Security Incidents mailing list archives

Re: Linuxconf scanning

From: Jon Lewis <jlewis () LEWIS ORG>
Date: Thu, 24 Aug 2000 22:33:13 -0400

On Thu, 24 Aug 2000 lamont () icopyright com wrote:

Somewhere out there is a response from the Linuxconf author that he
couldn't get that exploit to work and doesn't believe any 6.x version was
vulnerable.  I can't find the response in google though.


That the maintainer can't make published exploit code work doesn't mean a
whole lot.  That large numbers of script kids are scanning, sometimes just
for linuxconf, doesn't mean it's insecure, but it should worry you.

----------------------------------------------------------------------
 Jon Lewis *jlewis () lewis org*|  I route
 System Administrator        |  therefore you are
 Atlantic Net                |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________

Current thread:

Linuxconf scanning Ian Eure (Aug 08)
- Re: Linuxconf scanning jeff keith (Aug 09)
- Re: Linuxconf scanning James Hoagland (Aug 09)
  - Re: Linuxconf scanning Dan Hollis (Aug 10)
- <Possible follow-ups>
- Re: Linuxconf scanning Frank Dauer (Aug 09)
- Re: Linuxconf scanning Brian Sommers (Aug 13)
  - Re: Linuxconf scanning Jim Roland (Aug 14)
    - Re: Linuxconf scanning Granquist, Lamont (Aug 22)
- Re: Linuxconf scanning Granquist, Lamont (Aug 24)
  - Re: Linuxconf scanning Jon Lewis (Aug 24)
- Re: Linuxconf scanning St. Arnaud, Jon (Aug 25)