From owner-freebsd-security Fri Aug 17 14:37:59 2001 Delivered-To: freebsd-security@freebsd.org Received: from femail32.sdc1.sfba.home.com (femail32.sdc1.sfba.home.com [24.254.60.22]) by hub.freebsd.org (Postfix) with ESMTP id 1EF4E37B409; Fri, 17 Aug 2001 14:37:52 -0700 (PDT) (envelope-from bmah@employees.org) Received: from intruder.bmah.org ([24.176.204.87]) by femail32.sdc1.sfba.home.com (InterMail vM.4.01.03.20 201-229-121-120-20010223) with ESMTP id <20010817213726.JDPL1756.femail32.sdc1.sfba.home.com@intruder.bmah.org>; Fri, 17 Aug 2001 14:37:26 -0700 Received: (from bmah@localhost) by intruder.bmah.org (8.11.5/8.11.3) id f7HLbPT12574; Fri, 17 Aug 2001 14:37:25 -0700 (PDT) (envelope-from bmah) Message-Id: <200108172137.f7HLbPT12574@intruder.bmah.org> X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 To: "Jonathan M. Slivko" Cc: "Nate Williams" , "Matt Piechota" , "Carroll, D. (Danny)" , freebsd-security@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG Subject: Re: Silly crackers... NT is for kids... In-Reply-To: <007901c12762$d3ac7ea0$8701a8c0@equinox> References: <98829DC07ECECD47893074C4D525EFC311561F@citsnl007.europe.intranet><20010817165323.F4969-100000@cithaeron.argolis.org> <15229.34962.653064.226276@nomad.yogotech.com> <007901c12762$d3ac7ea0$8701a8c0@equinox> Comments: In-reply-to "Jonathan M. Slivko" message dated "Fri, 17 Aug 2001 17:23:13 -0400." From: "Bruce A. Mah" Reply-To: bmah@FreeBSD.ORG X-Face: g~c`.{#4q0"(V*b#g[i~rXgm*w;:nMfz%_RZLma)UgGN&=j`5vXoU^@n5v4:OO)c["!w)nD/!!~e4Sj7LiT'6*wZ83454H""lb{CC%T37O!!'S$S&D}sem7I[A 2V%N&+ X-Image-Url: http://www.employees.org/~bmah/Images/bmah-cisco-small.gif X-Url: http://www.employees.org/~bmah/ Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_1009623041P"; micalg=pgp-sha1; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Fri, 17 Aug 2001 14:37:25 -0700 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --==_Exmh_1009623041P Content-Type: text/plain; charset=us-ascii If memory serves me right, "Jonathan M. Slivko" wrote: > Which just brings me to another point, why not just turn ssh on by default > and turn telnetd off by default, given the latest exploit. Thanks for > bringing up a point that I wanted to bring to the security team for awhile. From the release notes for -CURRENT and 4-STABLE: All services in inetd.conf are now disabled by default for new installations. sysinstall(8) gives the option of enabling or disabling inetd(8) on new installations, as well as editing inetd.conf. Bruce. --==_Exmh_1009623041P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: Exmh version 2.3.1+ 05/14/2001 iD8DBQE7fY6V2MoxcVugUsMRAjWFAKD3ma6yZ79564ihsDgvJZcVBth3RgCeIbZo XsPMaAgvD+VzSd/dTPa6lI4= =ozkt -----END PGP SIGNATURE----- --==_Exmh_1009623041P-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message