Date: Mon, 31 Mar 1997 02:00:31 -0800 (PST) From: Doug White <dwhite@gdi.uoregon.edu> To: maruishi@best.com Cc: freebsd-questions@freebsd.org Subject: Re: ppp hack ? Message-ID: <Pine.BSI.3.94.970331015936.397c-100000@localhost> In-Reply-To: <199703310100.RAA09893@shell4.ba.best.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 30 Mar 1997 maruishi@best.com wrote: > I am running FreeBSD version 2.1.5 > > A friend of mine said that there is some type of exploit > having to do with ppp which allows the "cracker" to gain root. > > Does anyone know about this? There is a way to exploit a buffer overrun with ppp. Remove setuid/setgid and run as root or upgrade. > Should I upgrade my current version of FreeBSD and/or apply > any patches? If you're on 2.1.5 and can afford some downtime, now would be a good time to upgrade. Doug White | University of Oregon Internet: dwhite@resnet.uoregon.edu | Residence Networking Assistant http://gladstone.uoregon.edu/~dwhite | Computer Science Major
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSI.3.94.970331015936.397c-100000>