From owner-freebsd-security@FreeBSD.ORG Thu Aug 11 16:26:05 2005 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9F39416A41F for ; Thu, 11 Aug 2005 16:26:05 +0000 (GMT) (envelope-from ken@rosewoodblues.com) Received: from imf17aec.mail.bellsouth.net (imf17aec.mail.bellsouth.net [205.152.59.65]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0FBD943D53 for ; Thu, 11 Aug 2005 16:26:04 +0000 (GMT) (envelope-from ken@rosewoodblues.com) Received: from ibm57aec.bellsouth.net ([68.219.111.196]) by imf17aec.mail.bellsouth.net with ESMTP id <20050811162604.YHSD4819.imf17aec.mail.bellsouth.net@ibm57aec.bellsouth.net> for ; Thu, 11 Aug 2005 12:26:04 -0400 Received: from [192.168.1.4] (really [68.219.111.196]) by ibm57aec.bellsouth.net with ESMTP id <20050811162603.FDMY4854.ibm57aec.bellsouth.net@[192.168.1.4]>; Thu, 11 Aug 2005 12:26:03 -0400 In-Reply-To: <20050811161230.72112.qmail@web41204.mail.yahoo.com> References: <20050811161230.72112.qmail@web41204.mail.yahoo.com> Mime-Version: 1.0 (Apple Message framework v733) Content-Type: text/plain; charset=ISO-8859-1; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: quoted-printable From: Ken Hawkins Date: Thu, 11 Aug 2005 12:25:58 -0400 To: =?ISO-8859-1?Q?Arne_"W=F6rner"?= X-Mailer: Apple Mail (2.733) Cc: freebsd-security@freebsd.org Subject: Re: newbie with www user security problem X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Aug 2005 16:26:05 -0000 that is (almost) exactly what i am going to do. it is going as is =20 till i get another box in place..... ken; On Aug 11, 2005, at 12:12 PM, Arne W=F6rner wrote: > --- Ken Hawkins wrote: > >> well here i come port fix hell! This is a production box >> and can't be taken off line as of this moment so i am >> going to have to attempt on the fly fixing / upgrading >> of the ports. i would love to wipe it but it is just >> not a possibility right now. >> >> > What about this plan (I call it alan-parson-project): > 1. installing everything to a cold-standby box (new box) > 2. testing if everything would work fine... :-) > (3. tranfering the database) > 4. halting the production system > (5. transfering the brand new database updates) > 6. making the new box the old box (by changing the IP or DNS or > so)... > > -Arne > > -- > Arne likes Austin Powers and Mr. Anderson's black thumb nail in > The Matrix... ;-)) > > > > ____________________________________________________ > Start your day with Yahoo! - make it your home page > http://www.yahoo.com/r/hs > > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-=20 > unsubscribe@freebsd.org" >