From owner-freebsd-security Mon Apr 9 8:51:34 2001 Delivered-To: freebsd-security@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 9C5BF37B422 for ; Mon, 9 Apr 2001 08:51:30 -0700 (PDT) (envelope-from jwyatt@rwsystems.net) Received: from bsdie.rwsystems.net([209.197.223.2]) (2995 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Mon, 9 Apr 2001 10:50:49 -0500 (CDT) (Smail-3.2.0.111 2000-Feb-17 #1 built 2000-Jun-25) Date: Mon, 9 Apr 2001 10:50:49 -0500 (CDT) From: James Wyatt To: freebsd-security@freebsd.org Subject: Re: local exploit In-Reply-To: <01040908025501.11342@descrypt.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At least david's response will pretty well ensure you receive some help. While the "current" branch of FreeBSD is 4.x, there are usually security fixes available for older releases. Check http://www.freebsd.org/security/ for advisories and you will find enough to encourage you to either upgrade to 4.2 now, upgrade to 4.3 when it arrives soon. If you have disk space and want to stay at 3.x for a while, look at "cvsup" and "make world" support - it lets you apply security patches to the older OS versions. There is a fair amount of constant overhead rather than complete upgrades. It can be *great* if you build many ports as it lets you keep up with their security patches as well. You can live without "chpass" for a while, but there are other very serious advisories from 3.4 that warrant upgrade if your machine is exposed to the internet or you have more than a few, trusted users. There are some great links to helpful information on the left side of http://www.freebsd.org that should explain things better. I hope this helps somehow. Good luck - Jy@ On Mon, 9 Apr 2001, David wrote: > Please learn to speak english better, or have someone help you write emails. > Your hacked up english barely makes sense, and one can only guess what you > mean. Also 3.4 is not supported anymore (unless I missed something), so > unless you wish to upgrade to a version which is, you're on your own. > > > On Monday 09 April 2001 04:34, you wrote: > > hai guys.,. > > > > i wanna ask about Security of FreeBSD 3.4 and 4.x > > > > on FreeBSD-3.4 there are local exploit that hack chpass > > > > i am ever hacked by my user with local-exploit tha can setiud root.,. > > > > then i try to chmod o-x chpass > > > > IT WORK !!! > > others cannot exploit on my machines again > > > > but i never find local exploit for FreeBSD-4.1 version > > > > are there big different that 4.1 more secure for exploit ?? > > thank's > > > > >>>>>>>>>>>>>>>>>*****<<<<<<<<<<<<<<<<< > > > > riki@unila.ac.id > > visit my homepage and sign my guestbook > > http://unilanet.unila.ac.id/~qq > > --------------------------------------- > > --------------------------------------- > > & > > __& &__ > > // \\ > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-security" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message