From owner-freebsd-security Tue Dec 4 11:41:14 2001 Delivered-To: freebsd-security@freebsd.org Received: from smtp-server3.tampabay.rr.com (smtp-server3.tampabay.rr.com [65.32.1.41]) by hub.freebsd.org (Postfix) with ESMTP id DD76737B416 for ; Tue, 4 Dec 2001 11:41:10 -0800 (PST) Received: from mercenary (65.35.126.255.melbourne-ubr-b.cfl.rr.com [65.35.126.255]) by smtp-server3.tampabay.rr.com (8.11.2/8.11.2) with SMTP id fB4JfAS05691 for ; Tue, 4 Dec 2001 14:41:10 -0500 (EST) Message-ID: <002f01c17cf3$3f75b3a0$ff7e2341@mercenary> From: "David" To: References: <003901c17cdb$8eec7df0$04e3a8c0@beco.hu> Subject: Re: su to root without passwd (you are hacked) Date: Tue, 4 Dec 2001 13:41:12 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-2" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 Disposition-Notification-To: "David" X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org No, su without a password for root is not an AI feature where freebsd remembers your password. The difference between your 2 boxes seems to be clear, 1 of them (the one which does not ask for a password) has some backdoors/trojans on it from a novice script kiddie who has compromised your box. Your 2nd box could as well be compromised. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message