Date: Tue, 2 Jul 1996 22:17:01 -0700 (PDT) From: Tom Samplonius <tom@uniserve.com> To: "Pedro F. Giffuni S." <pgiffuni@biblioteca.campus.unal.edu.co> Cc: security@FreeBSD.org Subject: Re: Sendmail cracked! Message-ID: <Pine.BSF.3.91.960702221514.24934B-100000@haven.uniserve.com> In-Reply-To: <Pine.A32.3.91.960702212427.13507A-100000@biblioteca.campus.unal.edu.co>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 2 Jul 1996, Pedro F. Giffuni S. wrote: > Hello: > I am running kerberos and DES, but to my surprise my 2 FreeBSD's and my > AIX's received me with a funny message: /etc/motd was modified and wtmp > erased. > I knew I was under attack before because of some failed logins, on my fbsds, > and strange "cannot execute" messages un my AIXs root mail. By the message I > received, I know other computers in the campus are cracked also. > > My solution was securing sendmail by running it in the inetd.conf with > tcp_wrappers. It is a last moment solution...Is there a new sendmail, a > patch, or a configuration option? > > regards, > Pedro. > How do you know it was Sendmail? Tom
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.960702221514.24934B-100000>