From owner-freebsd-security  Fri May 28 21:51:46 1999
Delivered-To: freebsd-security@freebsd.org
Received: from granite.sentex.net (granite.sentex.ca [199.212.134.1])
	by hub.freebsd.org (Postfix) with ESMTP id 68B8214E6D
	for <security@FreeBSD.ORG>; Fri, 28 May 1999 21:51:44 -0700 (PDT)
	(envelope-from mike@sentex.net)
Received: from ospf-wat.sentex.net (ospf-wat.sentex.net [209.167.248.81]) by granite.sentex.net (8.8.8/8.6.9) with SMTP id AAA09482 for <security@FreeBSD.ORG>; Sat, 29 May 1999 00:51:43 -0400 (EDT)
From: mike@sentex.net (Mike Tancsa)
To: security@FreeBSD.ORG
Subject: Re: System beeing cracked!
Date: Sat, 29 May 1999 05:02:51 GMT
Message-ID: <374f731c.607312609@mail.sentex.net>
References: <MAIL199905280927.OAA08009@nic.mmc.net.ge>
In-Reply-To: <MAIL199905280927.OAA08009@nic.mmc.net.ge>
X-Mailer: Forte Agent .99e/32.227
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On 28 May 1999 05:26:55 -0400, in sentex.lists.freebsd.misc you wrote:

>Hello, 
>I have 3.1 installed and friend of mine made a bet that he can hack 
>into my system. He has ordinary account opened. 
>security holes in 3.1? He login as himself 
>it was done? Please, answer me, 
>as my friend do not tell me anything 
>about this as he feel like guru-hacker.
>Thank you.

Did your friend have access to a machine on the same ethernet ? He could
have sniffed your password and the root's password, and then logged in as
you, and then su'd to root.

	---Mike
Mike Tancsa  (mdtancsa@sentex.net)		
Sentex Communications Corp,   		
Waterloo, Ontario, Canada


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message