Re: fud - Re: Is my system compromised
Alvin Oga wrote:
hi ya lamb
Since when did I give you permission to use my family name informally?
Keep it up I'll start referring to you as chipmunk.
On Sun, 5 Feb 2006 grey@dmiyu.org wrote:
- snipping unjustified/unmerited misunderstanding on
your part ... i wont bother to reply to pointless arguments
No, I understood just fine. It was another Alvin troll.
- if you look closely, your defense is bascially "name calling"
as you know what you're doing and i dont .. so be it ..
Nope, if you look closely I point out that you were the only one who
called a repair of a compromised system easier in response to the "Am I
compromised?" question. Hint, if a person has to ask trying to make them a
security expert and tell them to diagnose and repair isn't going to work. If
they had the capability and expertise to do that... they wouldn't be asking
on a general OS list. :P
- you can solve the compromized machines your way and anybody
else that wish to reinstall is free to do so, but i bet
most cannot tell you how they got in or why or that the
new system is more secure and the original problem is still
unsolved
There is a difference between getting the machine up and running in the
simplist manner and closing the hole whence the compromise came.
- its not my problem if you don't know how to fix a compromized
system, most corps will NOT let you wipe out their machines
when you cannot gurarantee their backups is 100% restorable
But we're not talking about a corp here, are we? We don't know so we
have to presume the lowest common denominator; an inexperienced user of
Debian. Business/corporation is optional.
BTW, the corporations I've worked for were all for wiping the machine.
The last major corp I was in that had half a clue about data security and
redundancy had it so the machines were hot swappable. Configueration was
pared down to where when a machine needed to be pulled we slapped an IP on a
new box and threw it in place. Machine compromised? Pull it and slap a spare
in place. Machine having hardware problems? Pull it and slap a spare in
place. Hell, need to move machines from one cluster to another... pull 'em,
redo the IP, slap it in place.
Pretty much anyone who takes security even half seriously is going to
separate data out from binaries and make sure the binaries are easily replacable.
- most compromized machines are trivial to fix and
cleanup, but of course you will want to reinstall since
you don't know how to cleanup :-)
That's the point. You're presuming experience in a case where it is
HARMFUL to presume such!
- i'll fix it my way and most corps pays their invoices after
their machine was saved and restored
Happy for ya. Lemme know which corps those are so I can avoid anyone who
consistently gets so much wrong in a public forum such as this.
you're obviously not a "real world" support for corporations
that doesn't have the inhouse crew to fix the problems
they've encountered
No. I've been the inhouse crew. But again, please tell me where the OP
even remotely suggested that this is the case we're dealing with.
please do continue to provide entertainment from your view,
or keep trolliing yourself and provide additional FUD
more more name calling
Sorry, of the two of us only one has admitted to trolling. Look in the
mirror to see him.
--
Steve C. Lamb | I'm your priest, I'm your shrink, I'm your
PGP Key: 8B6E99C5 | main connection to the switchboard of souls.
-------------------------------+---------------------------------------------
Reply to: