Bugtraq mailing list archives
Re: Standard & Poors security nightmare
From: dick () SEAMAN ORG (Richard Seaman, Jr.)
Date: Sun, 21 May 2000 08:19:11 -0500
On Sat, May 20, 2000 at 06:09:00PM -0500, Richard Seaman, Jr. wrote: [snip]
Many of these problems still exist. However, they have disabled at least some unneeded services, including named, apache and sendmail. samba is still on, but unneeded. Likewise for nfsd. I have disabled both without adverse effect. World writeable directories and files are still a problem (eg. /etc/rc.d/rc.local was world writeable).
One other thing I forgot about. They have lots of stuff turned on in inetd.conf. It can all be turned off without any ill effect on the MCSP function. [snip]
For sat feed customers, I'd say that changing the passwords, disabling samba and nfsd, and keeping the MCSP "outside" interface behind a firewall on a "trusted network" will reduce the vulnerabilities dramatically as compared to the MCSP setup you analyzed.
Plus turn off inetd, or else turn off everything in inetd.conf you don't need. -- Richard Seaman, Jr. email: dick () seaman org 5182 N. Maple Lane phone: 262-367-5450 Nashotah WI 53058 fax: 262-367-5852
Current thread:
- Standard & Poors security nightmare Stephen Friedl (May 17)
- Re: Standard & Poors security nightmare Jim Knoble (May 18)
- Re: Standard & Poors security nightmare Richard Seaman, Jr. (May 20)
- Re: Standard & Poors security nightmare Richard Seaman, Jr. (May 21)
- Re: Standard & Poors security nightmare Crispin Cowan (May 20)
- "gdm" remote hole Chris Evans (May 21)
- Re: "gdm" remote hole Katherine M. Moussouris (May 22)
- fdmount buffer overflow Arend-Jan Wijtzes (May 22)
- Re: fdmount buffer overflow Greg Olszewski (May 22)
- About VNC Patrick Oonk (May 24)
- Re: fdmount buffer overflow Tomasz Grabowski (May 24)
- Re: fdmount buffer overflow Matt Wilson (May 24)
- Re: fdmount buffer overflow Greg Olszewski (May 22)
- Gauntlet Firewall Vulnerability Elias Levy (May 22)
- Re: Standard & Poors security nightmare Stephen J. Friedl (May 24)
(Thread continues...)