From owner-freebsd-chat  Wed Feb  7 20:37:39 2001
Delivered-To: freebsd-chat@freebsd.org
Received: from mail.enteract.com (mail.enteract.com [207.229.143.33])
	by hub.freebsd.org (Postfix) with ESMTP id F109D37B401
	for <chat@freebsd.org>; Wed,  7 Feb 2001 20:37:21 -0800 (PST)
Received: from shell-2.enteract.com (dscheidt@shell-2.enteract.com [207.229.143.41])
	by mail.enteract.com (8.9.3/8.9.3) with ESMTP id WAA16253;
	Wed, 7 Feb 2001 22:37:04 -0600 (CST)
	(envelope-from dscheidt@tumbolia.com)
Date: Wed, 7 Feb 2001 22:37:03 -0600 (CST)
From: David Scheidt <dscheidt@tumbolia.com>
X-Sender: dscheidt@shell-2.enteract.com
To: David Schwartz <davids@webmaster.com>
Cc: Paul Richards <paul@originative.co.uk>, chat@freebsd.org
Subject: RE: Laugh: [Fwd: Microsoft Security Bulletin MS01-008]
In-Reply-To: <NCBBLIEPOCNJOAEKBEAKGENJNIAA.davids@webmaster.com>
Message-ID: <Pine.BSF.4.21.0102072235220.65161-100000@shell-2.enteract.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-chat@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Wed, 7 Feb 2001, David Schwartz wrote:

:
:> >  - Servers could only be affected if the attacker were given the
:> >    ability to load a program of her choice onto the machine and
:> >    execute it locally.  Best practices recommend against this.
:
:> You've gotta laugh really, a root compromise exists and the mitigating
:> controls are to not let anyone use the box!
:>
:> Paul.
:
:	In fairness to Microsoft, it is best practice not to let attackers access
:your box.
:

It's also best practice not to use software that sucks.  I'd love to find an
environment where no one but me gets to use the computers.  

-- 
dscheidt@tumbolia.com
Bipedalism is only a fad.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message