From owner-freebsd-newbies Thu Oct 11 13:54: 9 2001 Delivered-To: freebsd-newbies@freebsd.org Received: from odin.acuson.com (odin.acuson.com [157.226.230.71]) by hub.freebsd.org (Postfix) with ESMTP id F048E37B408 for ; Thu, 11 Oct 2001 13:54:06 -0700 (PDT) Received: from acuson.com ([157.226.46.72]) by odin.acuson.com (Netscape Messaging Server 3.54) with ESMTP id AAA2973; Thu, 11 Oct 2001 13:54:04 -0700 Message-ID: <3BC606EA.F9001C44@acuson.com> Date: Thu, 11 Oct 2001 13:54:02 -0700 From: David Johnson Organization: Acuson X-Mailer: Mozilla 4.7 [en] (X11; U; SunOS 5.5.1 sun4u) X-Accept-Language: en MIME-Version: 1.0 To: legg@iastate.edu Cc: freebsd-newbies@FreeBSD.ORG Subject: Re: 4.3-RELEASE Security Issues References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-newbies@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org legg@iastate.edu wrote: > I am not sure how this person got in, as my logs were deleted, but I am > guessing it was through the telnetd vulnerability. I had to reinstall. > Other than disabling this service, are there any other holes that a box on > the network may be vurnerable to? There's always holes. The problem with securing only the known holes is that you think you got them all, when the unknown holes are just as bad. If you do not need to access your machine remotely, then it's not that hard to lock down fairly solid. Just turn all services off, deny anything not local, and uninstall anything you don't use. Read the security section of the Handbook. If you do need to access your machine remotely, then you'll have a lot more work to do. There's a lot of security related information out there, so make good use of it. David To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-newbies" in the body of the message