From owner-freebsd-security Mon Jul 15 13:43:27 1996 Return-Path: owner-security Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id NAA09604 for security-outgoing; Mon, 15 Jul 1996 13:43:27 -0700 (PDT) Received: from kdat.calpoly.edu (kdat.csc.calpoly.edu [129.65.54.101]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id NAA09593; Mon, 15 Jul 1996 13:43:21 -0700 (PDT) Received: (from nlawson@localhost) by kdat.calpoly.edu (8.6.12/N8) id NAA12252; Mon, 15 Jul 1996 13:43:06 -0700 From: Nathan Lawson Message-Id: <199607152043.NAA12252@kdat.calpoly.edu> Subject: Please stop CCing FreeBSD-Security To: jbhunt@mercury.gaianet.net (jbhunt) Date: Mon, 15 Jul 1996 13:43:06 -0700 (PDT) Cc: freebsd-security-notification@FreeBSD.org, freebsd-security@FreeBSD.org, root@mercury.gaianet.net In-Reply-To: from "jbhunt" at Jul 14, 96 11:52:43 pm X-Mailer: ELM [version 2.4 PL23] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-security@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk > Ok, for almost 3 weeks now we at Gaianet have been tracking root hackers > around our box. FINALLY, today at about 3 pm one of them made a BIG BIG > mistake. Fortunately, for us I was around to watch what happened and kill > the user before he was able to erase his history files and the exploit > itself. So here are the files necessary to fix whatever hole this > exploits. We run Freebsd Current so it obviously makes most freebsd > systems vulnerable to a root attack. I appreciate any help you can offer. > > John > SysAdmin Gaianet Please stop sending your local information to freebsd-security! It is not a forum to discuss your specific system's security problems. -- Nate Lawson "There are a thousand hacking at the branches of CPE Senior evil to one who is striking at the root." CSL Admin -- Henry David Thoreau, 'Walden', 1854