On Thu, May 23, 2002 at 01:39:25PM -0400, Hubert Chan wrote:
> Security patches go into stable first. Sid/unstable is generally
> upgraded pretty promptly too. They're working on a system (AFAIK) to
> allow security patches to be fast tracked into testing.
Not to be fast tracked in to testing.
> "John" == John <[EMAIL PROTECTED]> writes:
John> Woody ahh woody. It's always been told to me (by someone who's
John> even on this list and on the debian security team) that 'Potato'
John> should be the only thing that's really trusted ("trusted") for
John> security in Debian. It's sup
Unfortunately, this reply will be a lot of 'should haves'. There's not
much you can do after the fact.
On Thu, May 23, 2002 at 05:06:23PM +0200, Kjetil Kjernsmo wrote:
> -BEGIN PGP SIGNED MESSAGE-
--snip--
> The story is that I installed Woody on three boxes, two workstations, and
> a ser
Kjetil Kjernsmo <[EMAIL PROTECTED]> writes:
> To address this first: It is the gnutella server that causes alarm, so is
> there anything I could have done that would install gnutella but escape
> my attention? I certainly never did apt-get install gnutella (I tried
> apt-get remove gnutella yester
What to do?
If you really are cracked, wipe the system and start fresh, with recent
copies of ssh and exim.
If I had to make a bet between what is listed, I'd say it was ssh
exploited, because those have been floating around for quite a while.
- James
> -Original Message-
> From: Kjetil
Hello
First, and I think most ipmortant thing would be to upgrade all
mission-critical applications you are using. For sure you have to upgrade
OpenSSH nad Exim. (run apt-setup, then apt-get update followed by apt-get
upgrade).
Second think would be to block all unwanted connection by iptables (ma
On Thu, May 23, 2002 at 01:39:25PM -0400, Hubert Chan wrote:
> Security patches go into stable first. Sid/unstable is generally
> upgraded pretty promptly too. They're working on a system (AFAIK) to
> allow security patches to be fast tracked into testing.
Not to be fast tracked in to testing.
> "John" == John <[EMAIL PROTECTED]> writes:
John> Woody ahh woody. It's always been told to me (by someone who's
John> even on this list and on the debian security team) that 'Potato'
John> should be the only thing that's really trusted ("trusted") for
John> security in Debian. It's su
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear all,
Please accept my apologies for not lurking. I got my first own server box
in server-hosting last week, and I thought I configured it well, but it
appears to be cracked allready. :-( Well, I'm a real newbie, and so I'm
having a steep learning
Unfortunately, this reply will be a lot of 'should haves'. There's not
much you can do after the fact.
On Thu, May 23, 2002 at 05:06:23PM +0200, Kjetil Kjernsmo wrote:
> -BEGIN PGP SIGNED MESSAGE-
--snip--
> The story is that I installed Woody on three boxes, two workstations, and
> a se
Kjetil Kjernsmo <[EMAIL PROTECTED]> writes:
> To address this first: It is the gnutella server that causes alarm, so is
> there anything I could have done that would install gnutella but escape
> my attention? I certainly never did apt-get install gnutella (I tried
> apt-get remove gnutella yeste
What to do?
If you really are cracked, wipe the system and start fresh, with recent
copies of ssh and exim.
If I had to make a bet between what is listed, I'd say it was ssh
exploited, because those have been floating around for quite a while.
- James
> -Original Message-
> From: Kjeti
Hello
First, and I think most ipmortant thing would be to upgrade all
mission-critical applications you are using. For sure you have to upgrade
OpenSSH nad Exim. (run apt-setup, then apt-get update followed by apt-get
upgrade).
Second think would be to block all unwanted connection by iptables (m
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear all,
Please accept my apologies for not lurking. I got my first own server box
in server-hosting last week, and I thought I configured it well, but it
appears to be cracked allready. :-( Well, I'm a real newbie, and so I'm
having a steep learnin
14 matches
Mail list logo
