atom feed200 messages in org.freebsd.freebsd-securityRe: securelevel (was: Re: security ho...
FromSent OnAttachments
107 earlier messages
Heikki SuonsivuJul 28, 1997 9:33 pm 
Jan KoumJul 28, 1997 9:39 pm 
Vincent PoyJul 28, 1997 9:49 pm 
Jordan K. HubbardJul 28, 1997 10:05 pm 
Vincent PoyJul 28, 1997 10:14 pm 
Gary PalmerJul 28, 1997 10:27 pm 
Gary PalmerJul 28, 1997 10:28 pm 
Vincent PoyJul 28, 1997 10:35 pm 
Vincent PoyJul 28, 1997 10:37 pm 
John-David ChildsJul 28, 1997 10:38 pm 
Gary PalmerJul 28, 1997 10:40 pm 
Vincent PoyJul 28, 1997 10:44 pm 
Gary PalmerJul 28, 1997 10:50 pm 
Vincent PoyJul 28, 1997 10:55 pm 
Jordan K. HubbardJul 28, 1997 10:59 pm 
Vincent PoyJul 28, 1997 11:01 pm 
Jordan K. HubbardJul 28, 1997 11:07 pm 
Jordan K. HubbardJul 28, 1997 11:11 pm 
Jordan K. HubbardJul 28, 1997 11:16 pm 
Sergei S. LaskavyJul 29, 1997 12:13 am 
John-David ChildsJul 29, 1997 2:09 am 
NarviJul 29, 1997 2:48 am 
Stephen D. SpencerJul 29, 1997 3:43 am 
Robert WatsonJul 29, 1997 5:32 am 
Adam ShostackJul 29, 1997 5:49 am 
Robert WatsonJul 29, 1997 6:39 am 
Nate WilliamsJul 29, 1997 7:19 am 
Rodney W. GrimesJul 29, 1997 8:58 am 
Warner LoshJul 29, 1997 9:25 am 
Warner LoshJul 29, 1997 9:34 am 
Christopher PetrilliJul 29, 1997 9:52 am 
Jim ShanklandJul 29, 1997 9:57 am 
John DowdalJul 29, 1997 10:50 am 
Poul-Henning KampJul 29, 1997 12:05 pm 
Bill PechterJul 29, 1997 12:29 pm 
Matthew HuntJul 29, 1997 12:37 pm 
Christopher PetrilliJul 29, 1997 12:43 pm 
[Mario1-]Jul 29, 1997 1:07 pm 
Garrett WollmanJul 29, 1997 1:07 pm 
[Mario1-]Jul 29, 1997 1:14 pm 
sth...@nethelp.noJul 29, 1997 1:39 pm 
Jordan K. HubbardJul 29, 1997 2:23 pm 
Vincent PoyJul 29, 1997 2:45 pm 
Vincent PoyJul 29, 1997 2:57 pm 
Vincent PoyJul 29, 1997 3:02 pm 
sth...@nethelp.noJul 29, 1997 3:30 pm 
Rocco LuciaJul 29, 1997 3:33 pm 
Vincent PoyJul 29, 1997 3:44 pm 
Aaron BornsteinJul 29, 1997 3:44 pm 
Vincent PoyJul 29, 1997 3:54 pm 
Vincent PoyJul 29, 1997 4:00 pm 
Jay D. NelsonJul 29, 1997 5:29 pm 
Adam ShostackJul 29, 1997 6:06 pm 
Gary SchrockJul 29, 1997 6:10 pm 
Adam ShostackJul 29, 1997 6:11 pm 
Michael SmithJul 29, 1997 6:54 pm 
Jay D. NelsonJul 29, 1997 7:58 pm 
Jay D. NelsonJul 29, 1997 8:10 pm 
Michael SmithJul 29, 1997 8:25 pm 
Marco MolteniJul 30, 1997 5:04 am 
James SengJul 30, 1997 5:31 am 
Alex G. BulushevJul 30, 1997 5:59 am 
Vincent PoyJul 30, 1997 6:45 am 
Robert WatsonJul 30, 1997 7:03 am 
Nate WilliamsJul 30, 1997 7:48 am 
Vincent PoyJul 30, 1997 7:54 am 
Nate WilliamsJul 30, 1997 8:06 am 
Nate WilliamsJul 30, 1997 8:13 am 
Vincent PoyJul 30, 1997 8:28 am 
Vincent PoyJul 30, 1997 8:33 am 
zoonieJul 30, 1997 9:09 am 
Poul-Henning KampJul 30, 1997 9:25 am 
Poul-Henning KampJul 30, 1997 9:31 am 
John-David ChildsJul 30, 1997 10:17 am 
Ian KallenJul 30, 1997 10:37 am 
Patrick GilbertJul 30, 1997 11:43 am 
Jay D. NelsonJul 30, 1997 1:52 pm 
[Mario1-]Jul 30, 1997 2:06 pm 
Jordan K. HubbardJul 30, 1997 3:53 pm 
Jordan K. HubbardJul 30, 1997 4:04 pm 
yossmanJul 30, 1997 4:20 pm 
Jordan K. HubbardJul 30, 1997 4:24 pm 
Peter KorstenJul 30, 1997 4:43 pm 
Michael SmithJul 30, 1997 8:01 pm 
Cy SchubertJul 30, 1997 9:10 pm 
FreeBSD Technical ReaderJul 30, 1997 11:18 pm 
Marco MolteniJul 31, 1997 5:24 am 
yossmanJul 31, 1997 9:00 am 
Adam ShostackJul 31, 1997 9:19 am 
Marc SlemkoJul 31, 1997 11:23 am 
AndrewAug 1, 1997 10:00 pm 
Dmitry KohmanyukAug 1, 1997 10:32 pm 
Philippe RegnauldAug 2, 1997 1:46 pm 
Subject:Re: securelevel (was: Re: security hole in FreeBSD)
From:Vincent Poy (vin@mail.MCESTATE.COM)
Date:Jul 29, 1997 3:54:19 pm
List:org.freebsd.freebsd-security

On Tue, 29 Jul 1997, Aaron Bornstein wrote:

=)[Cc list trimmed, I'm assuming most of those people are on the list -- AB] =) =) Great, now you've effectively given everyone who sniffs your =)connection instant root access, no extra passwords necessary. Using =)screen in this manner merely opens another path to root, through an =)account not afforded anywhere near the same protection by the operating =)system.

If someone was sniffing my connection, then why weren't any of my screen sessions touched? I spend more time on the computer than most people would. As everyone knows, I only sleep 2-3 hours per day.

=)> another machine and tracked him down and killed his connection. jbhunt =)> was running a portscanner to check for any daemons running on a higher =)> port number but didn't find any. =)> =) Don't forget the possibility of an exisiting daemon (such as =)telnetd or ftpd) being modified slightly to allow remote access root =)access to a certain site or (more likely) anyone who presents the proper =)backdoor phrase/environment variable. [I believe JKH mentioned this =)already]

That is always a possibility ofcourse. Or they can install some daemon at a port.

=)> True but the problem is we wished we had console access. If we =)> did, none of this would even happened I think. =)> =) Bullshit. If console access was available, the only portion of =)this process that would be made easier is the cleanup. Console access =)does not significantly raise your chances of -preventing- attacks.

If console access was available, how would the sniffer sniff the console? since that would not go through the network in the first place.

Cheers, Vince - vin@MCESTATE.COM - vin@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____]