Re: [Full-Disclosure] Patched Solaris Boxes being Hacked??

From: Larry W. Cashdollar (lwc_at_vapid.ath.cx)
Date: 01/05/04

Next message: daniel uriah clemens: "Re: [Full-Disclosure] Patched Solaris Boxes being Hacked??"

Previous message: Thomas Biege: "[Full-Disclosure] SUSE Security Announcement: Linux Kernel (SuSE-SA:2004:001)"
In reply to: Compton, Rich: "[Full-Disclosure] Patched Solaris Boxes being Hacked??"
Next in thread: daniel uriah clemens: "Re: [Full-Disclosure] Patched Solaris Boxes being Hacked??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <full-disclosure@lists.netsys.com>
Date: Mon, 5 Jan 2004 15:05:11 -0500 (EST)

On Mon, 5 Jan 2004, Compton, Rich wrote:

> appears to be a multi-vector attack, using finger, rpcbind, and ftp. In one

It's probably a bad idea to even be running these services in the first
place. It maybe old school hacks that are getting these boxes
compromised, like finger 0@solaris_host and guessing passwords.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: daniel uriah clemens: "Re: [Full-Disclosure] Patched Solaris Boxes being Hacked??"

Previous message: Thomas Biege: "[Full-Disclosure] SUSE Security Announcement: Linux Kernel (SuSE-SA:2004:001)"
In reply to: Compton, Rich: "[Full-Disclosure] Patched Solaris Boxes being Hacked??"
Next in thread: daniel uriah clemens: "Re: [Full-Disclosure] Patched Solaris Boxes being Hacked??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]