[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenBSD rootkit?

To: Fyodor <fygrave@tigerteam.net>
Subject: Re: OpenBSD rootkit?
From: Jolan Luff <jolan@enteract.com>
Date: Sun, 14 Jul 2002 04:32:32 -0500 (CDT)
Cc: <tech@openbsd.org>

> Yes, there were. But the systems were 0wn3d through httpd bug, not open ssh.
> I haven't seen anyone yet (except for this post) mentioning publically being
> own3d through ssh.
go read slashdot/bsd or the openbsd journal. some 15 year old script
kiddie got busted while attacking a honeypot with the gobbles exploit.

> because you dudes claim "super-security" and give people fake sense of
> safety.. not anymore, though, after a few amusing bugs went public.
i've never seen a claim of super-security made anywhere. just strong
crypto, and thorough code auditing.

obviously, things fall through the cracks. openbsd is not perfect, but
it's usually ahead of the curve.

now, even more features are being added to reduce the effect that faulty
code (in openbsd and third party software) can have.

ssh -> privsep
apache -> chroot
skey -> per user (no longer suid)
lpr -> sgid (no longer suid)

oh, and systrace too.

there's no promises. just a humble mention of "1 remote hole in 6
years". pretty damn good.

- jolan

Follow-Ups:
- Re: OpenBSD rootkit?
  - From: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>

References:
- Re: OpenBSD rootkit?
  - From: Fyodor <fygrave@tigerteam.net>

Prev by Date: Re: OpenBSD rootkit?
Next by Date: Re: OpenBSD rootkit?
Prev by thread: Re: OpenBSD rootkit?
Next by thread: Re: OpenBSD rootkit?
Index(es):
- Date
- Thread