1996-09-02 - Re: Moscowchannel.com hack

Header Data

From: Adamsc@io-online.com (Adamsc)
To: “Igor Chudov” <wb8foz@nrk.com>
Message Hash: 37fac559644060bdea7e20650b2f3a7a4476e0e5ac85be61e25407a373da6ed8
Message ID: <19960902052808718.AAA203@IO-ONLINE.COM>
Reply To: N/A
UTC Datetime: 1996-09-02 08:18:42 UTC
Raw Date: Mon, 2 Sep 1996 16:18:42 +0800

Raw message

From: Adamsc@io-online.com (Adamsc)
Date: Mon, 2 Sep 1996 16:18:42 +0800
To: "Igor Chudov" <wb8foz@nrk.com>
Subject: Re: Moscowchannel.com hack
Message-ID: <19960902052808718.AAA203@IO-ONLINE.COM>
MIME-Version: 1.0
Content-Type: text/plain


On Sun, 1 Sep 1996 12:22:40 -0500 (CDT), Igor Chudov @ home wrote:

>> > > Write your web site to a CD-ROM and hard-code the base directory into the
>> > > webserver.
>> > 
>> > A hacker who has root can forcibly unmount the cdrom and mount another
>> > directory on that node. Not a good solution.
>> 
>> Real hard disks such as RL02's & RK07's have WRITE DISABLE
>> switches....
>> 
>
>You can't mount the whole Unix read-only, so there will always be a place
>to put the hacked web page, and then mount that place over DocumentRoot.
If you had enough RAM in the machine, you could disable swapping, send all log
files to /dev/nul (or /dev/lp0), run *only* a web server or anything else that
can avoid writing to disk (probably no CGI, etc).  It wouldn't be too
interesting, but then you probably don't want much happening on your web server
anyway. You could even wire that write-disable switch or jumper into a
keyswitch on the main console.

- "'Anonymity is bad,' says a source who wishes to remain anonymous." - Nuff' said.
* Home: Chris Adams <adamsc@io-online.com> | http://www.io-online.com/adamsc/adamsc.htp
* Autoresponder: send email w/subject of "send resume" or "send PGPKEY"
* Work: cadams@acucobol.com | V.M. (619)515-4894 | (619)689-6579
* Member in good standing of the GNU whirled hors d'oeuvre






Thread