From owner-freebsd-security  Tue Oct 13 15:23:10 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id PAA08776
          for freebsd-security-outgoing; Tue, 13 Oct 1998 15:23:10 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from lariat.lariat.org (lariat.lariat.org [206.100.185.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA08770
          for <security@FreeBSD.ORG>; Tue, 13 Oct 1998 15:23:08 -0700 (PDT)
          (envelope-from brett@lariat.org)
Received: (from brett@localhost)
	by lariat.lariat.org (8.8.8/8.8.6) id QAA23639;
	Tue, 13 Oct 1998 16:22:50 -0600 (MDT)
Message-Id: <4.1.19981013162129.0475b390@mail.lariat.org>
X-Sender: brett@mail.lariat.org
X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 
Date: Tue, 13 Oct 1998 16:22:45 -0600
To: "Jan B. Koum " <jkb@best.com>
From: Brett Glass <brett@lariat.org>
Subject: Re: Spoofed connections on port 13223??
Cc: security@FreeBSD.ORG
In-Reply-To: <19981013135826.A22942@best.com>
References: <4.1.19981013100624.041b8760@mail.lariat.org>
 <Pine.BSF.3.96.981013004343.26044A-100000@ns.nternet.net>
 <199810131024.DAA04862@hub.freebsd.org>
 <4.1.19981013100624.041b8760@mail.lariat.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

At 01:58 PM 10/13/98 -0700, Jan B. Koum wrote:

>        However, I never delt with CERT and not really sure how things work
>        when someone calls them.

When we had a machine rooted, they DIDN'T call back. They didn't even
respond to the e-mail until a momth later. Their announcement of the
security hole through which our machine was compromised came WEEKS
after it was too late.

In short, they're ineffectual except perhaps as archivists.

--Brett


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message