I would suggest anyone that wish to run Cold Fusion on a linux box should
take a good look at security before they do so. I used to be able to fool
around with Cold Fusion in my spare time about a year ago, until the bind,
wu-ftpd, and rpc.statd exploits hit. I have cleaned probably over 100
servers since then. I love running Cold Fusion on RedHat, I prefer it to
NT. However you wouldn't see me putting any production box online without
heavily filtering everything with ipchains. I have been so frustrated with
RedHat I decided to take a swing at FreeBSD and OpenBSD, and that looks like
where I will be staying ;)
Rob Burtelow
Senior SMC Staff/Network Security Specialist
[EMAIL PROTECTED]
----- Original Message -----
From: "Jason Brooke" <[EMAIL PROTECTED]>
To: "CF-Linux" <[EMAIL PROTECTED]>
Sent: Tuesday, January 23, 2001 2:26 PM
Subject: Re: Linux Worm
> That's one of many reasons why no-one should be running those default
> services. You should turn off inetd, wu.ftpd, rpc, portmap, lpd, etc
before
> you ever put your box on the network.
>
> Why these services are still (generally) installed and running on a normal
> install is beyond me.
>
> jason
>
>
>
> > Linux System Administrators might want to check this out...
> >
> > It's a worm that exploits security holes found on the default
installation
> > of RedHat Linux 6.2 and 7
> >
> > http://www.zdnet.com/zdnn/stories/news/0%2C4586%2C2675147%2C00.html
> >
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
------------------------------------------------------------------------------
Archives: http://www.mail-archive.com/cf-linux%40houseoffusion.com/
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_linux or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
