From the article: "...making it a simple matter for an attacker to decrypt the traffic passing through the device". I'd think it would only be *to* the device.
I think this particular instance was more a matter of poor security practices in web development than underlying OS or web server, but it does seem a bit odd that a military branch would use Microsoft/IIS vice using a Unix or Linux platform. It appears that the U.S. Navy is also running IIS for their primary public site.
200 OK Cache-Control: max-age=334 Connection: close Date: Mon, 08 Nov 2010 16:56:47 GMT ETag: "8094fdaf44cc81:287" Server: Microsoft-IIS/6.0 Content-Location: http://www.navy.mil/usnhome.html Content-Type: text/html Last-Modified: Thu, 11 Oct 2007 20:24:13 GMT Client-Date: Mon, 08 Nov 2010 16:56:48 GMT Client-Peer: 96.17.8.152:80 Client-Response-Num: 1 Header: US Navy X-Powered-By: ASP.NET
How about open source organizations such as OSDL, GNU, FSF, and yes even OSTG start patenting any and all ideas, algorithms, business practices, etc and start "leveraging" that intellectual property?
It looks like our broken patent system is here to stay, so why not play the game?
All operating systems are insecure by nature. Windows, Linux, Unix... ad nauseum. What makes Linux appear to be a more secure OS is that there are not nearly as many Linux hosts as Windows on the net and the technical abilities of Linux users are remarkably higher than your average Windows user and AOL subscriber.
Does anyone remember Redhat 6? How many people got rooted via SunRPC?
I really like linux... I run Debian unstable with: hermes:~$ uname -a Linux hermes 2.6.0-test4 #0 Mon Aug 25 15:25:10 CDT 2003 i686 GNU/Linux
File permissions don't mean a damn when you've got root.
Slashdot Mirror
pfSense. Been running it on ALIX board for years. Love it.
http://www.pfsense.org/
From the article: "...making it a simple matter for an attacker to decrypt the traffic passing through the device". I'd think it would only be *to* the device.
Yeah. I had not read the exploit. It was apparently a Linux box that was compromised.
Ah. My bad. I just read the exploit summary.
I think this particular instance was more a matter of poor security practices in web development than underlying OS or web server, but it does seem a bit odd that a military branch would use Microsoft/IIS vice using a Unix or Linux platform. It appears that the U.S. Navy is also running IIS for their primary public site.
200 OK
Cache-Control: max-age=334
Connection: close
Date: Mon, 08 Nov 2010 16:56:47 GMT
ETag: "8094fdaf44cc81:287"
Server: Microsoft-IIS/6.0
Content-Location: http://www.navy.mil/usnhome.html
Content-Type: text/html
Last-Modified: Thu, 11 Oct 2007 20:24:13 GMT
Client-Date: Mon, 08 Nov 2010 16:56:48 GMT
Client-Peer: 96.17.8.152:80
Client-Response-Num: 1
Header: US Navy
X-Powered-By: ASP.NET
eherr@quark:~$ HEAD http://royalnavy.mod.uk/
200 OK
Date: Mon, 08 Nov 2010 15:51:01 GMT
Accept-Ranges: bytes
ETag: "0ee7b62b67dcb1:7904"
Server: Microsoft-IIS/6.0
Content-Length: 70
Content-Location: http://royalnavy.mod.uk/index.html
Content-Type: text/html
Last-Modified: Sat, 06 Nov 2010 13:27:40 GMT
Client-Date: Mon, 08 Nov 2010 15:51:03 GMT
Client-Peer: 94.236.30.11:80
Client-Response-Num: 1
X-Powered-By: ASP.NET
Debian is vulnerable. I am running Unstable and...
/etc/pam.d/login and /etc/security/limits.conf has no default user limits:
pam_limits is commented out in
eherr@chernobyl:~$ ulimit -a
core file size (blocks, -c) 0
data seg size (kbytes, -d) unlimited
file size (blocks, -f) unlimited
max locked memory (kbytes, -l) unlimited
max memory size (kbytes, -m) unlimited
open files (-n) 1024
pipe size (512 bytes, -p) 8
stack size (kbytes, -s) 8192
cpu time (seconds, -t) unlimited
max user processes (-u) unlimited
virtual memory (kbytes, -v) unlimited
Do you have pictures? :)
You may want to try xffm from the Xfce4 desktop environment... or just completely ditch GNOME for Xfce4.2 as I did.
http://www.xfce.org/
How about open source organizations such as OSDL, GNU, FSF, and yes even OSTG start patenting any and all ideas, algorithms, business practices, etc and start "leveraging" that intellectual property?
It looks like our broken patent system is here to stay, so why not play the game?
zanders at nvForums has posted patches to improve performance with 2.6.x kernels. Here's the thread:4 6676
t achmentid=10558
http://www.nvnews.net/vbulletin/showthread.php?t=
This is the cumulative patch:
http://www.nvnews.net/vbulletin/attachment.php?at
Golly... you mean it's possible to record the output of the soundcard. Wow... everything's cracked then.. including /. editors for posting this story.
Kernel? Applications?
All operating systems are insecure by nature. Windows, Linux, Unix... ad nauseum. What makes Linux appear to be a more secure OS is that there are not nearly as many Linux hosts as Windows on the net and the technical abilities of Linux users are remarkably higher than your average Windows user and AOL subscriber.
Does anyone remember Redhat 6? How many people got rooted via SunRPC?
I really like linux... I run Debian unstable with:
hermes:~$ uname -a
Linux hermes 2.6.0-test4 #0 Mon Aug 25 15:25:10 CDT 2003 i686 GNU/Linux
File permissions don't mean a damn when you've got root.
http://www.xavax.com/ans/ppcmb.html
Google, google, google....