[144] in resnet
Major security loophole in Linux Slackware 1.1.1
daemon@ATHENA.MIT.EDU (Erik Nygren)
Sat Jan 22 05:26:34 1994
To: resnet@MIT.EDU, linux-help@MIT.EDU, linux-dev@MIT.EDU, macg-resnet@MIT.EDU
Date: Sat, 22 Jan 94 05:24:39 EST
From: Erik Nygren <nygren@MIT.EDU>
A major security loophole exists in Slackware 1.1.1 by default
that will allow ANYONE to telnet in to your computer remotely
without a password.
To fix the problem, type:
chown -R root /home/ftp
This changes all of the files in /home/ftp to be owned by root,
not by ftp as they are by default.
If you know other people running Slackware who aren't on this list,
please tell them to do so as well. Remember that nothing is secure!
--- Erik Nygren
___________________________________________________________________________
The most exciting phrase to hear in | Erik L. Nygren
science, the one that heralds new |
discoveries, is not "Eureka!" (I've | VOICE: 617/225-9395
found it!) but "That's funny ..." |
-- Isaac Asimov | EMAIL: <nygren@mit.edu>
