From owner-freebsd-chat  Wed Dec  8  8:41:12 1999
Delivered-To: freebsd-chat@freebsd.org
Received: from serenity.mcc.ac.uk (serenity.mcc.ac.uk [130.88.200.93])
	by hub.freebsd.org (Postfix) with ESMTP id AE19C15541
	for <chat@freebsd.org>; Wed,  8 Dec 1999 08:40:59 -0800 (PST)
	(envelope-from jcm@dogma.freebsd-uk.eu.org)
Received: from dogma.freebsd-uk.eu.org ([130.88.200.97])
	by serenity.mcc.ac.uk with esmtp (Exim 1.92 #3)
	for chat@freebsd.org
	id 11vk9C-000BUE-00; Wed, 8 Dec 1999 16:40:58 +0000
Received: from localhost (jcm@localhost)
	by dogma.freebsd-uk.eu.org (8.9.3/8.9.3) with SMTP id QAA37388
	for <chat@freebsd.org>; Wed, 8 Dec 1999 16:40:58 GMT
	(envelope-from jcm@dogma.freebsd-uk.eu.org)
Date: Wed, 8 Dec 1999 16:40:58 +0000 (GMT)
From: Jonathon McKitrick <jcm@dogma.freebsd-uk.eu.org>
To: freebsd-chat <chat@freebsd.org>
Subject: Yahoo hacked last night
Message-ID: <Pine.BSF.4.02A.9912081638110.37369-100000@dogma.freebsd-uk.eu.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-chat@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Check out the article on cnet.  I lost the URL, or i would post it.

Apparently, crackers changed some test on the yahoo page to threaten
computer world destruction with a virus if Kevin Mitnick were not
released.  Only lynx and outdated netscape/IE users saw it.  Yahoo said no
data was damaged, and the virus threat was a hoax.

Question: if a site like yahoo has telnet disabled (thus disabling running
commands directly) how could someone gain control of the system or access
to privileged information?


-jm

------------------




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message