Security Incidents: Re: A friend's cable modem Linux machine just got compromised

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: A friend's cable modem Linux machine just got compromised

From: Sam Trenholme <abiword_bugs () yahoo com>
Date: Wed, 1 May 2002 15:39:26 -0500 (CDT)

xntps on the sun box was a mstream client if I
remember.


xntps here seems to be a hybrid between the NTP
(network time protocol) server and version 1.2.27 of
the ssh server; running strings on the offending
binary shows the various login and authentication
strings that ssh uses.

- Sam


_________________________________________________________
Do You Yahoo!?
La emoción e intensidad del deporte en Yahoo! Deportes. http://deportes.yahoo.com.mx

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

By Date By Thread

Current thread:

A friend's cable modem Linux machine just got compromised Sam Trenholme (May 01)
- Re: A friend's cable modem Linux machine just got compromised Jason Robertson (May 01)
  - Re: A friend's cable modem Linux machine just got compromised Sam Trenholme (May 02)
  - Re: A friend's cable modem Linux machine just got compromised William N. Zanatta (May 02)