What is Digg?83 Comments
- ChayesFSS, on 08/25/2008, -20/+59where is your god now?
- JasonCox, on 08/25/2008, -5/+40It doesn't matter what OS you run; if you don't lock things down you're gonna get bent over and fraked. I manage my company's DC and we run Windows Server so we obviously make sure things are locked down tight. The thing though is I know enough people who run Linux environments who think that just because it's Linux, turning the Firewall on is all they need to do.
- infiniphunk, on 08/25/2008, -5/+37Exactly, and then nobody would have known about it for at least 18 months.
- vroom101, on 08/24/2008, -0/+28#1. "Infrastructure report, 2008-08-22 UTC 1200" by Paul W. Frields: https://www.redhat.com/archives/fedora-announce-li ... (www.redhat.com/archives/fedora-announce-list/2008-August/msg00012.html)
Paul W. Frields, Fedora Project Leader and Chairman of the Fedora Project Board: http://fedoraproject.org/wiki/PaulWFrields (fedoraproject.org/wiki/PaulWFrields)
#2. Red Hat -- "Critical: openssh security update": http://rhn.redhat.com/errata/RHSA-2008-0855.html (http://rhn.redhat.com/errata/RHSA-2008-0855.html%2 ... - greengreed, on 08/25/2008, -10/+37Finally, I was getting jealous of Windows getting all the viruses, hacking and cracking, now Linux can get a piece of the pie! /s
But why was the signing machine even connected to the internet? - coredump0x01, on 08/25/2008, -2/+29"...Regardless, the company has converted to new Fedora signing keys."
- inactive, on 08/25/2008, -2/+28This has nothing to do with viruses but being hacked.
And the answer MacSux , OS X was hacked in less than 5 minutes at the competition earlier this year.
Since then it looks like Apple has been scared ***** to enter OSX into any competition.
Unix has been hacked since its conception as well at linux.
It rarely matter what OS you are running but if it is patched, and what applications are running on it.
It's the applications that open up ports to be used and open up security weaknesses.
That and the user, because remember one of murphy's laws:
"It is impossible to make anything foolproof because fools are so ingenious." - grexeo, on 08/25/2008, -4/+28Red Hat Infrastructure Servers Hacked, Cracked & Compromised = Inaccurate
"It is important to note that the effects of the intrusion on Fedora and
Red Hat are *not* the same. Accordingly, the Fedora package signing key
is not connected to, and is different from, the one used to sign Red Hat
Enterprise Linux packages. Furthermore, the Fedora package signing key
is also not connected to, and is different from, the one used to sign
community Extra Packages for Enterprise Linux (EPEL) packages."
Fedora Infrastructure Servers Hacked = More accurate - init100, on 08/25/2008, -0/+20The fact that Linux systems are being cracked is hardly news. Linux is often used on high-powered servers with fat network pipes, and thus those systems are pretty attractive targets for crackers.
- totalnet, on 08/25/2008, -1/+19The people over at Centos did a complete audit of both Centos 4 and 5, and found no compromises. For those who don't know, Centos is built from Red Hat Enterprise Linux's source.
http://lists.centos.org/pipermail/centos-announce/ ... - nonymous666, on 08/25/2008, -13/+25Should used a Windows Server. *duck*
- longbow486, on 08/25/2008, -1/+13FTFA
"Regardless, the company has converted to new Fedora signing keys." - leerayIG88, on 08/25/2008, -1/+11How come the Screen Saver didn't have a password for protection?
- zantos420, on 08/25/2008, -1/+11***** happens.
- xirtap, on 08/25/2008, -2/+10Jesus, people really don't RTFA, do they? If you had you would have read this little line ".."passphrase used to secure the Fedora package signing key." Regardless, the company has converted to new Fedora signing keys."
- RoboDonut, on 08/26/2008, -2/+10Linux System Compromised:
1. Problem is discovered early on
2. Information about problem is made public
3. Steps are taken to correct the situation
4. Wintrolls have a field day
Windows System Compromised:
1. Extensive cover-up; nobody finds out. - bieber, on 08/25/2008, -0/+7Evidently, that "10 Good Unix Usage Habits" article hit the front page just a little bit too late :-P
- ArthurArchnix, on 08/25/2008, -0/+5vroom, I am nominating you for posting the most useful comment of the year award.
Does digg have that? - vat0r, on 08/25/2008, -2/+7Fail
- ojnkpjg, on 08/25/2008, -1/+6Wrong.
Have a read through http://www.awe.com/mark/blog/200701300906.html - init100, on 08/25/2008, -0/+5"If they had any sort of clue about security, it never would have happened."
That's just plain wrong. Security is never absolute, and good security practices never completely thwarts attacks, they just make them much less probable. And since Red Hat AFAIK hasn't been cracked until now, I'd say their practices are likely pretty good. There might be instances of bad security though, and sometimes it really takes an intrusion to find them.
In addition, there are many extremely convoluted security issues. Even if one keeps oneself updated on new security research and practices, there likely is news that is being overlooked that could possibly have an impact. - enantiodromia, on 08/25/2008, -0/+4as a sysadmin, you shouldn't be screaming "YYYYESSS!" when bazillions of systems could have been potentially compromised; you should shutting up and watching your firewall logs.
- RandaII, on 08/25/2008, -1/+4You sir are proof there is no god.
- mmcgrath, on 08/25/2008, -0/+3Not yet we haven't.
