Date: Wed, 12 Aug 1998 16:29:55 +1200 (NZST) From: Andrew McNaughton <andrew@squiz.co.nz> To: Daniel Minoru Saito <daniel@kt.rim.or.jp> Cc: ben@rosengart.com, "Bruce A. Mah" <bmah@CA.Sandia.GOV>, freebsd-security@FreeBSD.ORG Subject: Re: UDP port 31337 Message-ID: <Pine.BSF.3.96.980812162024.16956J-100000@aniwa.sky> In-Reply-To: <004101bdc599$2c6f9420$4100a8c0@periscope.digital-canvas.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 12 Aug 1998, Daniel Minoru Saito wrote: > Date: Wed, 12 Aug 1998 11:30:28 +0900 > From: Daniel Minoru Saito <daniel@kt.rim.or.jp> > To: ben@rosengart.com, "Bruce A. Mah" <bmah@CA.Sandia.GOV> > Cc: freebsd-security@FreeBSD.ORG > Subject: Re: UDP port 31337 > > Funny that you see this right now.. > Although you might want to trace where you see this originating from. > > Its the infamous Back Oriface by cDc. It utilizes port 31337. It basically > a virus that someone can fully control a win95/98 box remotely. > > > more information is at the cDc Site: http://www.cultdeadcow.com/tools/ > > dan Or it's traceroute of course. How hard would it be to arrange for a reply to be sent that would cause a back orifice client to send more and distinguish itself from a traceroute? Andrew To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980812162024.16956J-100000>