[lug] Netstat (newbie)

Michael Deck deckm at cleansoft.com
Tue Aug 1 20:07:08 MDT 2000

At 06:56 PM 8/1/00 -0700, Jeffrey B. Siegal wrote:
>Michael Deck wrote:
> > result of a belief that "anything can have security holes, the more 
> > stuff you have running the more security holes" 
> > or do you have specific knowledge of Samba problems?
>Yes and no.  It isn't that I know of any specific Samba problems right
>now (if I did, I would get in touch with the maintainers and make sure
>they got fixed immediately).  It is just that Samba is a large and
>complex piece of software, with many opportunities for security bugs. 
>There have been security bugs in Samba before, and I would be very
>surprised if more such holes were not found in the future.

Agreed. I have some exposures that I'm living with temporarily. My setup is a typical two-NIC routing firewall that masquerades a set of boxes behind it. For simplicity I have a web server and ftp server on the same box as the firewall but I realize there is some exposure in each of these packages. It's my intention to upgrade everything and "do it right" (at least, as far as Chris M will allow <grin>) but it'll still probably be a Linux firewall. 

And yes, I'm one of those that Chris would call a "case study": Linux newbie, security newbie, outdated hardware running the firewall, too much stuff on the firewall, too much other work to do that keeps me from applying all the patches etc. I suppose I'll get hurt one day and I should really reform. I should lose weight, too. 


Michael Deck
Cleanroom Software Engineering, Inc.   

More information about the LUG mailing list