From owner-freebsd-security Wed Jul 22 09:25:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA01357 for freebsd-security-outgoing; Wed, 22 Jul 1998 09:25:04 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from bytor.rush.net (lynch@bytor.rush.net [209.45.245.145]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA01332 for ; Wed, 22 Jul 1998 09:24:54 -0700 (PDT) (envelope-from lynch@rush.net) Received: from localhost (lynch@localhost) by bytor.rush.net (8.9.1/8.8.8) with SMTP id MAA02661; Wed, 22 Jul 1998 12:24:20 -0400 (EDT) (envelope-from lynch@rush.net) Date: Wed, 22 Jul 1998 12:24:18 -0400 (EDT) From: Pat Lynch To: Brett Glass cc: "Matthew N. Dodd" , security@FreeBSD.ORG Subject: Re: Why is there no info on the QPOPPER hack? In-Reply-To: <199807211952.NAA15969@lariat.lariat.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org my god someone has a life...you sure you are one of us? just my 2 cents, as someone who tries to juggle a life and my job. and congrats on your wedding btw... I always have one person to watch my machines when I'm gone, someone I trust, someone I know is up to date on security issues. Facts remain is if you get cracked, thats your responsibility. there are many tools that can be used ahead of time proactively in these situations that make it easier to clean up even if some damage is done. tripwire is one of them, make sure you move the database onto a removable medium so that its "read-only", then pack it away for safekeeping. Noone is faulting you for getting hacked, but blaming the FreeBSD team is also not too rational as well. the auto-update is a scary thing, and I wouldn;t trust it, being extra-paranoid about machines. I know you were on your honeymoon, but isn;t there someone else that can take the reigns while you are gone? what if something happens to you? and when you reinstall the machine, use tripwire, maybe next time you won;t have to totally reinstall =) -Pat ___________________________________________________________________________ Pat Lynch lynch@rush.net Systems Administrator Rush Networking ___________________________________________________________________________ On Tue, 21 Jul 1998, Brett Glass wrote: > At 03:34 PM 7/21/98 -0400, Matthew N. Dodd wrote: > > >If you're not able so stand on the line and keep watch, set procmail up to > >turn down your network every time a Bugtraq message with 'exploit' and > >'foo' turns up. > > In other words, make the system self-destruct when I stop watching long enough > to have a life. Really practical. > > --Brett > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message