[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] SSH EXPLOIT IN THE WILD

Subject: Re: [cobalt-users] SSH EXPLOIT IN THE WILD
From: Frank Svoboda <cobalt@xxxxxxxx>
Date: Thu Sep 18 05:24:04 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Hi!

Or you could install the following script in /usr/local/etc/secnotes, make it
executable, (chmod 750 /usr/local/etc/secnotes) then change your hosts.allow
and/or hosts.deny lines to:

sshd: ALL : spawn /usr/local/etc/secnotes "%a+%A+%c+%d+%h+%H+%s+%u" &


Great script, works fine!

But just one small question: If I put this in my hosts.allow - itmeans that everyone can connect to my ssh. If I don't put this ineveryone is allowed, too - eh?!


Other way: I'm not unsecuring my server after adding this?!

Regards, Frank

Follow-Ups:
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Larry Smith

References:
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Paul Warner
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Dave's List Addy
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Mark S Burgunder
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Larry Smith

Prev by Date: Re: [cobalt-users] Please help with restoring Qube 1 2700WG
Next by Date: RE: [cobalt-users] /var/spool/mail/.forward: World writable directory - Raq3
Previous by thread: Re: [cobalt-users] SSH EXPLOIT IN THE WILD
Next by thread: Re: [cobalt-users] SSH EXPLOIT IN THE WILD

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index