Re: using sarge on production machines

To: Marc Haber <mh+debian-security@zugschlus.de>, harry@uklug.co.uk
Cc: debian-security@lists.debian.org
Subject: Re: using sarge on production machines
From: Harry <postituk@yahoo.com>
Date: Fri, 18 Feb 2005 04:40:56 -0800 (PST)
Message-id: <[🔎] 20050218124056.73775.qmail@web50406.mail.yahoo.com>
Reply-to: harry@uklug.co.uk
In-reply-to: <[🔎] 20050218113319.GE24763@torres.l21.ma.zugschlus.de>

--- Marc Haber <mh+debian-security@zugschlus.de> wrote:
> On Fri, Feb 18, 2005 at 02:25:17AM -0800, Harry wrote:
> > use UML and chroot it and run sarge in it.
> 
> What does this gain you? A compomised uml is as bad as a compromised
> system.

I can wipe the UML if the host has not been compromised. This saves me
a journey to the location where the host is stored and £75 quid to get
to the machine to reinstall the host. 

If I have ten customers running various falvours of Debian in their UML
its sods law that eventually one of them is going to be cracked. If I
can prevent (as much as feasbly possible) this from spilling onto the
host then it saves me a lot of work.

Harry

__________________________________ 
Do you Yahoo!? 
Yahoo! Mail - 250MB free storage. Do more. Manage less. 
http://info.mail.yahoo.com/mail_250

Reply to:

Follow-Ups:
- Re: using sarge on production machines
  - From: Marc Haber <mh+debian-security@zugschlus.de>

References:
- Re: using sarge on production machines
  - From: Marc Haber <mh+debian-security@zugschlus.de>

Prev by Date: Re: using sarge on production machines
Next by Date: Re: using sarge on production machines
Previous by thread: Re: using sarge on production machines
Next by thread: Re: using sarge on production machines
Index(es):
- Date
- Thread