Re: DSA 438 - bad server time, bad kernel version or information delayed?
On Wed, Feb 18, 2004 at 11:37:19PM +0100, Jan Lühr wrote:
But if knowlegde about this vuln is availeable - if fixes are done, but not
avaible yet, how do I protect myself?
Are you less secure today than yesterday? No. Someone will always know
about a vulnerability before you do, you need to deal with that. You
protect yourself by disabling unnecessary services, teaching your users
good security habits, elminating replayable passwords, keeping good
logs, reviewing those logs, making good backups, etc. Can you still be
compromised? Yup. Are there people out there right now exploiting
vulnerabilities you don't know about? Yup. All you can do is established
a layered security plan and prepare a disaster recovery plan for the
inevitable.
Mike Stone
Reply to: