Date: Mon, 2 Aug 1999 11:32:51 +0930 From: Greg Lehey <grog@lemis.com> To: Jerry Raynor <jerryr@ComCAT.COM> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Getting Hacked threough POPPER Message-ID: <19990802113251.K64532@freebie.lemis.com> In-Reply-To: <Pine.GSO.4.10.9908012140180.18639-100000@uw>; from Jerry Raynor on Sun, Aug 01, 1999 at 09:48:09PM -0400 References: <Pine.GSO.4.10.9908012140180.18639-100000@uw>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sunday, 1 August 1999 at 21:48:09 -0400, Jerry Raynor wrote: > I'm using Sendmail 8.9 and FreeBSD 2.2.5-R (yes I know I have to upgrade, > I'm working on it). I keep getting attacked through Popper and shortly > after I see such an attack they login with a username on my system. Oops. > How are they doing this Take a look at http://www.cert.org/advisories/CA-98.08.qpopper_vul.html, which describes it in some detail. > and how can I stop it!?! Install the latest version of popper. > I've obviously added these domain to deny them from my firewall. Is > there a way to prevent connection through popper? If you're not using popper, disable it in /etc/inetd.conf. Don't forget to restart inetd after you do. Greg -- When replying to this message, please copy the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address, home page and phone numbers finger grog@lemis.com for PGP public key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990802113251.K64532>