Security Incidents mailing list archives

Re: sendmail vunerability ?

From: fygrave () EPR0 ORG (CyberPsychotic)
Date: Tue, 8 Feb 2000 09:25:37 +0500


~:
~:
~:The ".forward" files were not there at 8 am when i checked the logs and saw
~:the activity.
~:
~:Can sendmail be used to create arbitrary directories?
~:

 I don't think so, but I guess it might be your /var/spool/mail
permissions issue. Some systems tend to be shipped with 1777 permissions
for this directory to permit creating /var/spool/mail/$USERNAME.lock
files. The another side of the coin is that anyone is permitted to create
files/directories here too...

Current thread:

a very strange scan, (continued)
- - - a very strange scan Boris Badenov (Feb 09)
    - Re: a very strange scan Russell Fulton (Feb 10)
    - Possible stacheldraht variant/probe Stephen P. Berry (Feb 09)
    - Re: Possible stacheldraht variant/probe David Brumley (Feb 10)
    - Re: [UPDATE]Dos Trojan on Solaris Robert Lau (Feb 09)
    - Re: Strange traceroute Rob Quinn (Feb 08)
    - vi as a suid Paulo Ribeiro (Feb 08)
  - Re: Strange traceroute Troy Ablan (Feb 05)
    - Re: Strange traceroute Hauke Johannknecht (Feb 08)
  - sendmail vunerability ? E Kelly Bond (Feb 05)
    - Re: sendmail vunerability ? CyberPsychotic (Feb 07)
    - Re: sendmail vunerability ? H D Moore (Feb 10)