From owner-freebsd-security Thu Nov 30 9: 2:10 2000 Delivered-To: freebsd-security@freebsd.org Received: from firefly.prairienet.org (firefly.prairienet.org [192.17.3.3]) by hub.freebsd.org (Postfix) with ESMTP id 290FD37B400 for ; Thu, 30 Nov 2000 09:02:06 -0800 (PST) Received: from sherman.spotnet.org (slip-71.prairienet.org [192.17.3.91]) by firefly.prairienet.org (8.9.3/8.9.3) with ESMTP id LAA12662 for ; Thu, 30 Nov 2000 11:02:01 -0600 (CST) Date: Thu, 30 Nov 2000 11:01:54 -0600 (CST) From: David Talkington X-Sender: dtalk@sherman.spotnet.org Cc: freebsd-security@FreeBSD.ORG Subject: Re: FreeBSD hacked? In-Reply-To: <20001128161324.A89746@citusc17.usc.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- I seem to recall that these guys were the ones who hacked Slashdot some time back. Same M.O. -- nothing destructive, left a polite calling card, full disclosure of the penetration method. That one wasn't a software vulnerability either; just an embarrassing configuration problem (unmodified default password, I think!)... - -d - -- David Talkington Community Networking Initiative dtalk@prairienet.org 217-244-1962 PGP key: http://www.prairienet.org/~dtalk/dt000823.asc Kris Kennaway wrote: >On Tue, Nov 28, 2000 at 10:28:33PM +0100, Henk Wevers wrote: >> >> >> >> FreeBSD got a new Security Officer >> >> Nohican and {} would like to wish the new Security Officer (Kris) good luck >> on his new job. We are sure you will do a great job! >> >> Look at the bottom of http://freebsd.org.index.html > >Yes, I can confirm this happened last night. We were immediately >informed by those who did it including how it was achieved. The >penetration mechanism was not a vulnerability in FreeBSD and was >corrected immediately. While we don't believe that any malicious >activity took place while the machine was compromised, we've taken >steps to sanitize things anyway. > >Kris > >P.S. This kind of thing would have been better sent to >security-officer..for example, it's off-topic for -stable. > -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 Comment: Made with pgp4pine 1.75-6 iQEVAwUBOiaIB71ZYOtSwT+tAQEowwgAseWkXQs4HVacvrXLMvqNWMu62qrqLYLZ aMWUStaD6jcniu4b9d2XAgiA7bQ11VHZ8gjp/LdHDHoWrzYpTpFVsqUZF647/tcz tConkjeORGnHvgoLcUIryVMxBEn2eWlGlanhfZMak6+o1uWTUnJc+Mpst8r/y8FF bjHKXnmzXACgGl18qkOSq1DpwSY9FO0ON8ECy+XierKCBO3CnkOs4a3j+EXFVZ+U VFMkAVhnmfZe8dHRa8v7hUu3daDkU/KN4IKNpOxt8HtntF+cpU49peFBV5HZQRUy eQJ19tgHMub+2AyFCcGaGvb8sPHPT8vbWP5MZx7vW1TFbUxz/TsjGA== =Ia0L -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message