On 27 May 2006 at 21:21, Gaffer wrote: > Weird I may be. But I don't get virus,
That's more luck than anything: Unix systems are the MOST attacked and have a huge number of vulnerabilities. A fellow brought up a redhat at school [to use as a server] and it was hacked-into and compromised in a couple of hours [and this before anyone had actually used the system for anything]... it was easy enough to nuke the whole thing and start over, but the idea that Unix systems are immune to attacks and viruses is laughable [and/or naïve]. There *ARE* a lot of windows-problems that are mainly attributable to folks running as admin which Unix avoids because of its long tradition of eschewing 'root' [whereas windows's tradition is just the opposite, and we're paying for that shortsightedness in spades, constantly]. Virtually all of those sorts of problems could be fixed by making your users *always* run in limited accts. > .. and nothing goes out unless I > let it (port 80 excluded). How do you manage that? iptables or some such? Because of the utterly broken way Berkeley kludged sockets into Unix, AFAIK it is nearly impossible to prevent a process from opening a network connection [either outgoing or listening]. /Bernie\ -- Bernie Cosell Fantasy Farm Fibers mailto:[EMAIL PROTECTED] Pearisburg, VA --> Too many people, too few sheep <-- -- ---------------------------------------- To Change your email Address for this list, send the following message: CHANGE WIN-HOME your_old_address your_new_address to: [EMAIL PROTECTED] Note carefully that both old and new addresses are required.
