Yes, absolutely true, but I still would like to compile ssh2. I have
found that if I like the binaries to both libc5 and libc6, then it links
without a problem, but segfaults. nm tells me that there are no symbols
in libc6, that's a problem, right?
-CJO-
On Thu, 29 Oct 1998, Michael H. Warfield wrote:
> Several involved people have pointed out, yes, it looks like they
>connected into rootshell.com via ssh. That does not mean that there is
>an inherent flaw in ssh 1.2.26. It also does not mean that upgrading to
>2.0.10 (2.0.9 is not the latest) will necessarily avoid the problem. If the
>intruders managed to guess or otherwise obtain a password, they could log
>in using ssh. They could also do this by using some other exploit to
>create or modify configuration files such as .shosts or .ssh/authorized_keys.
>It could have been done through improper permissions or bad cgi scripts.
>Maybe they tricked qmail or apache into coughing up the passwd file and
>they found a weakly protected account. We just don't know. Access is half
>the battle. You can then worry about root access once you're in.
>
> At this time, we do not have information as to what was done to
>gain access. Saying that they got in through ssh is like saying they
>got in through telnet or that they got a shell. Doesn't mean that telnet
>or bash would be suspect. Caution is advised! Until we know different,
>everything should be suspect. Caution would also say that 2.0.10 may be
>no better!
>
> I'm restricting access to the ssh ports. You can use ipfwadm or
>ipchains to limit access to those addresses that you want to grant access.
>Unlike rsh or rlogin, there is too much handshaking and Linux is not
>sequence number predictable, so I don't thing spoofing is likely to be
>a serious problem. Allowing access to everywhere is probably NOT a good
>idea at this time... No matter WHAT version of access software you
>are using!
>
>
>
>--
> Michael H. Warfield | (770) 985-6132 | [EMAIL PROTECTED]
> (The Mad Wizard) | (770) 925-8248 | http://www.wittsend.com/mhw/
> NIC whois: MHW9 | An optimist believes we live in the best of all
> PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
>
C.J. Oster (Linux Guru/Surge Addict)
--------------------------------------------------------------------
| [EMAIL PROTECTED] | 910 S. 3rd St, #1318 | CCSO, WSG, UIUC |
| [EMAIL PROTECTED] | Champaing, IL 91820 | 1443 DCL, Urbana |
--------------------------------------------------------------------
(580)761-6393 (217)328-8934
"Linux, for people with an IQ above 98" - Bumper Sticker
"Hm, a little big for a cup holder... Why does it say '4x' on it?"
