On 11/16/2012 12:45 PM, Noah Mehl wrote:
Tony,
I just figured out an exploit in 15 minutes with the help of Google
http://www.semicomplete.com/articles/ssh-security/:
<http://www.semicomplete.com/articles/ssh-security/:>
$sudo ssh -vN -L25:localhost:25 PlcmSpIp@sipxecsip
$sudo ssh -vN -R25:localhost:25 PlcmSpIp@sipxecsip
$telnet localhost 25
Of course you can telnet to port 25 (smtp) on the server to localhost.
You have sendmail running on local host. If your sendmail is configured
properly you will not be able to access port 25 for another machine or
the real ip address of the server.
--
Regards
--------------------------------------
Gerald Drouillard
Technology Architect
Drouillard & Associates, Inc.
http://www.Drouillard.biz
_______________________________________________
sipx-users mailing list
sipx-users@list.sipfoundry.org
List Archive: http://list.sipfoundry.org/archive/sipx-users/
