Full Disclosure mailing list archives

Re: OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison.

From: "KF (lists)" <kf_lists () digitalmunition com>
Date: Wed, 11 May 2005 14:44:48 -0400

Anyone ever wonder why all their security advisories come out for knownissues two years after they have been found?

Anyone ever wonder why they STILL use a vulnerble version of wu ftpd onone of their main servers?


Connected to ftpput.sco.com.
220 artemis FTP server (Version 2.1WU(1)) ready.
Name (ftpput.sco.com:doucheknob):

Move along... nothing to see here but a decrepid OS that no one caresabout.

-KF


James Longstreet wrote:

On Wed, 11 May 2005 please_reply_to_security () sco com wrote:
<snip>

Has anyone ever wondered why SCO's mails come from
please_reply_to_security () sco com?  Why not just make them come from
security () sco com?  Or at least set the Reply-To: field?

Other than preventing spam, is there a greater purpose here that I'm
missing?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison. please_reply_to_security (May 11)
- Re: OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison. James Longstreet (May 11)
  - Re: OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison. KF (lists) (May 11)
    - Re: OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison. Vincent van Scherpenseel (May 11)
    - Re: OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison. KF (lists) (May 11)
  - Re: OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison. shyyqvfpybfher (May 11)