Linux servers hacked - who would have thought

[Richard Urban]

So much for Linux (Ubuntu) being bullet proof.

Ubuntu servers hijacked. Used to launch attack.

http://www.eweek.com/article2/0,1895,2171318,00.asp

People have been saying right along that ***ALL*** operating systems are
vulnerable!

--


Regards,

Richard Urban
Microsoft MVP Windows Shell/User
(For email, remove the obvious from my address)

 

[Charlie Tame]

Richard Urban wrote:
> So much for Linux (Ubuntu) being bullet proof.
>
> Ubuntu servers hijacked. Used to launch attack.
>
> http://www.eweek.com/article2/0,1895,2171318,00.asp
>
> People have been saying right along that ***ALL*** operating systems are
> vulnerable!
>



If you thought otherwise then it only exposes a deplorable lack of
knowledge on your part.

The article seems to suggest that the machines in question were
extremely poorly maintained and running outdated versions of the OS.

 

[DP]

Oh. My. God.
That's it. I'm switching to a more secure operating system!
Does anyone know if Apple still makes Lisa?



"Richard Urban" <richardurbanREMOVETHIS@hotmail.com> wrote in message
news:edxtDq63HHA.948@TK2MSFTNGP06.phx.gbl...
> So much for Linux (Ubuntu) being bullet proof.
>
> Ubuntu servers hijacked. Used to launch attack.
>
> http://www.eweek.com/article2/0,1895,2171318,00.asp
>
> People have been saying right along that ***ALL*** operating systems are
> vulnerable!
>
> --
>
>
> Regards,
>
> Richard Urban
> Microsoft MVP Windows Shell/User
> (For email, remove the obvious from my address)
>

 

[Val]

How about an S-100 bus machine running CP/M?

I might still have a Timex-Sinclair 1000 hiding in the closet.


"DP" <nospam@nospam.com> wrote in message
news:u%23eea263HHA.948@TK2MSFTNGP06.phx.gbl...
Oh. My. God.
That's it. I'm switching to a more secure operating system!
Does anyone know if Apple still makes Lisa?



"Richard Urban" <richardurbanREMOVETHIS@hotmail.com> wrote in message
news:edxtDq63HHA.948@TK2MSFTNGP06.phx.gbl...
> So much for Linux (Ubuntu) being bullet proof.
>
> Ubuntu servers hijacked. Used to launch attack.
>
> http://www.eweek.com/article2/0,1895,2171318,00.asp
>
> People have been saying right along that ***ALL*** operating systems are
> vulnerable!
>
> --
>
>
> Regards,
>
> Richard Urban
> Microsoft MVP Windows Shell/User
> (For email, remove the obvious from my address)
>

 

[DP]

Do you think the Datasette from my old Vic-20 is compatible with the
Sinclair? Is there a hack, maybe?


"Val" <vmanes@NOSPAMrap.midco.net> wrote in message
news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
> How about an S-100 bus machine running CP/M?
>
> I might still have a Timex-Sinclair 1000 hiding in the closet.
>
>
> "DP" <nospam@nospam.com> wrote in message
> news:u%23eea263HHA.948@TK2MSFTNGP06.phx.gbl...
> Oh. My. God.
> That's it. I'm switching to a more secure operating system!
> Does anyone know if Apple still makes Lisa?
>
>
>
> "Richard Urban" <richardurbanREMOVETHIS@hotmail.com> wrote in message
> news:edxtDq63HHA.948@TK2MSFTNGP06.phx.gbl...
>> So much for Linux (Ubuntu) being bullet proof.
>>
>> Ubuntu servers hijacked. Used to launch attack.
>>
>> http://www.eweek.com/article2/0,1895,2171318,00.asp
>>
>> People have been saying right along that ***ALL*** operating systems are
>> vulnerable!
>>
>> --
>>
>>
>> Regards,
>>
>> Richard Urban
>> Microsoft MVP Windows Shell/User
>> (For email, remove the obvious from my address)
>>
>
>

 

[Telstar]

"Val" <vmanes@NOSPAMrap.midco.net> wrote in message
news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
> How about an S-100 bus machine running CP/M?
>
> I might still have a Timex-Sinclair 1000 hiding in the closet.


My KayPro and TRS-80 model I have never been hacked. They must be superior.

 

[Spirit]

CPM - only way to fly

"Telstar" <none@none> wrote in message news:evnw9e73HHA.5844@TK2MSFTNGP02.phx.gbl...
>
> "Val" <vmanes@NOSPAMrap.midco.net> wrote in message
> news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
>> How about an S-100 bus machine running CP/M?
>>
>> I might still have a Timex-Sinclair 1000 hiding in the closet.
>
>
> My KayPro and TRS-80 model I have never been hacked. They must be superior.
>
>

 

[Lang Murphy]

<snip>

> The article seems to suggest that the machines in question were extremely
> poorly maintained and running outdated versions of the OS.

And that doesn't happen with regularity in the real world? You think this is
an extreme exception?

Lang

 

[Robert Firth]

Funny, my calculator never got hacked either.

Robert Firth
http://www.winvistainfo.org

"Telstar" <none@none> wrote in message
news:evnw9e73HHA.5844@TK2MSFTNGP02.phx.gbl...
>
> "Val" <vmanes@NOSPAMrap.midco.net> wrote in message
> news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
>> How about an S-100 bus machine running CP/M?
>>
>> I might still have a Timex-Sinclair 1000 hiding in the closet.
>
>
> My KayPro and TRS-80 model I have never been hacked. They must be
> superior.
>
>

 

[Not Me]

LOL, I have 10,000 feet of mylar tape with the programming for the HP-2000.
But where am I going to find 480,000 vacuum tubes and 25 miles of wire? or a
100 baud modem?

"Val" <vmanes@NOSPAMrap.midco.net> wrote in message
news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
> How about an S-100 bus machine running CP/M?
>
> I might still have a Timex-Sinclair 1000 hiding in the closet.
>
>
> "DP" <nospam@nospam.com> wrote in message
> news:u%23eea263HHA.948@TK2MSFTNGP06.phx.gbl...
> Oh. My. God.
> That's it. I'm switching to a more secure operating system!
> Does anyone know if Apple still makes Lisa?

 

[PvdG42]

"DP" <nospam@nospam.com> wrote in message
news:uuUthc73HHA.1824@TK2MSFTNGP04.phx.gbl...
>
> Do you think the Datasette from my old Vic-20 is compatible with the
> Sinclair? Is there a hack, maybe?
>
>
> "Val" <vmanes@NOSPAMrap.midco.net> wrote in message
> news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
>> How about an S-100 bus machine running CP/M?
>>
>> I might still have a Timex-Sinclair 1000 hiding in the closet.
>>
>>
>> "DP" <nospam@nospam.com> wrote in message
>> news:u%23eea263HHA.948@TK2MSFTNGP06.phx.gbl...
>> Oh. My. God.
>> That's it. I'm switching to a more secure operating system!
>> Does anyone know if Apple still makes Lisa?
>>
>>
>>
>> "Richard Urban" <richardurbanREMOVETHIS@hotmail.com> wrote in message
>> news:edxtDq63HHA.948@TK2MSFTNGP06.phx.gbl...
>>> So much for Linux (Ubuntu) being bullet proof.
>>>
>>> Ubuntu servers hijacked. Used to launch attack.
>>>
>>> http://www.eweek.com/article2/0,1895,2171318,00.asp
>>>
>>> People have been saying right along that ***ALL*** operating systems are
>>> vulnerable!
>>>
>>> --
>>>
>>>
>>> Regards,
>>>
>>> Richard Urban
>>> Microsoft MVP Windows Shell/User
>>> (For email, remove the obvious from my address)
>>>
>>
>>
>

Well, nobody has successfully hacked into my Atari 800, so I guess TOS is
pretty secure )

 

[PvdG42]

"Spirit" <noone@notthere.net> wrote in message
news:%234$wag73HHA.1208@TK2MSFTNGP03.phx.gbl...
CPM - only way to fly

"Telstar" <none@none> wrote in message
news:evnw9e73HHA.5844@TK2MSFTNGP02.phx.gbl...
>
> "Val" <vmanes@NOSPAMrap.midco.net> wrote in message
> news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
>> How about an S-100 bus machine running CP/M?
>>
>> I might still have a Timex-Sinclair 1000 hiding in the closet.
>
>
> My KayPro and TRS-80 model I have never been hacked. They must be
> superior.
>
>

Let's start an antique OS religious war! TOS was always better than CP/M!

