Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Solaris telnet vulnerability - how many on your network?

From: Graham Reed <greed () pobox com>
Date: Tue, 13 Feb 2007 15:53:28 -0500
Brad_Powell () amat com writes:

Of course disabling in.telnetd in /etc/inetd.conf (and doing a pkill -HUP 
inetd) if possible is a safe bet,


Or, going with Solaris 10's 'SMF' thing: 

% svcadm disable svc:/network/telnet 

And, while you're at it, 

% svcadm disable svc:/network/shell:default
% svcadm disable svc:/network/login:rlogin 

(See man pages for in.telnetd, in.rshd, and in.rlogind.) 

At least one machine I run doesn't have the usual /etc/inetd.conf. 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: