On 9/27/05, Ricardo Stella <stella@xxxxxxxxx> wrote: > > The fact you got hacked means that whatever happened before is still > hapenning. That is, are you sure you don't have any odd cgi scripts > running that could be easily compromised ? > > Yes, there are zero day exploits, but make sure all your other related > apps. are up to date. Ie, you could have old ssl libraries and then ssh > or even apache ssh could be exploited... > > My .02... I guess I need to read up on securing apache. How do you secure a machine that runs cgi scripts when the users are able to upload their own scripts? It would be impossible to review every script on the machine to see if it is secure. There must be a better way. This is a brand new machine running FC4 and then yum updated. I suppose it's possible for it to have outdated libraries, but I doubt it. I can't be the only one with security problems. What measures do you guys take to make sure your machines can't be compromised? Farmer J --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|