Slashdot Mirror


Ongoing Linux/Solaris Compromise Epidemic

An anonymous reader writes to point out that Stanford's Information Technology Systems and Services "has written a summary of a series of compromises that have been happening at universities, research institutions, and high performance computing centers, for the last month or more. The attackers are using known vulnerabilities in Linux and Solaris, along with compromised user accounts, to gain access and control of systems, from standalone servers to HPC clusters ... (the attacks are still ongoing)."

12 of 366 comments (clear)

  1. Nothing to worry about by Rapid+Home+Offer · · Score: 5, Funny
    From the article:
    The attacker appears to be deliberately targetting machines in academic and high performance computing environments, rather than attacking systems indiscriminately.
    I wouldn't worry too much. It's sounds like some guy is trying to boost his SETI@home ranking.
  2. Check out a good substitute for all your Linux by Anonymous Coward · · Score: 3, Funny

    A good substitute for Linux and Sun boxes. My school migrated two years ago, weren't happier ever since.

    Here - those guys make a kernel, kickass GUI environment (faster than GNOME and easier to use than KDE) plus some office word editors and educational stuff like encyclopedias and maps.

  3. I'm just glad... by Anonymous Coward · · Score: 4, Funny

    I'm running Windows XP!

    aQazaQa

  4. Note to self by UnknowingFool · · Score: 4, Funny

    Change Linux root password from 1234 to something harder to guess

    --
    Well, there's spam egg sausage and spam, that's not got much spam in it.
    1. Re:Note to self by RussDavisDotCom · · Score: 5, Funny

      No Worries. I've already changed it for you.

      --
      My favorite phrase: You have 5 Moderator Points! Use 'em or lose 'em!
  5. HPC Clusters? by JessLeah · · Score: 3, Funny

    Isn't that an oxymoron? Cray Canada's CTO says so. Then again, Borland's CTO said "OS X is my favorite Linux distribution.", so maybe CTOs aren't so smart about Technology after all ;)

  6. Imagine... by Odin's+Raven · · Score: 4, Funny

    From the Stanford article:

    Stanford, along with a large number of research institutions and high performance computing centers...

    And further down...

    ...the compromised user account is typically used to run a password decoding application called John the Ripper...

    To paraphrase a cliche without any attempt at humor:

    Imagine a Beowulf cluster running John the Ripper.

    /me runs and hides in cellar...

    --
    A marriage is always made up of two people who are prepared to swear that only the other one snores.
  7. Re:Hmm, doesn't seem very unusual. by Spoke · · Score: 3, Funny

    (And as for numbers and symbols making passwords less crackable--admit it, how many of you use 1337speak to make up the number/symbol quota?)
    Doh, how did you know my password was 1337speak? I better change now that you've posted it on Slashdot!

  8. this just in... by medelliadegray · · Score: 4, Funny

    PC's get compromised if security patches are not applied!

    and in other news...
    cheerio's get soggy in milk

    --
    Troll, Troll, go away and flame again some other day
  9. Re:Windows is not the only vulnerable OS by drinkypoo · · Score: 3, Funny

    I am a religious patcher.

    How's the reformation coming?

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  10. Sad Mind by Neo-Rio-101 · · Score: 5, Funny

    I was looking at one of the Solaris vulnerabilities, and I saw "sadmind".

    I thought it was some kind of nasty name for a hacking daemon - until I found out that sadmind was the "Solaris ADMIN Daemon"

    --
    READY.
    PRINT ""+-0
  11. Win 95 to the rescue! by CaptainPinko · · Score: 5, Funny

    Heh, I'm running Windows 95. I figure by now the hackers are just bored of hacking me.

    Security through boredom, my new secret weapon take th^454&*%2^$^^^B

    --
    Your CPU is not doing anything else, at least do something.