[ilug-cal] Re: root security

[sibayan]

humm prince you are a dalnet-er from #freebsd, i was an aop there long 
before, good ol' days, you are talking about jailing??? but the fact jailing 
makes a system slower. anyway prince you'ld love to implement that kind of 
security when you are a shell provider, not in a place where *nix is a 
taboo. i know a leading ISP and also a broadband provider used to shutdown a 
linux system by just switching off the system. guess where we are. i mean to 
say ***when one has targeted a system and has local access, the cracker has 
a hell lot of ways to get root access isn't it?*** well i don't wanna 
discuss. it is a very sensitive issue. 

prince i was talking about std. company not "ram das jhunjhunwalla 
infoteck". YES 99% percent of the indian companies does NOT have any 
security policy, with admins haveing the following attitudes :- 

1. OH!! my system is hacked (sorry for using the word), that means we are so 
important. "good sign"
2. We're hacked so what??? we've back ups, get the DATs and restore the 
site.
3. Is there any anti virus for *nix? we'ld implement it for the next time so 
that this kind of virus infection won't occure for the next time. (Defacing 
is a virus infection for them)
4. Why a security policy????? we've to work a lot, lets play "Age OF The 
Emperor" online.
5. By the name of implementing security that guy doesn't work and does lots 
of RNDs so lets kick his a$$.
6. "Dhus sha** system-ta live ip tey rekhyechilaam boley to hack koreychilo 
noiley ki paar to???? system-taai soriye debo dekhi sha**-ra k korey?" 

and more and more. by the way prince i was talking about a us based giant 
with BS7799 implemented. btw jailing can be brought down. 

regards 

--
To unsubscribe, send mail to [EMAIL PROTECTED] with the body
"unsubscribe ilug-cal" and an empty subject line.
FAQ: http://www.ilug-cal.org/node.php?id=3