From owner-freebsd-stable@FreeBSD.ORG Fri Dec 29 16:08:19 2006 Return-Path: X-Original-To: stable@freebsd.org Delivered-To: freebsd-stable@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 2094E16A403 for ; Fri, 29 Dec 2006 16:08:19 +0000 (UTC) (envelope-from bsd@lordcow.org) Received: from mail.uct.ac.za (mail.uct.ac.za [137.158.128.3]) by mx1.freebsd.org (Postfix) with ESMTP id B8E2413C455 for ; Fri, 29 Dec 2006 16:08:18 +0000 (UTC) (envelope-from bsd@lordcow.org) Received: from lhc.phy.uct.ac.za ([137.158.37.93]) by mail.uct.ac.za with esmtp (Exim 4.44 (FreeBSD)) id 1H0KHJ-000OJC-KC for stable@freebsd.org; Fri, 29 Dec 2006 18:08:17 +0200 Received: from lordcow by lhc.phy.uct.ac.za with local (Exim 4.63) (envelope-from ) id 1H0KHM-0000ZO-1T for stable@freebsd.org; Fri, 29 Dec 2006 18:08:20 +0200 Date: Fri, 29 Dec 2006 18:08:20 +0200 From: gareth To: stable@freebsd.org Message-ID: <20061229160820.GB1266@lordcow.org> Mail-Followup-To: stable@freebsd.org References: <20061228231226.GA16587@lordcow.org> <4594F704.60308@infracaninophile.co.uk> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4594F704.60308@infracaninophile.co.uk> User-Agent: Mutt/1.5.13 (2006-08-11) Cc: Subject: Re: system breach X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Dec 2006 16:08:19 -0000 On Fri 2006-12-29 (11:07), Matthew Seaman wrote: > > Oct 23 00:31:42 lordcow kernel: pid 48464 (conftest), uid 0: exited on signal 12 (core dumped) > > Oct 23 01:19:26 lordcow kernel: pid 17512 (conftest), uid 0: exited on signal 12 (core dumped) > > These are from autoconf testing various capabilities of the system to do > with signal handling -- nothing to be worried about. ok, ta. > Are you running a web server as root on this machine? This illustrates nope, as the www user. > why that is such a bad idea... If you aren't running a web server, > but only using PHP as a command line tool, then have you been doing any > work with such things as IDEs or other large toolsets? They often > have the capability to download and install extra bits at a mouseclick. no haven't used it from the command line, only webserver > The best defense against all of this sort of stuff is to be fully > patched and up to date with all your installed software. PHP is a i use portupgrade at least once a week