Santy is scary
December 28th, 2004The latest vulnerability in phpBB put a lot of sysadmins on their toes. For me it’s a reminder that we always have to keep things locked down as tight as possible. It’s one of the first times working for the OSL I have been super paranoid about every weird log entry, and every file that I didn’t remember how it got there. Worms that attack UNIX systems just do not target us that often.
The irony in it is that we had a bug filed to install an instance of phpBB about 2 weeks before the worm and php vulnerabilities went public. It’s good we didn’t act very quickly for once…
