[2783] in Release_7.7_team
Re: AUI security audit
daemon@ATHENA.MIT.EDU (Greg Hudson)
Tue Jun 12 00:53:10 2001
Message-Id: <200106120452.AAA12906@egyptian-gods.MIT.EDU>
To: "andrew m. boardman" <amb@MIT.EDU>
cc: release-team@MIT.EDU
In-Reply-To: Your message of "Mon, 11 Jun 2001 22:27:53 EDT."
<200106120227.WAA01902@pothole.mit.edu>
Date: Tue, 12 Jun 2001 00:52:46 -0400
From: Greg Hudson <ghudson@MIT.EDU>
Well, here is a list of TCP ports which were open on byte-me, a sun4u
machine running 9.0 with mitchb logged in, according to "athinfo
byte-me listeners":
13 daytime
21 ftp
22 ssh
23 telnet
37 time
79 finger
111 sunrpc
544 kshell
811 write
2105 eklogin
2108 rkinit
3715 gshell
6000 X
32771 ???
49155 athinfo
I think port 32771 is probably xscreensaver. So, it looks like Andrew
is correct unless something is listening to a UDP port, and I don't
believe anything GNOMEish does.
So, I think you can take this task off the list as a high-priority
item. There are still local attacks to be concerned about, although
on all platforms except Linux we're hopelessly behind the game there.
