[35331] in bugtraq
ezmlm warning
daemon@ATHENA.MIT.EDU (bugtraq-help@securityfocus.com)
Thu Jun 17 01:19:29 2004
Date: 16 Jun 2004 23:04:47 -0000
Message-ID: <1087427087.22290.ezmlm-warn@securityfocus.com>
From: bugtraq-help@securityfocus.com
To: bugtraq-redist@mit.edu
Content-type: text/plain; charset=us-ascii
Hi! This is the ezmlm program. I'm managing the
bugtraq@securityfocus.com mailing list.
I'm working for my owner, who can be reached
at bugtraq-owner@securityfocus.com.
Messages to you from the bugtraq mailing list seem to
have been bouncing. I've attached a copy of the first bounce
message I received.
If this message bounces too, I will send you a probe. If the probe bounces,
I will remove your address from the bugtraq mailing list,
without further notice.
I've kept a list of which messages from the bugtraq mailing list have
bounced from your address.
Copies of these messages may be in the archive.
To retrieve a set of messages 123-145 (a maximum of 100 per request),
send an empty message to:
<bugtraq-get.123_145@securityfocus.com>
To receive a subject and author list for the last 100 or so messages,
send an empty message to:
<bugtraq-index@securityfocus.com>
Here are the message numbers:
14557
--- Enclosed is a copy of the bounce message I received.
Return-Path: <>
Received: (qmail 9485 invoked from network); 5 Jun 2004 04:56:23 -0000
Received: from mail.securityfocus.com (205.206.231.9)
by lists2.securityfocus.com with SMTP; 5 Jun 2004 04:56:23 -0000
Received: (qmail 27337 invoked by alias); 5 Jun 2004 10:57:50 -0000
Received: (qmail 27322 invoked from network); 5 Jun 2004 10:57:50 -0000
Received: from outgoing.securityfocus.com (HELO outgoing3.securityfocus.com) (205.206.231.27)
by mail.securityfocus.com with SMTP; 5 Jun 2004 10:57:50 -0000
Received: by outgoing3.securityfocus.com (Postfix)
id 408A32371FA; Sat, 5 Jun 2004 12:52:51 -0600 (MDT)
Date: Sat, 5 Jun 2004 12:52:51 -0600 (MDT)
From: MAILER-DAEMON@securityfocus.com (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: bugtraq-return-14557-bugtraq-redist=mit.edu@securityfocus.com
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
boundary="094C8236FA7.1086461529/outgoing3.securityfocus.com"
Message-Id: <20040605185251.408A32371FA@outgoing3.securityfocus.com>
This is a MIME-encapsulated message.
--094C8236FA7.1086461529/outgoing3.securityfocus.com
Content-Description: Notification
Content-Type: text/plain
This is the Postfix program at host outgoing3.securityfocus.com.
I'm sorry to have to inform you that the message returned
below could not be delivered to one or more destinations.
For further assistance, please send mail to <postmaster>
If you do so, please include this problem report. You can
delete your own text from the message returned below.
The Postfix program
<bugtraq-redist@mit.edu>: host FORT-POINT-STATION.mit.edu[18.7.7.76] said: 553
5.0.0 beader hobo (in reply to end of DATA command)
--094C8236FA7.1086461529/outgoing3.securityfocus.com
Content-Description: Delivery report
Content-Type: message/delivery-status
Reporting-MTA: dns; outgoing3.securityfocus.com
X-Postfix-Queue-ID: 094C8236FA7
X-Postfix-Sender: rfc822; bugtraq-return-14557@securityfocus.com
Arrival-Date: Wed, 2 Jun 2004 21:26:25 -0600 (MDT)
Final-Recipient: rfc822; bugtraq-redist@mit.edu
Action: failed
Status: 4.0.0
Diagnostic-Code: X-Postfix; host FORT-POINT-STATION.mit.edu[18.7.7.76] said:
553 5.0.0 beader hobo (in reply to end of DATA command)
--094C8236FA7.1086461529/outgoing3.securityfocus.com
Content-Description: Undelivered Message
Content-Type: message/rfc822
Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20])
by outgoing3.securityfocus.com (Postfix) with QMQP
id 094C8236FA7; Wed, 2 Jun 2004 21:26:25 -0600 (MDT)
Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm
Precedence: bulk
List-Id: <bugtraq.list-id.securityfocus.com>
List-Post: <mailto:bugtraq@securityfocus.com>
List-Help: <mailto:bugtraq-help@securityfocus.com>
List-Unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
List-Subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
Delivered-To: mailing list bugtraq@securityfocus.com
Delivered-To: moderator for bugtraq@securityfocus.com
Received: (qmail 24420 invoked from network); 2 Jun 2004 12:11:50 -0000
Message-ID: <09754c04ac21ff39162bc597ec7f8d72@>
Date: Wed, 2 Jun 2004 13:30:26 -0500
From: "Jason Munro" <jason@stdbev.com>
Subject: Re: LinkSys WRT54G administration page availble to WAN
To: bugtraq@securityfocus.com
Reply-To: <jason@stdbev.com>
In-Reply-To: <200405311651.i4VGpb5H029835@mx3.rateliff.net>
References: <200405311651.i4VGpb5H029835@mx3.rateliff.net>
X-Mailer: Hastymail 1.1-CVS
MIME-Version: 1.0
Content-type:text/plain; charset=us-ascii
On 11:51:41 am 05/31/04 "Alan W. Rateliff, II" <lists@rateliff.net> wrote:
> Manufacturer: LinkSys (a division of Cisco)
> Product: Wireless-G Broadband Router
> Model: WRT54G
> Product Page:
> http://www.linksys.com/products/product.asp?grid=33&scid=35&prid=601
> Firmware tested: v2.02.7
>
> In a recent client installation I discovered that even if the remote
> administration function is turned off, the WRT54G provides the
> administration web page to ports 80 and 443 on the WAN. The
> implications are obvious: out of the box the unit gives full access
> to its administration from the WAN using the default or, if the user
> even bothered to change it, an easily guessed password.
Testing this issue with a recently purchased WRT54G here showed that while
I can access the web interface on the WAN IP from the LAN behind the
linksys, I can not access it from another location on the WAN side.
\__ Jason Munro
\__ jason@stdbev.com
\__ http://hastymail.sourceforge.net/
--094C8236FA7.1086461529/outgoing3.securityfocus.com--
