Flutterby™! : Time to change your Underwear

Next unread comment / Catchup all unread comments User Account Info | Logout | XML/Pilot/etc versions | Long version (with comments) | Weblog archives | Site Map | | Browse Topics

Time to change your Underwear

2001-06-16 04:51:26+02 by TC 2 comments

Bruce Schneier is a pretty nice guy although a bit suspicious, anyhow he has given permission to post snipets of his cryptogram news letter provided he is credited and linked So this little bit of info made the hair on the back of my neck stand up...

"The results are fascinating. A random computer on the Internet is scanned dozens of times a day. The life expectancy of a default installation of Red Hat 6.2 server, or the time before someone successfully hacks it, is less than 72 hours. A common home user setup, with Windows 98 and file sharing enabled, was hacked five times in four days. Systems are subjected to NetBIOS scans an average of 17 times a day. And the fastest time for a server being hacked: 15 minutes after plugging it into the network."

[ related topics: Free Software Web development Microsoft broadband Open Source security ]

comments in ascending chronological order (reverse):

#Comment made: 2002-02-21 06:31:50+01 by: meuon

Our record is under 2 days for a normal WinNT 4.0 server install to be hacked, no DNS pointing to it or anything, it was discovered and cracked wide open. Linux machines... funny, I have a honeypot machine with a RedHat 7.0 and a known easy to nail named that has survived for weeks.. just waiting to be nailed. Hmm...

#Comment made: 2002-02-21 06:31:51+01 by: TC

Interesting. Did you relax the firewall on the RH 7.0 machine? It defaults pretty high on install. Second do you use your Honeypot as a decoy (does that even make sense?) or are you a security person observing "les hackeaurs" in the glass box?

Comment policy

We will not edit your comments. However, we may delete your comments, or cause them to be hidden behind another link, if we feel they detract from the conversation. Commercial plugs are fine, if they are relevant to the conversation, and if you don't try to pretend to be a consumer. Annoying endorsements will be deleted if you're lucky, if you're not a whole bunch of people smarter and more articulate than you will ridicule you, and we will leave such ridicule in place.

Flutterby™ is a trademark claimed by

Dan Lyke
for the web publications at www.flutterby.com and www.flutterby.net.