[Gllug] Slapper worm

[Zverina, David]

> > > > not aware of any holes on 3306.
> > > MySQL.
> > 
> > I'm aware of what runs on it, not of any specific holes.
> 
> Default passwords, no doubt.

Actually there was at least one buffer overflow and one authentication bug
since I started using MySQL (May 2000). And although the flaws were fixed
promptly and long time ago, I am sure you will find quite few old versions
still out there.

Also there is no way to disable listening on a tcp port in the binary
version of MySQL even if you only use unix domain sockets. Which means
there's lot of webservers out there which have it open even though they
don't need to. And yes you can firewall the port but unfortunately MySQL is
so easy to install that even the unsavvy can do it. :)

Cheers,

Dave.

+------- insert annoying disclaimer below. ----
|
|
V

This e-mail and any attachments may be confidential or legally privileged.
If you received this message in error or are not the intended recipient, you
should destroy the e-mail message and any attachments or copies, and you are
prohibited from retaining, distributing, disclosing or using any information
contained herein.  Please inform us of the erroneous delivery by return
e-mail.  Thank you for your co-operation. 
Mercer Human Resource Consulting Limited is regulated by the Financial
Services Authority and is a member of the General Insurance Standards
Council. Registered in England No. 984275. Registered Office: Telford House,
14 Tothill Street, London SW1H 9NB 


-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug