From owner-freebsd-security Thu Nov 30 10:21:21 2000 Delivered-To: freebsd-security@freebsd.org Received: from firefly.prairienet.org (firefly.prairienet.org [192.17.3.3]) by hub.freebsd.org (Postfix) with ESMTP id ABCD137B400; Thu, 30 Nov 2000 10:21:18 -0800 (PST) Received: from sherman.spotnet.org (slip-71.prairienet.org [192.17.3.91]) by firefly.prairienet.org (8.9.3/8.9.3) with ESMTP id MAA21384; Thu, 30 Nov 2000 12:21:13 -0600 (CST) Date: Thu, 30 Nov 2000 12:21:07 -0600 (CST) From: David Talkington X-Sender: dtalk@sherman.spotnet.org To: mwlucas@exceptionet.com Cc: The Hermit Hacker , kris@FreeBSD.ORG, sriva@gufi.org, security@FreeBSD.ORG Subject: Re: FreeBSD hacked? In-Reply-To: <200011301732.MAA08853@easeway.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- >PS: For those who are new to intrusion response: > >If Kris says "Oh, they hacked us via the honketyblatt CGI script," and he >turns out to be wrong, he gets bitched out. > >If Kris says "Oh, they hacked us via the honketyblatt CGI script," and he >is correct but can't back it up, he gets bitched out. > >If Kris says "Let me check things, and I'll tell you later," he gets >bitched out. > >Kris has lots of other possible actions. They all end with, "he gets >bitched out." He's basically doomed. Sorry, Kris. Brilliant synopsis. I believe I'll change the names and post this on the wall of my office! -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 Comment: Made with pgp4pine 1.75-6 iQEVAwUBOiaal71ZYOtSwT+tAQG7AAf9F3dQG9l2TMKvohkmrfTkUJ7Gec2cfIdL jyeeVhtNiJP/lllpvoF2DWHAE8obRotF8iN00MObgi1wn4rU0SwB/BjDsqCYlzT+ 7L8PK3a+2rfX0Oq7qojctWO7Q7deE2NlTLODzALwJfP7KQLbdSyxZFtiIjDLJpNJ OEfkuSHUqoNyMOMm3szkqpoUdOk2Ri7gNmo+DVbQcJYCiZOpcwG2CUIsofu0Ni6l mYzjWQ0RSyvuQXzTL/FeViPAMSrL/Bgla/EhItsqLETZsfeOySWvT1mN4Gn0AGWa kxYKwKyRn2KnZ4XixjEPPYK3kpvuaM5yGxEOEp2esNAgFPA3jrm1Hg== =w3U/ -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message