Security Incidents mailing list archives
Re: sendmail vunerability ?
From: fygrave () EPR0 ORG (CyberPsychotic)
Date: Tue, 8 Feb 2000 09:25:37 +0500
~: ~: ~:The ".forward" files were not there at 8 am when i checked the logs and saw ~:the activity. ~: ~:Can sendmail be used to create arbitrary directories? ~: I don't think so, but I guess it might be your /var/spool/mail permissions issue. Some systems tend to be shipped with 1777 permissions for this directory to permit creating /var/spool/mail/$USERNAME.lock files. The another side of the coin is that anyone is permitted to create files/directories here too...
Current thread:
- a very strange scan, (continued)
- a very strange scan Boris Badenov (Feb 09)
- Re: a very strange scan Russell Fulton (Feb 10)
- Possible stacheldraht variant/probe Stephen P. Berry (Feb 09)
- Re: Possible stacheldraht variant/probe David Brumley (Feb 10)
- Re: [UPDATE]Dos Trojan on Solaris Robert Lau (Feb 09)
- Re: Strange traceroute Rob Quinn (Feb 08)
- vi as a suid Paulo Ribeiro (Feb 08)
- Re: Strange traceroute Troy Ablan (Feb 05)
- Re: Strange traceroute Hauke Johannknecht (Feb 08)
- sendmail vunerability ? E Kelly Bond (Feb 05)
- Re: sendmail vunerability ? CyberPsychotic (Feb 07)
- Re: sendmail vunerability ? H D Moore (Feb 10)