From owner-freebsd-questions  Thu Jul 26  4: 1:23 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from obsecurity.dyndns.org (adsl-64-169-104-149.dsl.lsan03.pacbell.net [64.169.104.149])
	by hub.freebsd.org (Postfix) with ESMTP id 4D54137B405
	for <questions@FreeBSD.ORG>; Thu, 26 Jul 2001 04:01:20 -0700 (PDT)
	(envelope-from kris@obsecurity.org)
Received: by obsecurity.dyndns.org (Postfix, from userid 1000)
	id DBE0867226; Thu, 26 Jul 2001 04:01:15 -0700 (PDT)
Date: Thu, 26 Jul 2001 04:01:15 -0700
From: Kris Kennaway <kris@obsecurity.org>
To: Ted Mittelstaedt <tedm@toybox.placo.com>
Cc: Kris Kennaway <kris@obsecurity.org>,
	Shawn Ramsey <shawn@megadeth.org>, questions@FreeBSD.ORG
Subject: Re: telnetd problem?
Message-ID: <20010726040113.A41239@xor.obsecurity.org>
References: <20010726004017.A42068@xor.obsecurity.org> <00b401c115b4$b78dbaa0$1401a8c0@tedm.placo.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="WIyZ46R2i8wDzkSu"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <00b401c115b4$b78dbaa0$1401a8c0@tedm.placo.com>; from tedm@toybox.placo.com on Thu, Jul 26, 2001 at 02:24:06AM -0700
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG


--WIyZ46R2i8wDzkSu
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

On Thu, Jul 26, 2001 at 02:24:06AM -0700, Ted Mittelstaedt wrote:
> That's a bandaid.  He stated that the problem wasn't happening until
> he updated to the new code, so obviously a patch they put into the
> telnetd broke something.

No, Ted, that's not obvious.  Exploitation of this problem has become
much more widespread since the public distribution of the exploit code
yesterday.  The poster hasn't shown that there's a problem
inconsistent with lots of people throwing data at his telnetd trying
to exploit it.

Kris

--WIyZ46R2i8wDzkSu
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE7X/h4Wry0BWjoQKURAkaiAKDFB73BO9U4yV22W0vnBWW5bTZrpwCgkL2O
PcRtyhHOaRt5IPoa8+vWy3s=
=kduP
-----END PGP SIGNATURE-----

--WIyZ46R2i8wDzkSu--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message