[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Am I missing something here
- Subject: RE: [cobalt-security] Am I missing something here
- From: "John Adair" <J.Adair@xxxxxxxxxxxxxxxx>
- Date: Wed, 13 Mar 2002 23:06:23 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
The SSHd the attacker uploaded most likely has a backdoor in it.
- - -
Opinions expressed do not necessarily represent the views of my employer.
This message and any attachment are confidential and may be privileged or
otherwise protected from disclosure. If you are not the intended recipient,
please telephone, fax or e-mail to the sender without delay. Return this
message or delete this message and any attachment from your system as per
our request. If you are not the intended recipient you must not copy this
message or attachments or disclose the contents to any other person.
> -----Original Message-----
> From: cobalt-security-admin@xxxxxxxxxxxxxxx
> [mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of
> Brett Wright
> Sent: Wednesday, March 13, 2002 10:41 PM
> To: cobalt-security@xxxxxxxxxxxxxxx
> Subject: Re: [cobalt-security] Am I missing something here
>
>
>
> At 18:10 13/03/02 +0000, you wrote:
> >Over the last 2 weeks we have had 6 Cobalts on our network HACKED!!!
> >One was even hacked then taken down to be reloaded on a saturday
> >afternoon and by the saturday night had been done again.
> > ...
> > ...
> Maybe a packet sniffer on a local network, seems weird that
> the "HACKER"
> makes the box more expolitable by change the version of ssh
> on a box he has
> already hacked.
>
> thats what id be looking for
>
> Maybe im wrong
>
> Regards
> Brett
>
>
> >--
> >Regards
> >
> >Steve Mansfield
> >Technical Manager
> >slm@xxxxxxxxxxxxx
> >www.getreal.co.uk
> >
> >Real Data Services Ltd 117-119 Marlborough Road Romford Essex RM7 8AP
> >[Office] +44 [0] 1708 704433 [Fax] +44 [0] 1708 748859
> [Mobile] +44 [0]
> >7973 864677
> >
> >www.be-an-isp.com www.isdn4free.co.uk
http://signup.getreal.co.uk
>
>***************************************************************************
*************
>
> The information contained in this E-mail is confidential and solely for
> the intended
> addressee(s). Unauthorised reproduction, disclosure, modification,
> and/or distribution
> of this email may be unlawful. If you have received this email in error,
> please notify
> the sender immediately and delete it from your system.
>
> Real Data Services does not accept legal responsibility for the contents
> of this message
> if it has reached you via the Internet, as Internet communications are
> not secure.
> Any opinions expressed are those of the author and are not necessarily
> endorsed by the
> Real Data Services.
>
> Recipients are advised to apply their own virus checks to this message
> on delivery.
>
>***************************************************************************
*************
>
>_______________________________________________
>cobalt-security mailing list
>cobalt-security@xxxxxxxxxxxxxxx
>http://list.cobalt.com/mailman/listinfo/cobalt-security
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security