atom feed200 messages in org.freebsd.freebsd-securityRe: security hole in FreeBSD
FromSent OnAttachments
80 earlier messages
Gary PalmerJul 28, 1997 5:33 pm 
Vincent PoyJul 28, 1997 5:34 pm 
Gary PalmerJul 28, 1997 5:36 pm 
Vincent PoyJul 28, 1997 5:40 pm 
Gary PalmerJul 28, 1997 5:44 pm 
Gary PalmerJul 28, 1997 5:45 pm 
Vincent PoyJul 28, 1997 5:49 pm 
Gary PalmerJul 28, 1997 5:53 pm 
Vincent PoyJul 28, 1997 5:57 pm 
Vincent PoyJul 28, 1997 6:01 pm 
Vincent PoyJul 28, 1997 6:01 pm 
Brian BuchananJul 28, 1997 6:19 pm 
Brian BuchananJul 28, 1997 6:24 pm 
Matthew N. DoddJul 28, 1997 6:41 pm 
Robert WatsonJul 28, 1997 6:59 pm 
Robert WatsonJul 28, 1997 7:00 pm 
Vincent PoyJul 28, 1997 7:01 pm 
Vincent PoyJul 28, 1997 7:04 pm 
Matthew N. DoddJul 28, 1997 7:19 pm 
John PreislerJul 28, 1997 7:31 pm 
Brian BuchananJul 28, 1997 7:52 pm 
John DowdalJul 28, 1997 8:29 pm 
Annelise AndersonJul 28, 1997 8:41 pm 
Nate WilliamsJul 28, 1997 9:09 pm 
Vincent PoyJul 28, 1997 9:12 pm 
Vincent PoyJul 28, 1997 9:15 pm 
Vincent PoyJul 28, 1997 9:19 pm 
Heikki SuonsivuJul 28, 1997 9:33 pm 
Jan KoumJul 28, 1997 9:39 pm 
Vincent PoyJul 28, 1997 9:49 pm 
Jordan K. HubbardJul 28, 1997 10:05 pm 
Vincent PoyJul 28, 1997 10:14 pm 
Gary PalmerJul 28, 1997 10:27 pm 
Gary PalmerJul 28, 1997 10:28 pm 
Vincent PoyJul 28, 1997 10:35 pm 
Vincent PoyJul 28, 1997 10:37 pm 
John-David ChildsJul 28, 1997 10:38 pm 
Gary PalmerJul 28, 1997 10:40 pm 
Vincent PoyJul 28, 1997 10:44 pm 
Gary PalmerJul 28, 1997 10:50 pm 
Vincent PoyJul 28, 1997 10:55 pm 
Jordan K. HubbardJul 28, 1997 10:59 pm 
Vincent PoyJul 28, 1997 11:01 pm 
Jordan K. HubbardJul 28, 1997 11:07 pm 
Jordan K. HubbardJul 28, 1997 11:11 pm 
Jordan K. HubbardJul 28, 1997 11:16 pm 
Sergei S. LaskavyJul 29, 1997 12:13 am 
John-David ChildsJul 29, 1997 2:09 am 
NarviJul 29, 1997 2:48 am 
Stephen D. SpencerJul 29, 1997 3:43 am 
Robert WatsonJul 29, 1997 5:32 am 
Adam ShostackJul 29, 1997 5:49 am 
Robert WatsonJul 29, 1997 6:39 am 
Nate WilliamsJul 29, 1997 7:19 am 
Rodney W. GrimesJul 29, 1997 8:58 am 
Warner LoshJul 29, 1997 9:25 am 
Warner LoshJul 29, 1997 9:34 am 
Christopher PetrilliJul 29, 1997 9:52 am 
Jim ShanklandJul 29, 1997 9:57 am 
John DowdalJul 29, 1997 10:50 am 
Poul-Henning KampJul 29, 1997 12:05 pm 
Bill PechterJul 29, 1997 12:29 pm 
Matthew HuntJul 29, 1997 12:37 pm 
Christopher PetrilliJul 29, 1997 12:43 pm 
[Mario1-]Jul 29, 1997 1:07 pm 
Garrett WollmanJul 29, 1997 1:07 pm 
[Mario1-]Jul 29, 1997 1:14 pm 
sth...@nethelp.noJul 29, 1997 1:39 pm 
Jordan K. HubbardJul 29, 1997 2:23 pm 
Vincent PoyJul 29, 1997 2:45 pm 
Vincent PoyJul 29, 1997 2:57 pm 
Vincent PoyJul 29, 1997 3:02 pm 
sth...@nethelp.noJul 29, 1997 3:30 pm 
Rocco LuciaJul 29, 1997 3:33 pm 
Vincent PoyJul 29, 1997 3:44 pm 
Aaron BornsteinJul 29, 1997 3:44 pm 
Vincent PoyJul 29, 1997 3:54 pm 
Vincent PoyJul 29, 1997 4:00 pm 
Jay D. NelsonJul 29, 1997 5:29 pm 
Adam ShostackJul 29, 1997 6:06 pm 
Gary SchrockJul 29, 1997 6:10 pm 
Adam ShostackJul 29, 1997 6:11 pm 
Michael SmithJul 29, 1997 6:54 pm 
Jay D. NelsonJul 29, 1997 7:58 pm 
Jay D. NelsonJul 29, 1997 8:10 pm 
Michael SmithJul 29, 1997 8:25 pm 
Marco MolteniJul 30, 1997 5:04 am 
James SengJul 30, 1997 5:31 am 
Alex G. BulushevJul 30, 1997 5:59 am 
Vincent PoyJul 30, 1997 6:45 am 
Robert WatsonJul 30, 1997 7:03 am 
Nate WilliamsJul 30, 1997 7:48 am 
Vincent PoyJul 30, 1997 7:54 am 
Nate WilliamsJul 30, 1997 8:06 am 
Nate WilliamsJul 30, 1997 8:13 am 
Vincent PoyJul 30, 1997 8:28 am 
Vincent PoyJul 30, 1997 8:33 am 
zoonieJul 30, 1997 9:09 am 
Poul-Henning KampJul 30, 1997 9:25 am 
Poul-Henning KampJul 30, 1997 9:31 am 
20 later messages
Subject:Re: security hole in FreeBSD
From:Stephen D. Spencer (lis@artorius.sunflower.com)
Date:Jul 29, 1997 3:43:08 am
List:org.freebsd.freebsd-security

