From owner-freebsd-security  Thu Aug 27 13:38:53 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id NAA24512
          for freebsd-security-outgoing; Thu, 27 Aug 1998 13:38:53 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from ifi.uio.no (ifi.uio.no [129.240.64.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA24499
          for <security@FreeBSD.ORG>; Thu, 27 Aug 1998 13:38:38 -0700 (PDT)
          (envelope-from dag-erli@ifi.uio.no)
Received: from hrotti.ifi.uio.no (2602@hrotti.ifi.uio.no [129.240.64.15])
	by ifi.uio.no (8.8.8/8.8.7/ifi0.2) with ESMTP id WAA04257;
	Thu, 27 Aug 1998 22:37:40 +0200 (MET DST)
Received: (from dag-erli@localhost) by hrotti.ifi.uio.no ; Thu, 27 Aug 1998 22:37:39 +0200 (MET DST)
Mime-Version: 1.0
To: "Jordan K. Hubbard" <jkh@time.cdrom.com>
Cc: Andrej.Brodnik@IBC.IskraSistemi.Si (Andrej Brodnik (Andy)),
        security@FreeBSD.ORG
Subject: Re: post breakin log
References: <7706.904208088@time.cdrom.com>
Organization: University of Oslo, Department of Informatics
X-url: http://www.stud.ifi.uio.no/~dag-erli/
X-other-addresses: 'finger dag-erli@ifi.uio.no' for a list
X-disclaimer-1: The views expressed in this article are mine alone, and do
X-disclaimer-2: not necessarily coincide with those of any organisation or
X-disclaimer-3: company with which I am or have been affiliated.
X-Stop-Spam: http://www.cauce.org/
From: dag-erli@ifi.uio.no (Dag-Erling Coidan =?iso-8859-1?Q?Sm=F8rgrav?= )
Date: 27 Aug 1998 22:37:39 +0200
In-Reply-To: "Jordan K. Hubbard"'s message of "Thu, 27 Aug 1998 01:54:48 -0700"
Message-ID: <xzpyasa40vg.fsf@hrotti.ifi.uio.no>
Lines: 19
X-Mailer: Gnus v5.5/Emacs 19.34
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id NAA24500
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

"Jordan K. Hubbard" <jkh@time.cdrom.com> writes:
> > > Watch bugtrax, www.rootshell.org, CERT, etc.  Actively admin your
> > > system on a daily basis.
> > Is there a site one can read more on this?
> Not to my knowledge.  Alta Vista or your search engine of choice is
> highly recommended. :)

<URL:http://www.cert.org/>		(alpha and omega)
<URL:http://www.rootshell.org/>		(every root kit in existence...)
<URL:http://www.geek-girl.com/>		(searchable BUGTRAQ archive)
<URL:http://www.underground.org/>	(BUGTRAQ home pages)

The latter is down at the moment (and has been for a while), but as I
understand things Aleph1 intends to bring it back up some time. It
used to have listings of root exploits by OS version and by app.

DES
-- 
Dag-Erling Smørgrav - dag-erli@ifi.uio.no

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message