From owner-freebsd-security Sun Jul 29 10:40:19 2001 Delivered-To: freebsd-security@freebsd.org Received: from turtle.looksharp.net (cc360882-d.strhg1.mi.home.com [24.13.43.207]) by hub.freebsd.org (Postfix) with ESMTP id 6DE6437B401 for ; Sun, 29 Jul 2001 10:40:14 -0700 (PDT) (envelope-from bsdx@looksharp.net) Received: by turtle.looksharp.net (Postfix, from userid 1002) id 02D0E3E23; Sun, 29 Jul 2001 13:40:26 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by turtle.looksharp.net (Postfix) with ESMTP id DD9A2BA7E; Sun, 29 Jul 2001 13:40:26 -0400 (EDT) Date: Sun, 29 Jul 2001 13:40:26 -0400 (EDT) From: Adam To: alexus Cc: Chris Byrnes , Subject: Re: [PATCH] Re: FreeBSD remote root exploit ? In-Reply-To: <005d01c1107a$b6f57a40$0d00a8c0@alexus> Message-ID: <20010729134005.U45945-100000@turtle.looksharp.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=X-UNKNOWN Content-Transfer-Encoding: QUOTED-PRINTABLE Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Looks to me like it was already compiled so it just installed it. Try make clean first On Thu, 19 Jul 2001, alexus wrote: >su-2.05# cd /usr/src/libexec/telnetd/ >su-2.05# make all install >install -c -s -o root -g wheel -m 555 telnetd /usr/libexec >install -c -o root -g wheel -m 444 telnetd.8.gz /usr/share/man/man8 >su-2.05# > >hmm that's it? seems like too short compilation .. is it supposed to be li= ke >this? > >----- Original Message ----- >From: "Chris Byrnes" >To: "alexus" >Cc: >Sent: Thursday, July 19, 2001 1:39 PM >Subject: Re: [PATCH] Re: FreeBSD remote root exploit ? > > >root# cd /usr/src/libexec/telnetd ; make all install ; killall -HUP inetd > > >Chris Byrnes, Managing Member >JEAH Communications, LLC > >On Thu, 19 Jul 2001, alexus wrote: > >> uh. ok:) >> >> this part is done.. should i recompile telnetd now somehow? if so then >> how?:) >> >> ----- Original Message ----- >> From: "Pierre-Luc Lesp=E9rance" >> To: >> Sent: Thursday, July 19, 2001 1:28 PM >> Subject: Re: [PATCH] Re: FreeBSD remote root exploit ? >> >> >> > alexus wrote: >> > > >> > > could you also include some sort of instruction how to apply it? >> > > >> > > thanks in advance >> > > >> > > ----- Original Message ----- >> > > From: "Ruslan Ermilov" >> > > To: "Przemyslaw Frasunek" >> > > Cc: >> > > Sent: Thursday, July 19, 2001 1:14 PM >> > > Subject: [PATCH] Re: FreeBSD remote root exploit ? >> > > >> > > > On Thu, Jul 19, 2001 at 11:03:53AM +0200, Przemyslaw Frasunek wrot= e: >> > > > > > Posted to bugtraq is a notice about telnetd being remotely roo= t >> > > > > > exploitable. Does anyone know if it is true ? >> > > > > >> > > > > Yes, telnetd is vulnerable. >> > > > > >> > > > The patch is available at: >> > > > >> > > > http://people.FreeBSD.org/~ru/telnetd.patch >> > > > >> > > > >> > > > Cheers, >> > > > -- >> > > > Ruslan Ermilov Oracle Developer/DBA, >> > > > ru@sunbay.com Sunbay Software AG, >> > > > ru@FreeBSD.org FreeBSD committer, >> > > > +380.652.512.251 Simferopol, Ukraine >> > > > >> > > > http://www.FreeBSD.org The Power To Serve >> > > > http://www.oracle.com Enabling The Information Age >> > > > >> > > > To Unsubscribe: send mail to majordomo@FreeBSD.org >> > > > with "unsubscribe freebsd-security" in the body of the message >> > > > >> > > >> > > To Unsubscribe: send mail to majordomo@FreeBSD.org >> > > with "unsubscribe freebsd-security" in the body of the message >> > go to /usr/src/crypto/telnet/telnetd >> > and type >> > shell~# patch -p < /where/is/the/file.patch >> > >> > To Unsubscribe: send mail to majordomo@FreeBSD.org >> > with "unsubscribe freebsd-security" in the body of the message >> > >> >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-security" in the body of the message >> > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message