Robert,

That problem is much less prevalent on cable modem systems (or potentially less of a problem :) As a cable-internet ISP, it was decided before we made the service available that there is no reason to give customers shell access to our main servers. It is an obvious requirement of such a network for potential customers to have their own machine. They can configure tcp/ip clients to their hearts' content, and if they really want a *nix shell, there's Linux and the various BSD derivatives. We offer pop3 accounts, but many of our customers have their mail directly delivered to their personal machines. This cuts down on the number of login requests that are being passed over various segments to our main servers. Also, the cable modems that we use (Zenith Homeworks Universal) operate on a MAC filter concept (limits the number of machines connected to any given modem) and cannot be put into a promisciuous mode by the customer.

-Stephen Spencer admin guy Sunflower Datavision Lawrence, KS

On Mon, 28 Jul 1997, Robert Watson wrote:

Well, once you have one host, you have all the hosts on the same ethernet segment. Typically, though, problems with sniffing occur on college dorm networks, which run large numbers of less-well-managed Linux/etc hosts. This may be an increasing problem on Cable-modem networks, which I understand work something like Ethernet, in that they are broadcast networks for a local segment. Also, who is to say that occasionally routers or ISP machines don't get broken into, and sniffing occurs? Any of your users could be logging in from an untrusted network, so in essense you are relying on that network to be secure as well as your own.