- mmcgrath, on 08/25/2008, -0/+3Ehhh, I can't say much. I'm the Fedora Infrastructure lead. I can say this: No ssh packages were signed with Fedora's EPEL key.
You are correct though. There are different keys for RHEL, EPEL and Fedora. - mlerner, on 08/25/2008, -0/+3I completely agree, it doesn't matter what OS you run, you have to secure it. I would also add though that no matter how secure the OS is run there is always the potential for hacking.
- inactive, on 08/25/2008, -2/+5They handled this security issue fast and head on. People that are using this to criticize Linux may want to think twice about that. How long would it take for MS to deal with something like this and fix it? How many more security issues are there in MS then Linux in general? Now before anyone answers the last question keep this in mind. While Linux is more secure the MS nothing, as it has been said several times, is 100% secure. Linux is just much more secure then MS and that is a fact. A trained chimp can hack into an MS system, but it takes a lot more to hack into a Linux system. I know, I know. I just pissed off a bunch of MS users, lol, but often the truth is hard to except.
- scabbers, on 08/25/2008, -4/+7So that would be most Linux fanboys.
- inactive, on 08/25/2008, -0/+3It just goes to show, no matter how diligent you are, you're still only as secure as the last server you got your updates from.
- enantiodromia, on 08/25/2008, -0/+3I hope you don't get paid for your compsec skills.
- Dubbsacc, on 08/25/2008, -0/+3@InorganicMatter
You were correct.
http://www.boygeniusreport.com/2008/03/28/os-x-fir ...
Phase I which took place day one was remote only, however Phase II on day 2 they had users on the target computers browsing to certain websites and opening virus e-mail.
And it was the CanSecWest Security conference PWN 2 OWN Contest - 0x1B, on 08/25/2008, -0/+3Uh, they look through the openssh code and check for signs of the intrusion, code that shouldn't be there, stuff missing, etc? It's not their code you know, so not their stuff. Did you even bother to read the article?
And quit being so ***** pedantic. - Dubbsacc, on 08/25/2008, -1/+4@InorganicMatter
I'll try to look it up but I'm pretty sure the hackers had to do it remotely, no one was allowed near the computers that were used.
I think it was this year's Defcon, but I'll look it up and get post it if I find it. - mttyd, on 08/25/2008, -0/+3Great arguement and +1 for fraked
- inactive, on 08/25/2008, -0/+2If you give an untrained chimp a Linux box to administer, a trained chimp will be able to break into it.
- Giga, on 08/25/2008, -0/+2The question wasn't whether Windows or OS X had been hacked, but when the Microsoft or Apple servers themselves were last hacked.
- jellygraph, on 08/25/2008, -0/+2Just ignore him. He's probably some kid who hasn't even graduated university yet and is full of opinions. We've all been there and grown wiser.
- javaroast, on 08/25/2008, -0/+2In the Fedora breach, company officials said they had "high confidence" the hackers did not get the "passphrase used to secure the Fedora package signing key." Regardless, the company has converted to new Fedora signing keys.
- dimension128, on 08/25/2008, -0/+2There is/was an issue with SSL. Certain keys were being generated more often than they should have been. Everyone, on debian/ubuntu, are urged to update and re-generate all of their keys. Especially if your running ssh.
The point is, this kind of thing will happen on any distro. If for you, this is just the straw, and you have many other reasons for hating on RH, then ok whatever. But if this is your only excuse, dude wtf. - ElectricKetchup, on 08/25/2008, -1/+3That was the point of the question.
- peaceninja, on 08/25/2008, -1/+3i dugg you up because i am pretty sure you were satirizing those people who see that the open source movement is a powerful, business-world changing entity but who also turn a blind eye to its few shortcomings
- 0x1B, on 08/25/2008, -0/+1Indeed. Taking joy in someone else's misfortune only makes you look like an immature ass. Witness the sanctimonious people on IRC. Why would you want to be like those you loathe?
- Skooma714, on 08/25/2008, -2/+3Dugg for Frak
- enantiodromia, on 08/25/2008, -0/+1built from != owns
- Atomic1fire, on 08/26/2008, -0/+1Even the titanic sunk (of course Icebergs might not look like much but you cant judge the size by what is out of water, there was probably more ice underwater which created most of the damage)
what matters is taking more steps to prevent the same thing from happening again - enantiodromia, on 08/25/2008, -1/+2uhm, what?
- trogdoor, on 08/25/2008, -0/+1"Yeah perhaps the base parts that are from Red Hat aren't their stuff, but if they didn't have their own code in there as well it wouldn't be CentOS, it'd just be Red Hat."
Please come back when you have even a vague understanding of what CentOS is. - GothAlice, on 08/25/2008, -0/+1Alas, a problem like this isn't profitable.
- vroom101, on 08/25/2008, -0/+1#3. "Fedora User Certificates" by Dennis Gilmore posted Friday, 22 August 2008 at 10:20:03 -0500: http://www.redhat.com/archives/fedora-devel-announ ... (www.redhat.com/archives/fedora-devel-announce/2008-August/msg00008.html)
Dennis Gilmore, Release Engineer at Red Hat: http://fedoraproject.org/wiki/User:Ausil and http://www.ausil.us/ -
Show 51 - 86 of 86 discussions
Check out the new & improved 
© Digg Inc. 2009
— Content created and posted by Digg users is