their behalf, or that it's an
absolute protection. As I said, it's just another step towards greater
security.

But a real, firewall-only, device between you and them does what the
word suggests. It's a hardy object that they can't do much to, and
makes it difficult to do anything beyond it.

--
Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

Relevant Pages

  • Re: SCO 5.0.4/5 stops at boot: prompt on a fresh install in a VMware workstation
    ... every time I try and boot the VM it stops at the boot: ... I haven't tried that, but will do so once this server build is done, ... to install on VMware ESX. ... expect the kernel might get upset, or maybe the licence will stop ...
    (comp.unix.sco.misc)
  • Re: New Event Log Errors!
    ... Somehow along those lines I'd also installed the Certificate Authority ... Did you apply the last Server Pack for SBS Server? ... Please install Windows Support Tools on the win2k3 sp1 problematic ... Microsoft is providing this information only as a convenience to you: ...
    (microsoft.public.windows.server.sbs)
  • Re: Cannot activate SBS 2003 SP2
    ... everywhere and sitting on the case of the server is the old board - balanced ... slip stream SBS you would have had it ages ago. ... My main reason for slipstreaming the install is because I cannot get ... updates that need to be applied if one is to have a succesful outcome ...
    (microsoft.public.windows.server.sbs)
  • Re: Cannot activate SBS 2003 SP2
    ... everywhere and sitting on the case of the server is the old board - balanced ... slip stream SBS you would have had it ages ago. ... My main reason for slipstreaming the install is because I cannot get ... updates that need to be applied if one is to have a succesful outcome ...
    (microsoft.public.windows.server.sbs)
  • Re: Cannot activate SBS 2003 SP2
    ... the old array was a raid 5 that should not have become so rooted but the twit who built the server did not actually enable the spare drive to act as a spare!! ... The problem is SBS is unique and I've rarely if ever seen it work. ... The server has been chugging away in a small business environment for several years and I have administered it for them for about a year making sure that the updates were installed and their mailboxes were managed etc etc. ... My main reason for slipstreaming the install is because I cannot get the original 2003 server install to cope with the new hardware and it falls over part way into the install - BSOD bit. ...
    (microsoft.public.windows.server.sbs)