From owner-freebsd-security Mon Jul 28 23:02:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA13468 for security-outgoing; Mon, 28 Jul 1997 23:02:55 -0700 (PDT) Received: from mail.MCESTATE.COM (vince@mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA13463 for ; Mon, 28 Jul 1997 23:02:53 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id XAA08630; Mon, 28 Jul 1997 23:02:15 -0700 (PDT) Date: Mon, 28 Jul 1997 23:02:15 -0700 (PDT) From: Vincent Poy To: "Jordan K. Hubbard" cc: "Jonathan A. Zdziarski" , "[Mario1-]" , JbHunt , Robert Watson , Tomasz Dudziak , security@FreeBSD.ORG Subject: Re: security hole in FreeBSD In-Reply-To: <6894.870155971@time.cdrom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 28 Jul 1997, Jordan K. Hubbard wrote: =)> Just a update on how the break-in was done after the hacker was =)> confronted on irc. =)> =)> Apparently FreeBSD ships with .rhosts in the root account. Using =) =)No, FreeBSD does not ship with .rhosts in the root account. This must =)have been a local change. If you do not believe this then simply do a =)fresh installation of FreeBSD and see for yourself - sorry, you shot =)your own feet off here. :-) I just verified it and you're right. It doesn't but what about the adduser program? I have a tarball of my home directory and there is no .rhosts there either. I wonder how the .rhosts got there in the first place. Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____]