On Mon, Mar 08, 2010 at 07:34:14AM -0700, Warren Young wrote:
On 3/6/2010 4:04 PM, nate wrote:
if you can upload source code,
you can upload a precompiled binary
True, but most attacks are automated, and try to attack as wide a range
of machines as possible.
If I were to write a bit
Dave Stevens wrote:
I manage a web hosting server that we've recently upgraded, in part so
we could accommodate a domain that will enable community mapping. In a
recent exchange of mails one developer said:
I could build the package directly on the server machine you have,
provided
On 3/6/2010 4:04 PM, nate wrote:
if you can upload source code,
you can upload a precompiled binary
True, but most attacks are automated, and try to attack as wide a range
of machines as possible.
If I were to write a bit of malware for *ix that needed a custom binary
on the target machine,
On 3/6/2010 4:04 PM, nate wrote:
if you can upload source code,
you can upload a precompiled binary
True, but most attacks are automated, and try to attack as wide a range
of machines as possible.
If I were to write a bit of malware for *ix that needed a custom binary
on the target
On Sunday 07 March 2010 09:54:23 am Les Mikesell and MANY others wrote:
While I typically do have the compilers and kernel headers installed on
general purpose servers where I might want to run VMware server or rebuild
a source rpm, I would not be very comfortable if I did not have a
I don't have enough experience to assess the security issues. Does
anyone have an opinion on this? It would be simple and feasible to
allocate another domain as suggested above.
As was stated by others the compiler itself isn't any more of a
security risk then any other tool. If a hacker can
On Sat, Mar 6, 2010 at 6:02 PM, Dave Stevens g...@uniserve.com wrote:
I manage a web hosting server that we've recently upgraded, in part so
we could accommodate a domain that will enable community mapping. In a
recent exchange of mails one developer said:
I could build the package directly
As was stated by others the compiler itself isn't any more of a
security risk then any other tool. If a hacker can get root he can
just as easily upload binary packages as he can compile source.
It is still a wise decision to not have the compiler installed if it can be
avoided. Any hacker
Geoff Galitz wrote:
Making the bar higher, even in little increments, is a basic tenant of
systems security. Never dismiss the power of baby steps.
Keep in mind diminishing returns with those baby steps.. Of the
~500-600 systems I've worked on over the past 10 years the only ones
that were
On Sunday 07 March 2010 03:35:43 pm nate wrote:
The
servers I manage for my employer receive roughly 2 billion web hits
per day.
2 billion per day? That's 20 000 hits per second, on average. How many servers
do you actually have behind load-balancers to deal with this kind of activity?
And
Kwan Lowe wrote:
On Sat, Mar 6, 2010 at 6:02 PM, Dave Stevens g...@uniserve.com wrote:
I manage a web hosting server that we've recently upgraded, in part so
we could accommodate a domain that will enable community mapping. In a
recent exchange of mails one developer said:
I could build the
On Sun, 2010-03-07 at 17:24 +, Marko Vojinovic wrote:
On Sunday 07 March 2010 03:35:43 pm nate wrote:
The
servers I manage for my employer receive roughly 2 billion web hits
per day.
2 billion per day? That's 20 000 hits per second, on average. How many
servers
do you actually
I manage a web hosting server that we've recently upgraded, in part so
we could accommodate a domain that will enable community mapping. In a
recent exchange of mails one developer said:
I could build the package directly on the server machine you have,
provided that the potential security
Dave Stevens wrote:
I don't have enough experience to assess the security issues. Does
anyone have an opinion on this? It would be simple and feasible to
allocate another domain as suggested above.
Unless your running an obscure platform having a compiler on the
system shouldn't be a big
On Sat, Mar 6, 2010 at 6:02 PM, Dave Stevens g...@uniserve.com wrote:
I don't have enough experience to assess the security issues. Does
anyone have an opinion on this? It would be simple and feasible to
allocate another domain as suggested above.
The compilers themselves aren't really a
15 matches
Mail list logo
