Author |
Message |
dogle
Joined: 11 Oct 2007 Posts: 385
|
Posted: Thu 01 Sep 2011, 05:42 Post subject:
Attack on Linux reported (again) |
|
http://www.theregister.co.uk/2011/08/31/linux_kernel_security_breach/
The shape of things to come?
(edit - see new post September 12)
Last edited by dogle on Mon 12 Sep 2011, 12:44; edited 2 times in total
|
Back to top
|
|
 |
Dougal

Joined: 19 Oct 2005 Posts: 2504 Location: Hell more grotesque than any medieval woodcut
|
Posted: Thu 01 Sep 2011, 15:04 Post subject:
|
|
What Jon Corbet has to say is likely more intelligent than what El Reg report...
_________________ What's the ugliest part of your body?
Some say your nose
Some say your toes
But I think it's your mind
|
Back to top
|
|
 |
Bruce B
Joined: 18 May 2005 Posts: 11488 Location: The Peoples Republic of California
|
Posted: Thu 01 Sep 2011, 15:18 Post subject:
Re: Attack on Linux reported |
|
The way I read it was it was not an attack on a Linux vulnerability, rather other vulnerabilities not associated with Linux itself.
~
_________________ New! Puppy Linux Links Page
|
Back to top
|
|
 |
nooby
Joined: 29 Jun 2008 Posts: 10548 Location: SwedenEurope
|
Posted: Thu 01 Sep 2011, 15:24 Post subject:
|
|
Would puppy then be as safe as Slitaz or TinyCore or some other non-root? oops I do run Slitaz as root so that does not help me then?
But TCL I run as user. Am I more safe on TCL then? I mean in relation to what them write about there?
Puppy has built in servers? but as long as one don't call them up them don't run in the background or do they?
_________________ I use Google Search on Puppy Forum
not an ideal solution though
|
Back to top
|
|
 |
d4p

Joined: 12 Mar 2007 Posts: 426
|
Posted: Thu 01 Sep 2011, 21:14 Post subject:
|
|
ZDNet Australia, 2004
http://www.zdnet.com.au/linux-hacked-more-often-than-windows-139116229.htm
|
Back to top
|
|
 |
nooby
Joined: 29 Jun 2008 Posts: 10548 Location: SwedenEurope
|
Posted: Fri 02 Sep 2011, 04:07 Post subject:
|
|
d4p that one from 2004 was also about Servers.
Does the average user of puppy have the server activated at boot? Or does one have to start a special program?
What is the name of the server can one stop it from going on?
_________________ I use Google Search on Puppy Forum
not an ideal solution though
|
Back to top
|
|
 |
WillM
Joined: 30 Dec 2009 Posts: 173 Location: Oakland, California
|
Posted: Fri 02 Sep 2011, 18:09 Post subject:
|
|
Hi nooby,
The name of the web server on Puppy Linux is called hiawatha. It must be started manually, so that should not be running.
|
Back to top
|
|
 |
nooby
Joined: 29 Jun 2008 Posts: 10548 Location: SwedenEurope
|
Posted: Sat 03 Sep 2011, 04:57 Post subject:
|
|
Thanks, now when you give me the name I do remember I have seen it many times in the forum but have never read about it due to me not into server and barely get what it is. sure one can place files on such and then others can ftp to and fro. but that is all I know.
Ooops Edit. All of you know that there is a "Server" built into Opera!!!
So how safe is that one then. Is that one on all the time maybe? I use Firefox. Does that one maybe act as a server too? Flash addon maybe does
What I don't like about AV is that the free ones seldom are so good that them can tell that one are under attack only much later can find that a signature is a known such one but then that one have been there for days doing damage.
What we would need is software that "sense" something bad is going on and it shut it out and told us instantly. An intelligent watcher over what come in and goes out.
_________________ I use Google Search on Puppy Forum
not an ideal solution though
|
Back to top
|
|
 |
Dougal

Joined: 19 Oct 2005 Posts: 2504 Location: Hell more grotesque than any medieval woodcut
|
Posted: Sat 03 Sep 2011, 14:51 Post subject:
|
|
nooby wrote: | d4p that one from 2004 was also about Servers. |
That's also the time when MS were spending a lot of money to get people to publish lies about Linux... they even had a website "proving" that Windows Server is better than Linux.
Nearly everything published on internet "news" sites should not be taken seriously... not only is it badly written (and by ignorant people), but also tends to be propaganda for some corporation or other (see, for example, how since Condé Nast acquired Ars Technica, Ars has become strangely pro-Apple and anti-Google/Android slanted...).
_________________ What's the ugliest part of your body?
Some say your nose
Some say your toes
But I think it's your mind
|
Back to top
|
|
 |
nooby
Joined: 29 Jun 2008 Posts: 10548 Location: SwedenEurope
|
Posted: Sat 03 Sep 2011, 15:00 Post subject:
|
|
okay, we are all a bit biased maybe
At least I am a Frugal Install NTFS Fan
_________________ I use Google Search on Puppy Forum
not an ideal solution though
Last edited by nooby on Mon 12 Sep 2011, 14:29; edited 1 time in total
|
Back to top
|
|
 |
dogle
Joined: 11 Oct 2007 Posts: 385
|
Posted: Mon 12 Sep 2011, 12:37 Post subject:
|
|
ooops! ......
Quote: | Linux Foundation infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are down for maintenance due to a security breach that was discovered on September 8, 2011. |
http://www.Linux.com
|
Back to top
|
|
 |
nooby
Joined: 29 Jun 2008 Posts: 10548 Location: SwedenEurope
|
Posted: Mon 12 Sep 2011, 14:28 Post subject:
|
|
that is four days ago. Seems severe thing or is it normal that one ahve problem for four days?
_________________ I use Google Search on Puppy Forum
not an ideal solution though
|
Back to top
|
|
 |
Dave_G

Joined: 21 Jul 2011 Posts: 459
|
Posted: Mon 12 Sep 2011, 14:34 Post subject:
|
|
Yup, still down so it must be serious.
|
Back to top
|
|
 |
robotgirl
Joined: 08 Sep 2011 Posts: 11
|
Posted: Mon 12 Sep 2011, 15:26 Post subject:
|
|
they probably just don't want to go back up until they know the root (no pun intended) of the problem, it's not really that uncommon for a site to stay down for a few days after an attack like this. This is a security breach, not a simple DDOS attack or something.
|
Back to top
|
|
 |
Dougal

Joined: 19 Oct 2005 Posts: 2504 Location: Hell more grotesque than any medieval woodcut
|
Posted: Wed 14 Sep 2011, 08:32 Post subject:
|
|
dogle wrote: | ooops! ......
Quote: | Linux Foundation infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are down for maintenance due to a security breach that was discovered on September 8, 2011. |
|
From what I understand, H. Peter Anvin (x86 subsystem maintainer, Syslinux developer etc.) had a trojan on his computer... so getting into kernel.org would have been easy and from there probably also linux.com.
_________________ What's the ugliest part of your body?
Some say your nose
Some say your toes
But I think it's your mind
|
Back to top
|
|
 |
|