homeGeek CultureWebstoreeCards!Forums!Joy of Tech!AY2K!webcam

The Geek Culture Forums


Post New Topic  New Poll  Post A Reply
my profile | directory login | | search | faq | forum home
  next oldest topic   next newest topic
» The Geek Culture Forums   » News, Reviews, Views!   » Your News!   » Study: Unpatched PCs compromised in 20 minutes

 - UBBFriend: Email this page to someone!    
Author Topic: Study: Unpatched PCs compromised in 20 minutes
Snaggy

Sir Snaggalot!
Member # 123

Member Rated:
5
Icon 11 posted August 18, 2004 11:37      Profile for Snaggy   Author's Homepage     Send New Private Message       Edit/Delete Post   Reply With Quote 
Study: Unpatched PCs compromised in 20 minutes

and also....

http://isc.sans.org/survivalhistory.php

[Eek!]

Posts: 8111 | From: Canada | Registered: Jan 2000  |  IP: Logged
ooby
Highlie
Member # 2603

Member Rated:
4
Icon 1 posted August 18, 2004 12:17      Profile for ooby     Send New Private Message       Edit/Delete Post   Reply With Quote 
Firewalls are your friends.

--------------------
"haven't you ever wondered if there's more to life than being really, really, rediculously good looking?"

Posts: 680 | From: South Jersey | Registered: Feb 2004  |  IP: Logged
drunkennewfiemidget
BlabberMouth, a Blabber Odyssey
Member # 2814

Member Rated:
4
Icon 1 posted August 18, 2004 12:25      Profile for drunkennewfiemidget     Send New Private Message       Edit/Delete Post   Reply With Quote 
So are Linux boxes for firewalls. [Big Grin]
Posts: 4897 | From: Cambridge, ON, Canada | Registered: Jun 2004  |  IP: Logged
SupportGoddess

Solid Nitrozanium SuperFan!
Member # 822

Icon 1 posted August 19, 2004 09:35      Profile for SupportGoddess   Author's Homepage     Send New Private Message       Edit/Delete Post   Reply With Quote 
This paper was pretty good too:
http://www.immunitysec.com/downloads/tc0.pdf

Posts: 1148 | From: The Digital Temple | Registered: Jul 2001  |  IP: Logged
spungo
BlabberMouth, a Blabber Odyssey
Member # 1089

Member Rated:
4
Icon 1 posted August 19, 2004 10:28      Profile for spungo     Send New Private Message       Edit/Delete Post   Reply With Quote 
quote:
Originally posted by SupportGoddess:
This paper was pretty good too:
http://www.immunitysec.com/downloads/tc0.pdf

Nice one, SG. Saw it on /. the other day. "Difficulty of Owning Windows vs Difficulty to Make this Graph" [Big Grin]

--------------------
Shameless plug. (Please forgive me.)

Posts: 6529 | From: Noba Scoba | Registered: Jan 2002  |  IP: Logged
greycat

Member # 945

Member Rated:
5
Icon 1 posted August 25, 2004 10:10      Profile for greycat   Author's Homepage     Send New Private Message       Edit/Delete Post   Reply With Quote 
I prefer OpenBSD boxes for firewalls (PF is truly extraordinary), but a Linux box may be OK as long as you can keep up with all the kernel exploits.

Even a dumb little Linksys NAT box would be a step up from a bare Windows box directly on the Internet.

Posts: 1522 | From: Ohio, USA | Registered: Oct 2001  |  IP: Logged
drunkennewfiemidget
BlabberMouth, a Blabber Odyssey
Member # 2814

Member Rated:
4
Icon 1 posted August 25, 2004 11:56      Profile for drunkennewfiemidget     Send New Private Message       Edit/Delete Post   Reply With Quote 
quote:
Originally posted by greycat:
I prefer OpenBSD boxes for firewalls (PF is truly extraordinary), but a Linux box may be OK as long as you can keep up with all the kernel exploits.

Even a dumb little Linksys NAT box would be a step up from a bare Windows box directly on the Internet.

I don't remember in my time there ever being a REMOTELY EXPLOITABLE kernel bug. All of them I've known have been race conditions, memory leaks, and privilege escalations. I don't know about you, but my firewall has no active users on it that I don't trust.

Translation: my account and root. [Big Grin]

Posts: 4897 | From: Cambridge, ON, Canada | Registered: Jun 2004  |  IP: Logged
greycat

Member # 945

Member Rated:
5
Icon 1 posted August 26, 2004 11:54      Profile for greycat   Author's Homepage     Send New Private Message       Edit/Delete Post   Reply With Quote 
Well, there have been remote Denial of Service attacks in Linux (vs. the kernel). Don't know of any remote exploits in the kernel off hand either, but there have been plenty in userspace. (And even OBSD had one in OpenSSH....)
Posts: 1522 | From: Ohio, USA | Registered: Oct 2001  |  IP: Logged


All times are Eastern Time  
Post New Topic  New Poll  Post A Reply Close Topic    Move Topic    Delete Topic next oldest topic   next newest topic
 - Printer-friendly view of this topic
Hop To:

Contact Us | Geek Culture Home Page

2015 Geek Culture

Powered by Infopop Corporation
UBB.classicTM 6.4.0



homeGeek CultureWebstoreeCards!Forums!Joy of Tech!AY2K!webcam