Date: Thu, 30 Nov 2000 11:01:54 -0600 (CST) From: David Talkington <dtalk@prairienet.org> Cc: freebsd-security@FreeBSD.ORG Subject: Re: FreeBSD hacked? Message-ID: <Pine.LNX.4.21.0011301058140.664-100000@sherman.spotnet.org> In-Reply-To: <20001128161324.A89746@citusc17.usc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- I seem to recall that these guys were the ones who hacked Slashdot some time back. Same M.O. -- nothing destructive, left a polite calling card, full disclosure of the penetration method. That one wasn't a software vulnerability either; just an embarrassing configuration problem (unmodified default password, I think!)... - -d - -- David Talkington Community Networking Initiative dtalk@prairienet.org 217-244-1962 PGP key: http://www.prairienet.org/~dtalk/dt000823.asc Kris Kennaway wrote: >On Tue, Nov 28, 2000 at 10:28:33PM +0100, Henk Wevers wrote: >> >> >> >> FreeBSD got a new Security Officer >> >> Nohican and {} would like to wish the new Security Officer (Kris) good luck >> on his new job. We are sure you will do a great job! >> >> Look at the bottom of http://freebsd.org.index.html > >Yes, I can confirm this happened last night. We were immediately >informed by those who did it including how it was achieved. The >penetration mechanism was not a vulnerability in FreeBSD and was >corrected immediately. While we don't believe that any malicious >activity took place while the machine was compromised, we've taken >steps to sanitize things anyway. > >Kris > >P.S. This kind of thing would have been better sent to >security-officer..for example, it's off-topic for -stable. > -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 Comment: Made with pgp4pine 1.75-6 iQEVAwUBOiaIB71ZYOtSwT+tAQEowwgAseWkXQs4HVacvrXLMvqNWMu62qrqLYLZ aMWUStaD6jcniu4b9d2XAgiA7bQ11VHZ8gjp/LdHDHoWrzYpTpFVsqUZF647/tcz tConkjeORGnHvgoLcUIryVMxBEn2eWlGlanhfZMak6+o1uWTUnJc+Mpst8r/y8FF bjHKXnmzXACgGl18qkOSq1DpwSY9FO0ON8ECy+XierKCBO3CnkOs4a3j+EXFVZ+U VFMkAVhnmfZe8dHRa8v7hUu3daDkU/KN4IKNpOxt8HtntF+cpU49peFBV5HZQRUy eQJ19tgHMub+2AyFCcGaGvb8sPHPT8vbWP5MZx7vW1TFbUxz/TsjGA== =Ia0L -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.21.0011301058140.664-100000>