[CentOS] Unknown rootkit causes compromised servers

Tue Jan 29 04:00:39 UTC 2008
Joseph L. Casale <jcasale at ActiveNetwerx.com>

>I have never understood this.
Exactly why you should be more proactive, if it matters in your environment.

>If I have a good, strong password that nobody
>knows
Do you know this?

CMIIW,
But an example from the windows world would be *if* someone sniffed the hash of an admin login, then took it home and ran it against the rainbow tables, your hosed. That's one weak example of why it's good practice, extrapolate this a million ways for a million angles on this scenario. It's easier to be proactive against what you don't know then reactive against what you just found out:)

Some environments don't need high security, some do and some depend so severely on it that they don't have any access to a public network in any form.

jlc