Any network/security admins feeling extra tired this week?

Good. Maybe this'll reinvigorate the market for us sysadmins, and I'll get a job.

 

For once, I was glad that we run Win2k/IIS.

 

John - I spent 3 hours last week updating OpenSSH on the servers I'm responsible for. Forgot to compile it with PAM support the first time around (doh!) and had to re-do it all. Not fun.

 

I'm with ya Kolya. Maybe the market will rebound so I can finall get a job. 2 months now being unemployed and I'm going freakin' nuts.

 

One of my great fears is HUP'ing the new sshd on one of my remote systems and have it fail, locking me out (especially troubling in that many of the systems I administer are 7,500 miles away...). I've learned to temporarily open telnet (with OPIE) during these updates.

 

I'm glad I purposely run an old version of ssh (the ssh1 series, the way we use it, we're not vulnerable to the attack). Having to fix all of the apache installs sucked though. Our bind is okay too, because of the way we use it.

zlib a few months ago -really- sucked.

There've been a bunch of unix exploits recently. For awhile, we weren't getting any, and all of the NT guys were working OT. Ah well. Maybe we'll get some new platform agnostic denial of service attack in a few months. Always good to have something like that around when the students come back.

 

It's amazing; those PortMasters can be picked up for under $100 on ebay... Remember what they went for new?!?