[geeks] summary of my hack..
David Cantrell
geeks at sunhelp.org
Thu Aug 16 17:19:18 CDT 2001
On Thu, Aug 16, 2001 at 05:53:06PM -0400, James Sharp wrote:
> On Thu, 16 Aug 2001, Mike Nicewonger wrote:
> > Any idea how this punk got in?
> Apparently through a buffer overflow in telnetd, eventhough its the
> telnetd from MIT Kerberos 1.2.2. I had forgotten to patch that one
> machine.
You are going to rebuild the box from scratch, aren't you? It is off
the network now?
> For those of you who don't know, there's a major root remote exploit in
> almost every BSD based telnetd.
Yet another reason for not running telnetd. I run ssh everywhere, telnet
nowhere. And for those rare occasions when the firewall won't let me
ssh out, well I just happen to have HTTP tunnelling set up* on my Linuxy
router.
* - never had to use it myself, but several of my users do. And if I
catch anyone circumventing one of *my* firewalls like that, then they
get LARTed most severely.
--
David Cantrell | david at cantrell.org.uk | http://www.cantrell.org.uk/david
Educating this luser would be something to frustrate even the
unflappable Yoda and make him jam a lightsaber up his arse
while screaming "praise evil, the Dark Side is your friend!".
-- Derek Balling, in the Monastery
More information about the geeks
mailing list