From owner-freebsd-questions Sun Aug 12 10:34: 0 2001 Delivered-To: freebsd-questions@freebsd.org Received: from barry.mail.mindspring.net (barry.mail.mindspring.net [207.69.200.25]) by hub.freebsd.org (Postfix) with ESMTP id 1F8A737B40D; Sun, 12 Aug 2001 10:33:56 -0700 (PDT) (envelope-from meshko@polkan2.dyndns.org) Received: from user-2ivef3h.dsl.mindspring.com (user-2ivef3h.dsl.mindspring.com [165.247.60.113]) by barry.mail.mindspring.net (8.9.3/8.8.5) with ESMTP id NAA03477; Sun, 12 Aug 2001 13:33:53 -0400 (EDT) Date: Sun, 12 Aug 2001 13:38:56 -0400 (EDT) From: Mikhail Kruk X-X-Sender: To: Matthew Sundling Cc: , Subject: Re: security check output: questionable setuid diffs help? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG If you were running telnetd from original 4.3-RELEASE and have not done anything (like build world or some other way of upgrading) there 99% probability that you got hacked; most likely through the telnetd vulerability. Take the machien off line and reinstall from the clean media. As far as I know "undisclosed recepients" is fine. I don't know what are the reasons to have it this way. > I am new to the land of maintaining and securing my own unix-like > box, and so I have been presented with all the new problems > (interesting learning experiences?) that lie therein. > > FYI: my machine = FreeBSD 4.3-RELEASE #2: Fri Aug 3 19:32:28 > GMT 2001 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message