[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Port 25 email via telnet exploit
- Subject: Re: [cobalt-users] Port 25 email via telnet exploit
- From: Tim Dunn <tdunn@xxxxxxxxxxxxxxxxxxx>
- Date: Mon Jun 3 09:54:36 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
> > Why does port 25 allow email to be sent via telnet without validating user
> login, domain etc?
>
> How about turning telnet off!! There is plenty you can do in telnet without
> login in!! if you know how.
This could be a wyse on the serial port for all it matters - he's
telnetting onto the mail port (25). That's not service port for
telnet (23) logins.
tim
--
Mechanical Engineers build weapons. Civil Engineers build targets.