Author Topic: Solarwinds  (Read 680 times)

rcjordan

  • I'm consulting the authorities on the subject
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 10809
  • Debbie says...
    • View Profile
Solarwinds
« on: December 21, 2020, 06:15:04 PM »
What a cluster...  ...mess.

ergophobe

  • Inner Core
  • Hero Member
  • *
  • Posts: 6251
    • View Profile
Re: Solarwinds
« Reply #1 on: December 21, 2020, 09:08:05 PM »
It gives enough access for the hacker to gain access elsewhere and then install other backdoors in more obscure places... so how do you recover from it? It's not enough to just patch.

For Drupageddon, the "easy" solution if you had a recent backup was to burn down the server and reinstall everything from source or backups from before the earliest known use of the exploit. I can't imagine how you pull that off on a very complex system.