Date: Sat, 29 Sep 2001 16:19:26 -0600 (MDT) From: FreeBSD <freebsd@XtremeDev.com> To: Jason <jason@jason-n3xt.org> Cc: <questions@freebsd.org> Subject: Re: I was rooted using telnet Message-ID: <20010929161826.H54382-100000@Amber.XtremeDev.com> In-Reply-To: <Pine.BSF.4.21.0109292110500.82213-100000@jason-n3xt.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Were you running a ver of FreeBSD prior to July 23, 2001? Versions prior to July 23 had a remotely rootable telnetd as per ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:49.telnetd.v1.1.asc On Sat, 29 Sep 2001, Jason wrote: > Hello: > > A couple of days ago I was rooted by someone using a telnet exploit. I > have been cvsup'ing my sources regularly and was using 4.4-RC at the > time. I've since moved to 4.4-STABLE. It looks like they used some kind > of script. I still have it if anyone wants it. Since then I have turned > off telnet in inetd and blocked the port with a firewall. > > Anyone have any ideas on how a person could do this? I looks like this > script just tries to move a lot of data for a long period of time. > > --- > Jason > jason@jason-n3xt.org > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010929161826.H54382-100000>