Bugtraq mailing list archives

Re: [linux-security] [8lgm]-Advisory-26.UNIX.rdist.20-3-1996

From: shields () crosslink net (Michael Shields)
Date: Fri, 5 Jul 1996 15:01:44 +0000


At 1996-07-04 18:10 +0000, Jeff Uphoff wrote:

Anyone care to take a look at other Linux distributions to check for
default installations that are configured for setuid/rcmd()?


Debian is clean -- both 0.93R6 and 1.1 install it without setuid.

--
Shields, CrossLink.

Current thread:

[linux-security] [8lgm]-Advisory-26.UNIX.rdist.20-3-1996 Jeff Uphoff (Jul 04)
- Re: [linux-security] [8lgm]-Advisory-26.UNIX.rdist.20-3-1996 Michael Shields (Jul 05)
- CERT Advisory CA-96.13 - Vulnerability in the dip program CERT Advisory (Jul 09)
  - Re: CERT Advisory CA-96.13 - Vulnerability in the dip program Efrain Torres (Jul 09)
  - FIRST Conference & Workshop Plans Ron Freund (Jul 09)
  - rdist exploit [bsdi] Brian Mitchell (Jul 09)
    - Re: rdist exploit [bsdi] Brian Tao (Jul 11)
    - Re: rdist exploit [bsdi] Damien Sorder (Jul 11)
    - Re: rdist exploit [bsdi] jaeger (Jul 12)
    - Re: rdist exploit [bsdi] Andrew N. Edmond (Jul 13)
    - Re: rdist exploit [bsdi] Andy Dills (Jul 13)
    - Re: rdist exploit [bsdi] Brian Tao (Jul 14)

(Thread continues...)