[mahmud]

If this is based on a popular distro, maybe; but if you wanted to loosen up a Linux box, you can build a freak from pieces that no one would find lineage for, much less a repo.

[pavs]

umm no.

He specifically mentions that all the softwares are vulnerable:

"Its developers have spent hours stuffing it with broken, ill-configured, outdated, and exploitable software that makes it vulnerable to attacks."

Just replace them with the latest, patched, default configured version.

[btilly]

What pieces of software do you replace? How do you replace it? Remember that it likely doesn't some with anything like apt to make this easy.

[kaens]

You wipe the disk and install OpenBSD.

[mahmud]

Good idea, but completely beside the point.

[davidw]

Why sit around replacing packages by hand when you're not really learning anything? The best fix for a system like this is to nuke it from orbit and reinstall. I mean, odds are, you'll miss something, and then spent hours fooling around after getting hacked, when you could have just spent your time concentrating on what's important: saving relevant data and configuration, reinstalling, and securing the updated configuration.

[rick_2047]

This is a course in security and thats why the comment is completely beside the point.

[zachrose]

Or you could just get an iPad.

[milkshakes]

There are other ways to update software..

[mahmud]

Riiight, downloading individual packages, libraries and kernels and building them from source. Which is why I thought it would be a good exercise, however very boring.

Running a Bastille script on the box would give you a quick TODO list. Pushing it to "production" and getting a few servers up and running, across version incompatibilities, would prove a bit more interesting. Running it under an older 2.4.x or 2.2.x kernel, doubly so.