From owner-freebsd-security Sun Sep 26 4:23: 6 1999 Delivered-To: freebsd-security@freebsd.org Received: from frmug.org (frmug-gw.frmug.org [193.56.58.252]) by hub.freebsd.org (Postfix) with ESMTP id 2DE9E14C3A for ; Sun, 26 Sep 1999 04:22:57 -0700 (PDT) (envelope-from roberto@keltia.freenix.fr) Received: (from uucp@localhost) by frmug.org (8.9.3/frmug-2.5/nospam) with UUCP id NAA20210 for freebsd-security@FreeBSD.ORG; Sun, 26 Sep 1999 13:22:57 +0200 (CEST) (envelope-from roberto@keltia.freenix.fr) Received: by keltia.freenix.fr (Postfix, from userid 101) id 0B1D28711; Sun, 26 Sep 1999 12:35:39 +0200 (CEST) Date: Sun, 26 Sep 1999 12:35:39 +0200 From: Ollivier Robert To: freebsd-security@FreeBSD.ORG Subject: Re: default rc.firewall Message-ID: <19990926123539.C18956@keltia.freenix.fr> Mail-Followup-To: freebsd-security@FreeBSD.ORG References: <4.2.0.58.19990924113626.0480db00@localhost> <4.2.0.58.19990924111600.04809a90@localhost> <3.0.5.32.19990923152232.007c94c0@memes.com> <199909241733.LAA27644@mt.sri.com> <4.2.0.58.19990924113626.0480db00@localhost> <199909241749.LAA27881@mt.sri.com> <4.2.0.58.19990924115715.0480e340@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii User-Agent: Mutt/1.0pre2i In-Reply-To: <4.2.0.58.19990924115715.0480e340@localhost> X-Operating-System: FreeBSD 4.0-CURRENT/ELF ctm#5593 AMD-K6 MMX @ 200 MHz Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org According to Brett Glass: > And remember the eEye IIS exploit? It let you come into the hacked Web > server *on port 80*. So, any Web server that was accessible from the outside Anyone running IIS on a public machine is waiting/asking for security problems. -- Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 4.0-CURRENT #74: Thu Sep 9 00:20:51 CEST 1999 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message