[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] SSH EXPLOIT IN THE WILD

Subject: Re: [cobalt-users] SSH EXPLOIT IN THE WILD
From: Frank Svoboda <cobalt@xxxxxxxx>
Date: Thu Sep 18 05:53:04 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Hi!

  Yes, it you put this "as is" (eg sshd: ALL: spawn ...) in your hosts.allow
you are ALLOWING all ssh connections. (no entry in either hosts.allow or
hosts.deny also means allow all)

O.K., but if I had no restrictions, I would not unsecure it more withthat, eh? :)

  Highly recommend changing the ALL to specific IP addresses/ranges in the
hosts.allow file, then use the ALL format in the hosts.deny to deny
everything else (in other words allow only those you know/trust, then deny
everything else).


"ranges" - how to set up a range?

I tried "sshd: 80.81.*.*[...]" and just "sshd: 80.81 [...]" but thatdoesn't work.


Of course I put "all" in the hosts.deny file...

Thanks, Frank

Follow-Ups:
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Parker Morse

References:
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Paul Warner
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Larry Smith
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Frank Svoboda
- Re: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: Larry Smith

Prev by Date: Re: [cobalt-users] SSH EXPLOIT IN THE WILD
Next by Date: RE: [cobalt-users] Pop-Before-Relay on XTR
Previous by thread: Re: [cobalt-users] SSH EXPLOIT IN THE WILD
Next by thread: Re: [cobalt-users] SSH EXPLOIT IN THE WILD

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index