On 2 Jan 2002 jwbirdsa_at_picarefy.com wrote:
> Maybe I can dig up a web server for it. :)
That reminds me of a question. Say I want to set up a webserver on my
<on-topic machine>. If it runs NetBSD, then great, I can run recent
versions of all the necessary software with all of the latest security
fixes. However, if I want/have to run <on-topic software combination>,
there's a good chance that old vulnerabilities will be available on the
system. How much would I have to worry about this?
Here are some of my thoughts so far:
* Most exploitation activities may be directed at newer software, leaving
exploits of the <on-topic software combination> forgotten.
* Isolate the system from everything else, so if it was compromised, there
would be no need to care.
--
Jeffrey S. Sharp
jss_at_subatomix.com
Received on Fri Jan 04 2002 - 13:23:00 GMT