[geeks] summary of my hack..
James Sharp
geeks at sunhelp.org
Thu Aug 16 16:53:06 CDT 2001
On Thu, 16 Aug 2001, Mike Nicewonger wrote:
> On Thu, 16 Aug 2001, you wrote:
> > http://www.psychoses.org/hack.html
> >
> Any idea how this punk got in?
>
Apparently through a buffer overflow in telnetd, eventhough its the
telnetd from MIT Kerberos 1.2.2. I had forgotten to patch that one
machine.
For those of you who don't know, there's a major root remote exploit in
almost every BSD based telnetd.
http://www.cert.org/advisories/CA-2001-21.html
More information about the geeks
mailing list