Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 21 Jan 2000 16:34:24 -0800
From:      Brooks Davis <brooks@one-eyed-alien.net>
To:        Matthew Dillon <dillon@apollo.backplane.com>
Cc:        Brad Guillory <round@baileylink.net>, freebsd-security@FreeBSD.ORG
Subject:   Re: Some observations on stream.c and streamnt.c
Message-ID:  <20000121163424.C23771@orion.ac.hmc.edu>
In-Reply-To: <200001212349.PAA64869@apollo.backplane.com>; from dillon@apollo.backplane.com on Fri, Jan 21, 2000 at 03:49:49PM -0800
References:  <Pine.BSF.4.10.10001211649440.4460-100000@tetron02.tetronsoftware.com> <200001212258.OAA64329@apollo.backplane.com> <20000121171759.D56672@baileylink.net> <200001212349.PAA64869@apollo.backplane.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Fri, Jan 21, 2000 at 03:49:49PM -0800, Matthew Dillon wrote:
> Universities and ISPs generally have rampant compromised machines and some 
> of these, such as MIT, have hundreds of megabits of bandwidth to the 
> internet.  These are often the source of high-bandwidth attacks (not
> perpetrated by students so much as perpetrated by IRC weenies who have
> compromised the machines).

Speaking from the University perspective, I'm actually supprised by how
few boxes we've had hacked (and found out about).  The number of
unmodified RedHat 5.1 (containing at least 4 remote root exploits of the
top of my head) boxes out there is scarry.  Far to many students see
Linux as the "cool" OS so they install it, not realizing that you have
to keep up with the patches.  I've been suggesting daily nessus
scans to "encourage" students to upgrade, but that management types
don't like the idea of toasting most of the student boxes on a daily
basis.  How strange. ;-)

-- Brooks

-- 
"They that can give up essential liberty to purchase a little temporary
safety, deserve neither liberty nor safety." -- Benjamin Franklin.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000121163424.C23771>