Other vulnerability concerns, findings, events
- files on fraternity servers documenting policy violations
- breakins to servers used for education in financial markets analysis
- vulnerable Human Resources systems (central and departmental)
- laptop computers belonging to very-short-term MIT visitors
Parts of MIT that apparently have good computer security
- Campus Police Department
- Nuclear Reactor Radiation Protection Office
Scanning needs simplified by common configurations
- MIT's primary academic computing environment "Athena"
- mostly hundreds of Solaris machines with identical software
- often, we think they are all not vulnerable
- 10 December 1999: almost all were vulnerable to sadmind exploit
- May 2000: many were vulnerable to Kerberos login daemon exploits
Copyright 2000, Massachusetts Institute of Technology.
All rights reserved.
Solaris® is a registered trademark of Sun
Microsystems, Inc. in the United States and other countries.