gpg: Signature made Wed Dec 12 17:09:20 2012 UTC
gpg: using DSA key 2099B64CBF15490B
gpg: Good signature from "Andy Smith <andy@strugglers.net>" [unknown]
gpg: aka "Andrew James Smith <andy@strugglers.net>" [unknown]
gpg: aka "Andy Smith (UKUUG) <andy.smith@ukuug.org>" [unknown]
gpg: aka "Andy Smith (BitFolk Ltd.) <andy@bitfolk.com>" [unknown]
gpg: aka "Andy Smith (Linux User Groups UK) <andy@lug.org.uk>" [unknown]
gpg: aka "Andy Smith (Cernio Technology Cooperative) <andy.smith@cernio.com>" [unknown]
Hi,
On Wed, Dec 12, 2012 at 04:53:23PM +0000, Dom Latter wrote:
> On 08/12/12 21:36, Jeremy Kitchen wrote:
> >Just seeing "this box got rooted and sent out tons of spam" isn't
> > all that useful, as we're all aware (or, should be, maybe I'm
> > arguing against myself here) that machines get exploited all the time
> > and do Bad Things, but seeing WHY, and maybe even some of the process
> > for tracing down the root cause would be handy.
>
> Yes, but the "this box got rooted" post might still be a useful
> reminder to Pay Attention, and might provoke useful discussion
> on how best to avoid these things.
Yeah that is sort of what I was thinking.
I feel like people need regular reminders, and there will be new
customers too, so a single historical posting or a wiki page that is
never looked at won't do it.
I was thinking that seeing that an actual customer got compromised
and that the threat is not hypothetical might provide a useful shock
to the system as it were..
I don't want to annoy people however.
> One other thing might be useful - knowing the "population size",
> if that is possible.
There are currently 422 active customer VPSes if that is what you
mean.
Cheers,
Andy
--
http://bitfolk.com/ -- No-nonsense VPS hosting
