Re: [Full-disclosure] Solaris telnet vulnberability - how many on your network?

The simplest possible fix on such short notice:


How about just uncommenting the following from /etc/default/login

# If CONSOLE is set, root can only login on that device.
# Comment this line out to allow remote login by root.

Not a fix to be sure, but at least prevents a remote login.

That is the default; and preventing root logins does not prevent
other logins.

"svcadm disable telnet" is the best fix (and there's really no
reason to enable it)


Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia -