From owner-freebsd-security  Wed Nov 14  8: 0:12 2001
Delivered-To: freebsd-security@freebsd.org
Received: from smtp.netnam.vn (smtp.netnam.vn [203.162.7.93])
	by hub.freebsd.org (Postfix) with ESMTP id 8F53C37B405
	for <freebsd-security@FreeBSD.ORG>; Wed, 14 Nov 2001 08:00:04 -0800 (PST)
Received: from mailserver ([10.9.4.34])
	by smtp.netnam.vn (8.10.2/8.10.2) with ESMTP id fAEG0Fm25112;
	Wed, 14 Nov 2001 23:00:16 +0700 (GMT)
Received: from 192.168.0.29 by mailserver ([192.168.0.2] running VPOP3) with ESMTP; Wed, 14 Nov 2001 22:17:54 +0700
Message-Id: <5.1.0.14.2.20011114215959.01e4bd90@MailServer>
X-Sender: stefan.probst@MailServer
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Wed, 14 Nov 2001 22:14:31 +0700
To: Chris Thomas <resopmok@gramsc1.dyndns.org>
From: Stefan Probst <stefan.probst@opticom.v-nam.net>
Subject: Re: AdoreWorm
Cc: freebsd-security@FreeBSD.ORG, Rob Hurle <rob@coombs.anu.edu.au>
In-Reply-To: <Pine.BSF.4.40.0111140950260.21241-100000@gramsc1.dyndns.or g>
References: <5.1.0.14.2.20011114183520.01e71d20@MailServer>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
X-Server: VPOP3 V1.4.6 - Registered
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hello Chris,

At 09:58 14.11.2001 -0500, you wrote:
-------------------------
>There is no reason I can think of to use
>it [telnetd] on any modern server, because ssh clients are widely and freely
>available for every platform.

I will give you some reasons:
1. Until a few weeks ago, Vietnam was behind a nation-wide firewall, which 
didn't let ssh pass. I had no choice than to do everything via telnetd.
2. Encryption is until today technically illegal here. Although people use 
it permanently for https and ... ssh in the future....

But, just to clarify: On all my machines, root has neither telnet, nor ftp 
access. And I am not on a cable modem (where the whole neighbourhood can 
sniff packets), but dial-up to the ISP, and from there comparable direct 
lines to the server in the US. "Only" provider staff should have access to 
the lines, i.e. be able to sniff.

And, as somebody else has suggested: Yes, I have Putty. I tried it once 
before and failed at the firewall. I used it today. And had problems to 
type the "pipe" | on my non-US keyboard....

It ain't that easy...

Cheers,
Stefan

PS: Has somebody already analyzed that "AdoreBSD"?


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message