Date: Mon, 28 Jul 1997 13:25:24 +0000 (GMT) From: "Jonathan A. Zdziarski" <jonz@netrail.net> To: security@freebsd.org Subject: security hole in bsd Message-ID: <Pine.BSF.3.95q.970728132405.4159B-100000@netrail.net>
next in thread | raw e-mail | index | archive | help
BTW: You said you didn't know how he hacked into your other system as he doesn't have an account on it. Do you have a .rhosts file in the root directory of the other server or a hosts.equiv file allowing the two to share root/other privileged logins between the two? As root he'd be able to su to anything. How about NFS/rdist permissions? ------------------------------------------------------------------------- Jonathan A. Zdziarski NetRail Incorporated Server Engineering Manager 230 Peachtree St. Suite 500 jonz@netrail.net Atlanta, GA 30303 http://www.netrail.net (888) - NETRAIL -------------------------------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95q.970728132405.4159B-100000>