Date: 19 Apr 2001 12:37:10 +0200 From: Dag-Erling Smorgrav <des@ofug.org> To: Peter Pentchev <roam@orbitel.bg> Cc: "David G. Andersen" <dga@pobox.com>, Kris Kennaway <kris@obsecurity.org>, fukuda shinichi <fukuda@alles.ad.jp>, freebsd-security@FreeBSD.ORG Subject: Re: unknown process Message-ID: <xzp66g1npk9.fsf@flood.ping.uio.no> In-Reply-To: <20010419123915.A446@ringworld.oblivion.bg> References: <200104190324.VAA14081@faith.cs.utah.edu> <xzpzodd6xsh.fsf@flood.ping.uio.no> <20010419123915.A446@ringworld.oblivion.bg>
next in thread | previous in thread | raw e-mail | index | archive | help
Peter Pentchev <roam@orbitel.bg> writes: > On Thu, Apr 19, 2001 at 11:31:26AM +0200, Dag-Erling Smorgrav wrote: > > It's not either/or. The only acceptable solution to this situation is > > a complete reinstall from a trusted source (e.g. original CD set). > ..and during the install, examine your backups A backup is not a trusted source. Never reinstall from backups after a compromise. Restoring user data from backup is acceptable as long as you are certain that none of that data is executable. DES -- Dag-Erling Smorgrav - des@ofug.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzp66g1npk9.fsf>