Date: Thu, 11 Dec 1997 12:40:41 -0500 (EST) From: "Adrian T. Filipi-Martin" <atf3r@cs.virginia.edu> To: "Larry S. Marso" <lsmarso@panix.com> Cc: Patrick Gardella <patrick@cre8tivegroup.com>, freebsd-chat@FreeBSD.ORG Subject: Re: Yahoo Vandals? Message-ID: <Pine.SOL.3.96.971211123323.11988E-100000@mamba.cs.Virginia.EDU> In-Reply-To: <19971211091919.59865@panix.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[redirected to chat] Just because a yahoo! system was compromised, says nothing about whether anything that is part of FreeBSD was to blame. I think it is safe to say that the yahoo! folks run a lot of custom code, especially custom CGI's. Anyone remember the phf CGI hole? Let's not jump to conclusions. Let's also not let others do the same, if it means assuming FreeBSD was the vulnerability. Personally, I want to know more about the intrusion first. Adrian On Thu, 11 Dec 1997, Larry S. Marso wrote: > Ah! Hadn't thought about that. I think we can safely conclude, given this > aspect of the story, that this whole thing is a plot by Micro$oft to > discredit FreeBSD. ;-) > -- > Larry S. Marso > lsmarso@panix.com > > > > On Wed, Dec 10, 1997 at 08:33:17AM -0500, Patrick Gardella wrote: > > I light of the break-in at Yahoo, and the recent conversations about Yahoo's > > use of FreeBSD, does anyone know how they managed to get in? I can make some > > guesses (hole in applications, sniffing for passwords, physical compromise of > > passwords, etc.), but I thought I would ask. Just want to make sure there isn't > > some hidden security hole that hasn't been plugged. > > > > I haven't heard anything from the news sources about FreeBSD or how they got in. > > > > I certainly wish we could say that since they were switched to WindozeNT, they > > were cracked ;) But they are still running FreeBSD, AFAIK. > > > > No cause for alarm, just curiosity! > > > > Patrick Gardella > > recent conversations about Yahoo's > > use of FreeBSD, does anyone know how they managed to get in? I can make some > > guesses, but I thought I would ask. > > > > I haven't heard anything from the news sources about FreeBSD or how they got in. > > > > I > Adrian -- adrian@virginia.edu ---->>>>| If I were stranded on a desert island, and System Administrator --->>>| I could only have one OS for my computer, Neurosurgical Visualzation Lab -->>| it would be FreeBSD. Think about it..... http://www.nvl.virginia.edu/ ->| http://www.freebsd.org/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.SOL.3.96.971211123323.11988E-100000>