From owner-freebsd-questions Wed Oct 10 12:28:27 2001 Delivered-To: freebsd-questions@freebsd.org Received: from kanawha.cnpapers.net (kanawha.cnpapers.net [208.247.228.5]) by hub.freebsd.org (Postfix) with ESMTP id 7598D37B401 for ; Wed, 10 Oct 2001 12:28:23 -0700 (PDT) Received: from is-ua2.cnpapers.com (fw162.cnpapers.net [208.247.228.162]) by kanawha.cnpapers.net (8.9.3/8.8.7) with ESMTP id PAA13866; Wed, 10 Oct 2001 15:38:41 -0400 Message-Id: <5.1.0.14.2.20011010152619.041cddc8@mail.cnpapers.com> X-Sender: jholstein@mail.cnpapers.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 10 Oct 2001 15:28:51 -0400 To: "asssaf123 kachlon" , freebsd-questions@FreeBSD.ORG From: "John Holstein, IS" Subject: Re: In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG At 09:16 PM 10/10/2001 +0200, asssaf123 kachlon wrote: >hello > >i have box with freebsd in it: > ># uname -r >RELENG_4_2001_06_29_NOSRC > >i want to secure this box from telnetd remote exploit but with out to >close telnet > >what can i do ? > >the info in ur site is dont work > >please help me, > >assaf k > > The link: ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:49.telnetd.v1.1.asc has the information in it pertaining to the telnetd exploit. It is a PGP signed message. You may also use a text editor to open the file and read about the fix for the exploit. For the best results, IMHO migrate away from telnetd and try to use OpenSSHd whenever possible. Telnetd is simply too easy to exploit. Again, this is my opinion and not the opinion of others. John Holstein To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message