[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] HACK on RAQ3i

Subject: RE: [cobalt-security] HACK on RAQ3i
From: "Mr. M" <mistrM@xxxxxxxxxxxx>
Date: Fri, 2 Mar 2001 23:38:55 -0800
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> The funny thing is that  this box has no Virtual sites and no ftp but
> Telnet enabled on it. I can't  see how they would have accessed the root
> shell. We continously change our paswwords on a rolling week basis and to
> be honest rarely telnet to the box anyway.

Have you portscanned the box to see what other services are running?

Telnet should NEVER be used.  It isn't secure.  Install and use SSH.
www.openssh.com


M

References:
- [cobalt-security] HACK on RAQ3i
  - From: kcelik

Prev by Date: [cobalt-security] HACK on RAQ3i
Next by Date: Re: [cobalt-security] IMAPd on Cobalts
Previous by thread: [cobalt-security] HACK on RAQ3i
Next by thread: RE: [cobalt-security] HACK on RAQ3i

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index