Is the Ramen worm that is ravaging Red(mond) Hat 6.2 and 7.0 Linux servers a threat to SuSE users or is this due to one of the many defects inherent in Red(mond) Hat's sloppy distro? see: http://lwn.net/daily/#t79 and http://www.zdnet.com/zdnn/stories/news/0,4586,2675147,00.html for details. -- Cheers, Jonathan
Jonathan Drews wrote:
Is the Ramen worm that is ravaging Red(mond) Hat 6.2 and 7.0 Linux servers a threat to SuSE users or is this due to one of the many defects inherent in Red(mond) Hat's sloppy distro?
...
http://www.zdnet.com/zdnn/stories/news/0,4586,2675147,00.html
"Both flaws appear in other distributions of Linux, including SuSE, Mandrake and Caldera. But because the worm limits itself to Red Hat servers, those distributions are not affected. Patches for both flaws have been readily available for more than six months." I would suggest NOT to use any negative language against anyone, or even have such thoughts. My system: I don't read any news about what this person or that competitor is doing. I'm busy with doing my own stuff. Creating negativity is BAD, so I'd rather leave this without comment and continue working on MY job rather than looking at what bad luck others are having. Unfortunately still a lot of people think someone's gotta loose in order for someone else to win, I can't share this attitude. The facts are simply that Linux is Linux. Every system needs to be _actively_ made secure and be kept updated with security fixes. It doesn't say anything about the quality of Linux and distributions, but about the administration - and not even that, because for any organization it might be a lot cheaper to just live with an occasional problem like this rather than spending many expensive man months securing those systems. You really can't tell from reading such stories. No one's a hero here. Michael
I would suggest NOT to use any negative language against anyone, or even have such thoughts. My system: I don't read any news about what this person or that competitor is doing. I'm busy with doing my own stuff. Creating negativity is BAD, so I'd rather leave this without comment and continue working on MY job rather than looking at what bad luck others are having. Unfortunately still a lot of people think someone's gotta loose in order for someone else to win, I can't share this attitude.
I would definitely agree with the "negativity is bad" argument, but not with ignoring what is happening to other people (or distributions). We all know that learning from mistakes is one of the most effective ways to learn, but I'd rather learn from someone else's mistakes where possible!
The facts are simply that Linux is Linux. Every system needs to be _actively_ made secure and be kept updated with security fixes. It doesn't say anything about the quality of Linux and distributions, but
Correct. This worm thing could be a potential embarrassment to Linux. Just remember, if anyone asks about it, point out that it only affects servers which haven't been updated with patches which have been available for over 6 months. The day something like this exploits a Linux distro as it comes out of the box is the day we have a problem... The day something like this exploits a Linux distro using "features" provided by the vendor is the day we have a problem... The day something like this exploits a Linux distro and it takes several weeks for the fixes to be made available is the day we have a problem... ...and on that day Satan will be skating to work.
participants (3)
-
Derek Fountain -
Jonathan Drews -
Michael Hasenstein