Re: RedHat 7.2
From: Dale Pontius (pontius@btv.MBI.com.invalid)Date: 03/12/02
- Next message: Paul B. Johnson: "DRDoS detection (was: repeated SYN packets to port 80)"
- Previous message: Stefan Farrenkopf : "tripwire - problems with database and policy update"
- In reply to: Nico Kadel-Garcia: "Re: RedHat 7.2"
- Next in thread: Rex Dieter: "Re: RedHat 7.2"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: pontius@btv.MBI.com.invalid (Dale Pontius) Date: 12 Mar 2002 17:00:55 GMT
In article <IjNg8.3391$JZ2.744@nwrddc02.gnilink.net>,
"Nico Kadel-Garcia" <nkadel@bellatlantic.net> writes:
>
> "JvB" <j_vanbeekum@gmx.net> wrote in message
> news:3wIg8.150209$Kj2.20958766@amsnews03.chello.com...
>> OK, that's one thing we all knwo for sure. But the point is, is rh more
>> vulnerable with the newest updates then a distro like slackware?
>>
>> Joshua
>>
>> "Tim Haynes" <usenet@stirfried.vegetable.org.uk> wrote in message
>> news:86elj0sjtf.fsf@potato.vegetable.org.uk...
>> > "JvB" <j_vanbeekum@gmx.net> writes:
>> >
>> > > I hear from different sources that RedHat 7.2 is very vulnerable for
>> > > attacks. Since i use it as my masq firewall i got a little nervous.
> Why
>> > > is redhat not secure? Or isn't it secure when you run the wrong
>> services?
>> > > I only run ssh, bind,webmin and squid.
>> >
>> > Blargh.
>> >
>> > *Nothing* is secure if you persist in running it without updating it.
>> Deal.
>> >
>> > ~Tim
>> > --
>> > As long as I can see the morning
>> |piglet@stirfried.vegetable.org.uk
>> > And blossom turns to bud again in spring |http://spodzone.org.uk/
>
> Please don't top-post.
>
> RH is slightly more vulnerable because it's popular and thus a good target
> for the hackers to attack. Also people are invariably sloppy about updating
> their OS's, so we hear a lot about successful attacks against it, even
> though the base OS is not bad.
>
But on the side, RH has been responding pretty quickly to security
alerts - witness OpenSSH and zlib in the past week. I suspect that
for moving into corporate accounts, they see Microsoft leaving an
opening in the security area, and are making sure their own act is
well-spiffed.
> Last: RedHat chooses to include in the base distributions a lot of really
> stupid services, including ftpd, rshd, and telnetd instead of leaving them
> out and relying on sshd for a more secure login mechanism and only having
> people who really need it install the others.
>
More recent releases have done a lot better about not activating all
the extra services. It's been a while since ftpd, telnet, and r-cmds
active by default, and they're not even installed for a workstation,
IIRC. But needing sgi-fam which needs rpc annoys me, especially with
the checkered rpc has had.
Dale Pontius
NOT speaking for IBM
- Next message: Paul B. Johnson: "DRDoS detection (was: repeated SYN packets to port 80)"
- Previous message: Stefan Farrenkopf : "tripwire - problems with database and policy update"
- In reply to: Nico Kadel-Garcia: "Re: RedHat 7.2"
- Next in thread: Rex Dieter: "Re: RedHat 7.2"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
