From owner-freebsd-security Wed Aug 26 19:25:11 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA14451 for freebsd-security-outgoing; Wed, 26 Aug 1998 19:25:11 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from garfield.bmk.com.au (bmkind.lnk.telstra.net [139.130.51.118]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA14446 for ; Wed, 26 Aug 1998 19:25:07 -0700 (PDT) (envelope-from brendan@bmk.com.au) Received: from localhost (brendan@localhost) by garfield.bmk.com.au (8.8.7/8.8.7) with SMTP id MAA02201 for ; Thu, 27 Aug 1998 12:26:13 +1000 (EST) (envelope-from brendan@bmk.com.au) Date: Thu, 27 Aug 1998 12:26:13 +1000 (EST) From: Brendan Kosowski To: FreeBSD Security Subject: FreeBSD 2.2.5 Security Problem Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I suspect a regular security break-in on my FreeBSD 2.2.5 system for the following reasons : ( Note1 : my system has a small number of users which I know well ) ( Note2 : my inetd.conf only enables FTPD, TELNETD & POPPER ) 1. My Internet costs increased by 10 times last month. 2. I often see 2 SHELLS running when I do a "ps -ax" even though I am the only person listed when I do a "who". 3. My SYSLOG messages file has lots of telnetd "undefined errors" during times when NO ONE is using the system. Can anyone help me ??? Does anyone have AN OFFICIAL LIST OF FreeBSD 2.2.5 SECURITY HOLES and HOW TO FIX THEM ??? Thanks & Regards, Brendan... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message