yeh.. maybe remote sploit.. there a lots of sploits on solaris specially the
rpc services... or a brute force attack then local root sploit..
----- Original Message -----
From: "Anwar" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, July 03, 2001 1:27 PM
Subject: Re: [plug] GMA-7 website hacked!
> i'm 90% sure it's a remote sploit.
> ----- Original Message -----
> From: "Ronneil Camara" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Tuesday, July 03, 2001 12:09 PM
> Subject: RE: [plug] GMA-7 website hacked!
>
>
> > > -----Original Message-----
> > > From: Pablo Manalastas [mailto:[EMAIL PROTECTED]]
> > > Sent: Monday, July 02, 2001 10:37 PM
> > > To: [EMAIL PROTECTED]
> > > Subject: Re: [plug] GMA-7 website hacked!
> > >
> > > From these two post, do we assume that root's password was stolen?
> > > If it is an ordinary user's password that was stolen, doing that
> > > kind of hack is still quite a challenge, so it must be root's
> > > password that the hacker got.
> > >
> > > This is a security issue, and your experience will be very
> > > helpful to all of us who run publicly accessible websites.
> > >
> >
> > The malicious hack could have been coordinated on the inside.
> >
> > Social Engineering.
> >
> > -onie
> > _
> > Philippine Linux Users Group. Web site and archives at
> http://plug.linux.org.ph
> > To leave: send "unsubscribe" in the body to
[EMAIL PROTECTED]
> >
> > To subscribe to the Linux Newbies' List: send "subscribe" in the body to
> [EMAIL PROTECTED]
> >
>
> _
> Philippine Linux Users Group. Web site and archives at
http://plug.linux.org.ph
> To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
>
> To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
