Re: Debian Server restored after Compromise

To: "Gudjon I. Gudjonsson" <gudjon@mc2.chalmers.se>
Cc: debian-amd64@lists.debian.org
Subject: Re: Debian Server restored after Compromise
From: Adam James <ad@heliosphan.co.uk>
Date: Fri, 14 Jul 2006 00:03:40 +0100
Message-id: <[🔎] 20060714000340.49be6e07@heliosphan.lan.kernelpanic.co.uk>
In-reply-to: <[🔎] 43426.195.67.245.44.1152825802.squirrel@webmail.chalmers.se>
References: <[🔎] 200607132024.49263.lepalom@wol.es> <[🔎] 43426.195.67.245.44.1152825802.squirrel@webmail.chalmers.se>

On Thu, 13 Jul 2006 23:23:22 +0200 (CEST)
"Gudjon I. Gudjonsson" <gudjon@mc2.chalmers.se> wrote:

>    How worried should I be? Do you think it is OK to wait for an
> official Debian packaged kernel or should I download some tonight from
> kernel.org and compile myself?

Be worried if you allow untrusted users shell access to your systems.

I'm no security expert, but I'm willing to bet that there are tens (if
not hundreds) of 0-day local exploits in the Linux 2.6 source code.
'Security' within a source tree that incorporates ~10MB of patches per
month is an illusion (in my humble opinion). 

Don't get me wrong, I run a server with a 2.6 kernel, but be aware that
if a malicious user ever gains access to an unprivileged account, they
would have no trouble in compromising the system.

--Adam

Reply to:

Follow-Ups:
- Re: Debian Server restored after Compromise
  - From: Francesco Pietra <frapietra@alice.it>

References:
- Fwd: Debian Server restored after Compromise
  - From: Leopold Palomo-Avellaneda <lepalom@wol.es>
- Re: Fwd: Debian Server restored after Compromise
  - From: "Gudjon I. Gudjonsson" <gudjon@mc2.chalmers.se>

Prev by Date: Re: No sound on etch when using video players
Next by Date: Re: Debian Server restored after Compromise
Previous by thread: Re: Fwd: Debian Server restored after Compromise
Next by thread: Re: Debian Server restored after Compromise
Index(es):
- Date
- Thread