[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Hackers. What's the problem?
- Subject: Re: [cobalt-users] Hackers. What's the problem?
- From: Anthony <austservices@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu Feb 22 17:36:02 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
On Wed, 21 Feb 2001, Dan Mahoney, System Admin wrote:
> I've seen a LOT of info on this list concerning cobalt hacks. My BIG
> question that despite reading all of the emails I still can't get is:
>
> Where is the insecurity?
I have had several RaQ3's hacked some with all services and others
without.
In both cases both bind and ProFTP were the access points. They are both a
cause of hacks.
You get different hacks depending what is running ie Telnet or not, Ftp or
not etc. They are both a common Problem.
Tired Techsupport
>
> No, I'm not trying to imply there isn't one. I've had EIGHT cobalts
> compromised to date, and I'd love to know which daemon is the cause of the
> trouble. Is it ftpd? bind? (which runs as root, and not in a
> sandbox?). I've seen mention of these two on the mailing list, but can
> anyone for sure tell me what the real problem is? So I have something to
> tell all the people who aren't on the list who are asking me?
>
> Much appreciated.
>
> -Dan Mahoney
>
> --
>
> "One...plus two...plus one...plus one."
>
> -Tim Curry, Clue
>
> --------Dan Mahoney--------
> Techie, Sysadmin, WebGeek
> Gushi on efnet/undernet IRC
> ICQ: 13735144 AIM: LarpGM
> Web: http://prime.gushi.org
> finger danm@xxxxxxxxxxxxxxx
> for pgp public key and tel#
> ---------------------------
>
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>