From owner-freebsd-security Fri Dec 1 15:10:58 2000 Delivered-To: freebsd-security@freebsd.org Received: from mail.ipfw.org (cr308584-a.wlfdle1.on.wave.home.com [24.114.52.208]) by hub.freebsd.org (Postfix) with ESMTP id 8B69637B400 for ; Fri, 1 Dec 2000 15:10:56 -0800 (PST) Received: from apollo (apollo.objtech.com [192.168.111.5]) by mail.ipfw.org (Postfix) with ESMTP id 5A002312D; Fri, 1 Dec 2000 18:10:55 -0500 (EST) Date: Fri, 1 Dec 2000 18:10:55 -0500 From: Peter Chiu X-Mailer: The Bat! (v1.47 Halloween Edition) Personal Reply-To: Webbie X-Priority: 3 (Normal) Message-ID: <32502992254.20001201181055@ipfw.org> To: Garrett Gregory Cntr AMC/LGXI Cc: freebsd-security@FreeBSD.ORG Subject: Re[2]: Move along, nothing to see here. Re: Important!! Vulnerabili ty in standard ftpd In-reply-To: <21A918476AFBD311B0C80000D1ECF0FF01A865FC@vejxoisnte85.scott.af.mil> References: <21A918476AFBD311B0C80000D1ECF0FF01A865FC@vejxoisnte85.scott.af.mil> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello Garrett, Friday, December 01, 2000, 10:44:42 AM, you wrote: GGCAL> Speaking from experience in a related case: GGCAL> I have had my website system hacked twice in the last year - BOTH times it GGCAL> happened because the hacker got into ANOTHER system where an individual with GGCAL> a trusted account had his userid and password stored on that server in a GGCAL> plain text file - they pogoed from that system with that userid and got GGCAL> in... GGCAL> The results from the investigation? There was nothing else I could do to my GGCAL> system to make it more secure - in fact I got kudos for it being as secure GGCAL> as it was. But as long as people keep info insecurly there's nothing you can GGCAL> do but keep watch and hope to catch them (and of course have good backup GGCAL> sets!). Implement ssh2 RSA login only (disable password login everywhere). Also make sure your users use a non-blank pass pharse. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message