Your Distro is Insecure: Ubuntu
Apr 14, 2009, 19:34 (2 Talkback[s])
(Other stories by Ronald McCarty)
WEBINAR: On-demand Event
Replace Oracle with the NoSQL Engagement Database: Why and how leading companies are making the switch REGISTER >
"Security During Installation
"Let's begin with a fresh install of Ubuntu Sever 8.10.
"One of the immediate security concerns that come to mind during
the installation of Ubuntu, is making the user's home directory
world readable: "The contents of your home directory will normally
be visible to all users on the system" as shown in Figure 1, "Set
up users and passwords".
"Permissions open by default? In a rather odd twist, since the
directory is wide open, the installer attempt to plug the hole by
providing the option to encrypt a private directory!
"A closer look at the permissions validates the files are world
- Worm targets Linux routers(Mar 26, 2009)
- Insecure Candidates: Chrome Wins Hacking Contest(Mar 23, 2009)
- Security researcher Kaminsky pushes DNS patching(Feb 23, 2009)
- Editor's Note: Linux and FOSS are Good, and Windows is Sucky, and the World is Mad(Feb 14, 2009)
- How To Argue That Open Source Software Is Secure?(Feb 12, 2009)
- It's time to start issuing PC licenses(Jan 16, 2009)
- Are VM Environments Open to Attack?(Jul 22, 2008)
- Is Open Source Development Insecure?(Jul 22, 2008)