If you've been breached its no longer your machine, you'd just be putting patches on someonelses box ;)
format and restore is the best way. apply all the current patches from www.cobalt.com/support although some builds are old e.g. apache there aren't any vulenrabilities if you take a few precautions. don't give out shell accounts and don't run services you done need, run the boxes behind a secure firewall and vet any scripts/programs that clients want to run. keep checking the systems for updates/running processes/changed files security is a continual issue not a fix and forget after that you sleep better, prevention is better than cure. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Martin Sent: 16 October 2001 19:05 To: [EMAIL PROTECTED] Subject: [cobalt-security] Secureing cobalt Raq3 Im suffering from intrusions. The default installation of the cobalt Raq3 is weak!!! Can somebody give me advise about upgradeing daemons, url where i can get the upgrades (because the cobalt team seems no to worry in provideing upgrades, the just install a server with a sendmail 8.9 version for example!!!), anything that can help me please. Thanks _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
