Date: Sat, 19 Jan 2002 18:12:38 +0100 (CET) From: Konrad Heuer <kheuer@gwdu60.gwdg.de> To: Joe & Fhe Barbish <barbish@a1poweruser.com> Cc: FBSD Questions <questions@FreeBSD.ORG> Subject: Re: telnet/ftp security Message-ID: <20020119180656.M55983-100000@gwdu60.gwdg.de> In-Reply-To: <LPBBIGIAAKKEOEJOLEGOIEBFCNAA.barbish@a1poweruser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 19 Jan 2002, Joe & Fhe Barbish wrote: > I have telnet & FTP ID/PW access to my FBSD gateway/ipfw > box from the internet. Are there any security holes in > these two applications that would allow breaking into my system? FreeBSD prior to 4.4-RELEASE has had a serious security flaw in telnetd (see ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:49.telnetd.= v1.1.asc). If you run 4.4-RELEASE or 4.4-STABLE, there is no known problem. Nevetheless, ssh/sshd seems to a better solution for you since no clear text passwords have to transmitted here. Best regards Konrad Heuer Personal Bookmarks: Gesellschaft f=FCr wissenschaftliche Datenverarbeitung mbH G=D6ttingen http://www.freebsd.org Am Fa=DFberg, D-37077 G=D6ttingen http://www.daemonnews.o= rg Deutschland (Germany) kheuer@gwdu60.gwdg.de To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020119180656.M55983-100000>