On Wed, 07 Feb 2001, [EMAIL PROTECTED] wrote:
> As most of you now know, the Math and Computer Science Divisional
> server was compromised by a hacker on Friday, February 2 around lunch
> time. A series of events led to this event, but most were avoidable
> and as such I'd like to give some common sense reminders that we often
> forget.
>
There's a small, but important, point that I'd like to make here. The
hacker actually got in around the 27-28th, and we realized it February
2nd. The following are good precautions, and will block 99% of all
attacks, but the true measure of security is really how effectively you
can respond to a breakin. This is accomplished, not by physically
securing the box to keep people out (which makes things hard both for
crackers but regular users as well), but by keeping backups, and having
lots of logs that people actually read, so that what it's doing can be
monitored. And so that in the event of an incident, things can be
recovered easily and put back on track.
<SNIP>
> Eric and I will discuss security in more detail at the next meeting,
> but until then remember to patch your distros.
>
And remember to actually watch your boxen.
Eric
--
E-mail: [EMAIL PROTECTED] If you love something, set it free.
GPG 1536g/B9C5D1F7 fpr:075A A3F7 F70B 1397 345D A67E 70AA 820B A806 F95D
-- Attached file included as plaintext by Listar --
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.2 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE6gjprcKqCC6gG+V0RAm4PAJ9BDBSyDidqGD65/+HzqFoyAlCTXACeM+hM
Ydnp+CBikj2095L2RA26owo=
=muXv
-----END PGP SIGNATURE-----
