Under what conditions have you seen Linux systems compromised?

Discussion in 'polls' started by Gullible Jones, Apr 22, 2013.

?

Most Linux compromises I have seen were due to...

  1. Obsolete kernel

    0 vote(s)
    0.0%
  2. Obsolete userland programs

    1 vote(s)
    5.9%
  3. Badly configured firewall

    0 vote(s)
    0.0%
  4. Lack of mandatory access control (e.g. SELinux)

    0 vote(s)
    0.0%
  5. Poor or misconfigured exploit mitigation (e.g. ASLR)

    0 vote(s)
    0.0%
  6. Unnecessary vulnerable services

    0 vote(s)
    0.0%
  7. Lack of caution by users or administrators

    6 vote(s)
    35.3%
  8. Zero-day vulnerabilities (i.e. nothing could have been done)

    0 vote(s)
    0.0%
  9. Other

    2 vote(s)
    11.8%
  10. N/A (I have not seen any Linux systems compromised)

    8 vote(s)
    47.1%
  1. If you have seen a Linux system (desktop, server, firewall, etc.) compromised, and are willing to post about your experience with it here, please do so.
     
  2. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    Servers with services compromised. I've seen it done a ton of times, though only servers.
     
  3. NGRhodes

    NGRhodes Registered Member

    Joined:
    Jun 23, 2003
    Posts:
    2,331
    Location:
    West Yorkshire, UK
    A mixture of poorly configured servers and obsolete public facing services. Yes LAMP servers, but not the ones I admin.

    Cheers, Nick
     
  4. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,697
    Mostly poor configuration and lazyass admins.
    Mrk
     
  5. chrisretusn

    chrisretusn Registered Member

    Joined:
    Jun 16, 2004
    Posts:
    1,322
    Location:
    Philippines
    Poor administration, lack of enforcement of existing rules, in-adept administrators.
     
  6. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    658
    Location:
    Italy
    Lack of caution by users or administrators
     
  7. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    The only time i have ever seen a linux distro is in my PC. :D
     
  8. safeguy

    safeguy Registered Member

    Joined:
    Jun 14, 2010
    Posts:
    1,709
    LOL. What about screenshots and videos on the web?
     
  9. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    Im not counting those. :D
    I mean seeing in person a Linux distro installed in someone else PC.
     
  10. x942

    x942 Guest

    Since I deal with pentesting all the time I have persoanly compromised Linux Systems. Normally due to user errors (same as windows and mac). You know the admin didn't disable Java in the browser or use apparmour/selinux to confine it. I would say on traditional systems (Laptops, servers and desktops) I have mainly seen PEBKACs not much else.

    Android (linux based) on the other hand I have used zero-days and other exploits (due to long wait between updates) like zergRush. Speaking of which this is why I am excited that SeLinux is finally on android.
     
  11. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,516
    Default passwords like admin, root, or blank.
     
  12. TheKid7

    TheKid7 Registered Member

    Joined:
    Jul 22, 2006
    Posts:
    3,469
    I really like the various editions of Puppy Linux, and I always use them as Live Distros.

    However, it has always disturbed me that Puppy Linux is ran a root, by default.
     
Loading...