LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 08-16-2003, 07:17 PM   #1
DazeiHead
Member
 
Registered: May 2003
Posts: 56

Rep: Reputation: 15
Other type of security issue


When someone wants a reinstall of there linux lets say redhat and security issues came out exploits bugs etc. So they got there system configured after the reinstall and connect to the net but he/she has to get those security issues patched up. Does this mean this person can get hacked before he gets to his security patches, and updates his system?
If so what can they do?
I also wanted to know what range of ports shall i use when i scan myself with nessus 1-1500 or is default better?
 
Old 08-16-2003, 09:04 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
>Does this mean this person can get hacked before he gets to his security patches, and updates his system?

Yes. If there are remote vulnerabilities in that version of linux, then your reinstall will be vulnerable until you patch them.

>If so what can they do?
If you're really worried about getting hacked, you can download the errata on a secure machine and then transfer it to the reinstalled machine on some type of media (floppy, ZIP, CD-RW). To be honest with you though, the likelihood of getting hacked in the 15-20 minutes it takes to install the patches isn't really that high, so if you're willing to chance it, you'll probably be alright. But if security is important, it might be something worth thinking about.
 
Old 08-17-2003, 01:05 PM   #3
DazeiHead
Member
 
Registered: May 2003
Posts: 56

Original Poster
Rep: Reputation: 15
thanks for clearing that out for me Capt.
 
Old 08-17-2003, 07:20 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,120
Blog Entries: 54

Rep: Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788Reputation: 2788
To make this more clear, this definately isn't a time issue, apart from host/vulnerable services discovery, but the *amount* of services you run while performing an update. If you turn off all network-facing services you don't need for updating (thats all services in listening state apart from your IDS) and set your firewall to a default policy of DENY and only allow initiating/established connections to your gw, DNS and the .redhat.com hosts chances are zero your box can be cracked that way.

As with all packages you install/upgrade, please inspect them and verify the GPG signature.

Last edited by unSpawn; 08-17-2003 at 07:22 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
webmin issue, poss security issue bejiita Slackware 3 11-03-2004 06:07 AM
Current status of True Type fonts issue ronaldv General 4 10-12-2004 04:35 AM
Security issue in Slackware 9.1 odin123 Slackware 6 11-03-2003 08:44 AM
Directory security issue malcie Linux - Newbie 4 07-18-2003 07:10 AM
Security issue.. marcoc Linux - Newbie 8 05-01-2002 06:14 AM


All times are GMT -5. The time now is 03:06 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration