Date: Fri, 29 Dec 2006 18:08:20 +0200 From: gareth <bsd@lordcow.org> To: stable@freebsd.org Subject: Re: system breach Message-ID: <20061229160820.GB1266@lordcow.org> In-Reply-To: <4594F704.60308@infracaninophile.co.uk> References: <20061228231226.GA16587@lordcow.org> <4594F704.60308@infracaninophile.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri 2006-12-29 (11:07), Matthew Seaman wrote: > > Oct 23 00:31:42 lordcow kernel: pid 48464 (conftest), uid 0: exited on signal 12 (core dumped) > > Oct 23 01:19:26 lordcow kernel: pid 17512 (conftest), uid 0: exited on signal 12 (core dumped) > > These are from autoconf testing various capabilities of the system to do > with signal handling -- nothing to be worried about. ok, ta. > Are you running a web server as root on this machine? This illustrates nope, as the www user. > why that is such a bad idea... If you aren't running a web server, > but only using PHP as a command line tool, then have you been doing any > work with such things as IDEs or other large toolsets? They often > have the capability to download and install extra bits at a mouseclick. no haven't used it from the command line, only webserver > The best defense against all of this sort of stuff is to be fully > patched and up to date with all your installed software. PHP is a i use portupgrade at least once a week
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061229160820.GB1266>