Message: 1 Date: Tue, 05 Jun 2001 15:40:45 +0100 From: Neill Newman neill@entora.co.uk Organization: Entora Ltd To: "'alug@stu.uea.ac.uk'" alug@stu.uea.ac.uk Subject: Re: [Alug] A Couple of responses in one :
Earl Brannigan wrote:
MJR Wrote :
I'd certainly still be interested. It would also be nice to be on
the
sending end of one of these attacks for a change...!
For a change!?!?!......been on the receiving end then? I have. Recently had to completely rebuild a webserver because it had been
rooted,
trojaned, backdoored etc. There was no way to undo the mess that had
been
caused. I beleieve it was hacked via a bind overflow.
aarrgghhh how many times.. apply the updates and this is less likely to happen..(not impossible mind you)
If you want I can do a 10 minute demo at the barbeque on how to make a machine install updates automatically if it will encourage people to do this... I currently have 30 or so machines doing automatic updates, and I have to do about 5 minutes a week to make it work smoothly, all it took was a little time upfront...
I'm sure Earl will now verify, doing 5 minutes admin a week is worth it when compared to a machine rebuild... especially when it is a production machine....
Argggggggh to you too ! ;o) The Machine in question is a cobalt and unfortunately they're slightly later than most with updates. Actually I fully agree with you. I have an little script which daily checks the update site. (though I only have it advising me if there is a change, I haven't worked out how to get the updates automatically by script...if anyone has played with a cobalt you'll know that there is only one route for applying patches. If you're a bit of a wiz with scripts though I'd be glad to get some info off you. Cheers Earl