Re: CERT advisory: "Interbase Server Contains Compiled-in Back D oor Account"

From: Berend de Boer (berend@pobox.com)
Date: 01/11/01 

Date: Thu, 11 Jan 2001 19:33:36 +0100
From: Berend de Boer <berend@pobox.com>
To: Mikhail Kruk <meshko@cs.brandeis.edu>, Ann Harrison <aharrison@ibphoenix.com>

Mikhail Kruk wrote:

>> The backdoor is not documented in the pkg-descr file for the port. If the
>> port is not fixed or forbidden, and it has the backdoor, the fact should
>> at least be documented there.
>
>
> I don't see how such a backdoor can be left in the package, even if there
> is a warning in pkg_descr.
> This is a potential remote exploit after all.

The InterBase package cannot be installed without explicitly downloading
it. The Makefile request you to the directory where you have to download
it yourself.

I think a message stating this, would be sufficient. I attempt to submit
a patch tonight.

In the mean time I attempt to contact Ann Harrison (with this message),
that I'm willing to help the security patch for InterBase 4 for FreeBSD.

Groetjes,

Berend. (-:

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Relevant Pages

  • Auditing
    ... exploiting telnetd hole. ... Are there any rootkit which it has a backdoor at UDP port 22? ... with "unsubscribe freebsd-security" in the body of the message ...
    (FreeBSD-Security)
  • Re: Rooted
    ... > If you want to be very careful, wiping the disk would be necessary. ... > backdoor could be anywhere, including in programs not part of the base ... with "unsubscribe freebsd-security" in the body of the message ...
    (FreeBSD-Security)
  • RE: CERT advisory: "Interbase Server Contains Compiled-in Back D oor Account"
    ... > The backdoor is not documented in the pkg-descr file for the port. ... with "unsubscribe freebsd-security" in the body of the message ...
    (FreeBSD-Security)
Quantcast