[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Cobalt Raq II - Unprotected Admin Pages

Subject: Re: [cobalt-security] Cobalt Raq II - Unprotected Admin Pages
From: "Carrie Bartkowiak" <ravencarrie@xxxxxxxx>
Date: Sun, 25 Mar 2001 22:09:49 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> Current system load: /cgi-bin/.cobalt/cpuUsage/loadavg.cgi
> Legato Backup Server: /cgi-bin/.cobalt/networker/networker.cgi
> Telnet Usage: /cgi-bin/.cobalt/telnetUsage/telnetUsage.cgi
>
> The fun one here is the Legato Backup Server, you can go download
the
> evaluation version of Legato for Linux, change the server to your IP
address,
> and have the system backup its data to your machine ;)

ACK. I don't have telnet running; when trying that one I get a file
not found error. File not found error also with the load average
script (no clue why).
But Legato gives me a page... and I don't have Legato running!!! (I
wonder if messing with this would then still work, since Legato is
turned off?)

I just joined up and didn't catch the beginning of this thread - did
he share the fix for this (I'll gladly go look in the archives) or is
this still an open hole at present?

CarrieB

References:
- [cobalt-security] [PEN-TEST] Cobalt Raq II - Unprotected Admin Pages (fwd)
  - From: Gossi The Dog

Prev by Date: Re: [cobalt-security] are these worm files?
Next by Date: [cobalt-security] Bindworm (LION)
Previous by thread: [cobalt-security] [PEN-TEST] Cobalt Raq II - Unprotected Admin Pages (fwd)
Next by thread: [cobalt-security] Re: checking for haqs

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index