 

[Kerry Brown]

"Charlie Tame" <charlie@tames.net> wrote in message
news:eYk2p163HHA.1824@TK2MSFTNGP04.phx.gbl...
> Richard Urban wrote:
>> So much for Linux (Ubuntu) being bullet proof.
>>
>> Ubuntu servers hijacked. Used to launch attack.
>>
>> http://www.eweek.com/article2/0,1895,2171318,00.asp
>>
>> People have been saying right along that ***ALL*** operating systems are
>> vulnerable!
>>
>
>
>
> If you thought otherwise then it only exposes a deplorable lack of
> knowledge on your part.
>
> The article seems to suggest that the machines in question were extremely
> poorly maintained and running outdated versions of the OS.


If Canonical can't maintain a Linux server who can? Can you imagine the
outcry if Microsoft's server's were hacked because they hadn't kept them up
to date? I totally agree that the reason this happened is because the
servers were out of date but it is ironic that they were servers run by
Canonical. It is more a statement of how important it is to stay up to date
with patches than anything else. The OS is really irrelevant.

--
Kerry Brown
Microsoft MVP - Shell/User
http://www.vistahelp.ca

 

[norm]

Kerry Brown wrote:
> "Charlie Tame" <charlie@tames.net> wrote in message
> news:eYk2p163HHA.1824@TK2MSFTNGP04.phx.gbl...
>> Richard Urban wrote:
>>> So much for Linux (Ubuntu) being bullet proof.
>>>
>>> Ubuntu servers hijacked. Used to launch attack.
>>>
>>> http://www.eweek.com/article2/0,1895,2171318,00.asp
>>>
>>> People have been saying right along that ***ALL*** operating systems
>>> are vulnerable!
>>>
>>
>>
>>
>> If you thought otherwise then it only exposes a deplorable lack of
>> knowledge on your part.
>>
>> The article seems to suggest that the machines in question were
>> extremely poorly maintained and running outdated versions of the OS.
>
>
> If Canonical can't maintain a Linux server who can? Can you imagine the
> outcry if Microsoft's server's were hacked because they hadn't kept them
> up to date? I totally agree that the reason this happened is because the
> servers were out of date but it is ironic that they were servers run by
> Canonical. It is more a statement of how important it is to stay up to
> date with patches than anything else. The OS is really irrelevant.
>
Although it doesn't mitigate the situation, it was local communities
operating and maintaining the servers, not canonical. See the following:
http://www.dslreports.com/forum/r18880277-Ubuntu-servers-hacked-to-attack-others

--
norm

 

[Frank]

norm wrote:
> Kerry Brown wrote:
>
>> "Charlie Tame" <charlie@tames.net> wrote in message
>> news:eYk2p163HHA.1824@TK2MSFTNGP04.phx.gbl...
>>
>>> Richard Urban wrote:
>>>
>>>> So much for Linux (Ubuntu) being bullet proof.
>>>>
>>>> Ubuntu servers hijacked. Used to launch attack.
>>>>
>>>> http://www.eweek.com/article2/0,1895,2171318,00.asp
>>>>
>>>> People have been saying right along that ***ALL*** operating systems
>>>> are vulnerable!
>>>>
>>>
>>>
>>>
>>> If you thought otherwise then it only exposes a deplorable lack of
>>> knowledge on your part.
>>>
>>> The article seems to suggest that the machines in question were
>>> extremely poorly maintained and running outdated versions of the OS.
>>
>>
>>
>> If Canonical can't maintain a Linux server who can? Can you imagine
>> the outcry if Microsoft's server's were hacked because they hadn't
>> kept them up to date? I totally agree that the reason this happened is
>> because the servers were out of date but it is ironic that they were
>> servers run by Canonical. It is more a statement of how important it
>> is to stay up to date with patches than anything else. The OS is
>> really irrelevant.
>>
> Although it doesn't mitigate the situation, it was local communities
> operating and maintaining the servers, not canonical. See the following:
> http://www.dslreports.com/forum/r18880277-Ubuntu-servers-hacked-to-attack-others
>
>

The linturd zealots always represent that linux can be run totally
securely by any 6 yr old.
I guess reality is a difficult thing to accept.
Frank

 

[DanS]

"Richard Urban" <richardurbanREMOVETHIS@hotmail.com> wrote in
news:edxtDq63HHA.948@TK2MSFTNGP06.phx.gbl:

> So much for Linux (Ubuntu) being bullet proof.
>
> Ubuntu servers hijacked. Used to launch attack.
>
> http://www.eweek.com/article2/0,1895,2171318,00.asp
>
> People have been saying right along that ***ALL*** operating systems are
> vulnerable!

And Linux Servers are related to Vista how ?

(I thought I'd give the old Fanboy 'this is a Vista group, so get out of
here with your Linux crap' line.)

 

[DanS]

"Kerry Brown" <kerry@kdbNOSPAMsys-tems.c*a*m> wrote in
news:ucCM0QB4HHA.3400@TK2MSFTNGP03.phx.gbl:


>>
>> The article seems to suggest that the machines in question were
>> extremely poorly maintained and running outdated versions of the OS.
>
>
> If Canonical can't maintain a Linux server who can? Can you imagine
> the outcry if Microsoft's server's were hacked because they hadn't
> kept them up to date? I totally agree that the reason this happened is
> because the servers were out of date but it is ironic that they were
> servers run by Canonical. It is more a statement of how important it
> is to stay up to date with patches than anything else. The OS is
> really irrelevant.

What's not so irrelevent is the way the 'hack' may have perpetrated.

While no absolute method of hacking was given, no 'exploit', this
statement was made...

"FTP (not sftp, without SSL) was being used to access the machines, so an
attacker (in the right place) could also have gotten access by sniffing
the clear-text passwords," he said.

If that was the method used, there was no 'hacking' or exploit involved,
as it wouldn't have been some internal deficiency, just simply using an
existing sniffed login and password.

I've always detested the way Windows Server FTP server could only be
accesssed by users if they have a l/p in AD.

People have got to remember, basic SMTP, FTP, POP, and NNTP protocols do
use plain text when sending usernames and passwords.

 

[Saran]

Richard Urban wrote:
> So much for Linux (Ubuntu) being bullet proof.

No one ever said it was. Anyone who thinks ANY system is hack proof is
living in a dream world. Unix and Linux have far fewer wholes to be
exploited by Windows and last I checked, are not exactly the easiest to
hack into.

> Ubuntu servers hijacked. Used to launch attack.
>
> http://www.eweek.com/article2/0,1895,2171318,00.asp


Maybe you should actually read the article.


that the source of the troubles might have been a Chinese
IP address trying to log onto the servers by brute force
"for a long time now it seems," said a participant

The attacker got in via brute force? If that's so then this is nothing
more than a case of an admin neglecting security. Something as simple as
checking logs from time to time could of prevented that. Most Linux
systems I've used have something called LogWatch that compiles a report
of various logs (that can be customized) for the root admin to see every
morning their inbox.


the servers were all found to be out of date, stuffed with
Web software, and missing security patches-at least in the
instances where it was easy to determine what version
they're running.

In other words these machines were poorly kept and possibly running poor
choices of software or software that was poorly configured, probably by
inexperienced personal.


It seems that this isn't a case of Linux being vulnerable, but what
happens if admins of live servers don't do their job.

In any system theres no replacement for good administrators. Linux is
far more solid and robust than Windows could ever hope to be (if Vista
is any indication.)

-saran

 

[Saran]

Lang Murphy wrote:
> <snip>
>
>> The article seems to suggest that the machines in question were
>> extremely poorly maintained and running outdated versions of the OS.
>
> And that doesn't happen with regularity in the real world?

I guess it depends if the admins actually do their job as maintainers.
If they don't, it's no one's fault but their own.

> You think this is an extreme exception?

For live servers, yes I do. Any properly maintained live server (like
those in data centers used by hosting companies) should fall prey to
such attacks if the admins do their jobs. If they do then someone wasn't
taking care of things.

-saran

 

[Saran]

Telstar wrote:
> "Val" <vmanes@NOSPAMrap.midco.net> wrote in message
> news:cMqdnZtC6pk4WF7bnZ2dnUVZ_qmlnZ2d@midco.net...
>> How about an S-100 bus machine running CP/M?
>>
>> I might still have a Timex-Sinclair 1000 hiding in the closet.
>
>
> My KayPro and TRS-80 model I have never been hacked. They must be
> superior.

Wow, how suprising, considering you've never plugged them into the
Internet

-saran