[6131] in Kerberos
Re: Telnet vulnerability--shared library loading
daemon@ATHENA.MIT.EDU (Joel Maslak)
Sun Nov 5 00:39:27 1995
To: kerberos@MIT.EDU
Date: 4 Nov 95 20:35:20 MST
From: jmaslak@pobox.com (Joel Maslak)
Lorrie Wood (lorrie@mellers1.psych.berkeley.edu) wrote:
: >ftp://ftp.cymru.net/pub/linux/security/in.telnetd.gz
: It's an a.out binary. The author of the Slackware telnetd, Alan
: Cox, told me this was the fixed one. *shrug*
Try: ftp://ftp.cymru.net/pub/linux/security/in.telnetd.elf.gz
NOTE: THIS IS AN ELF BINARY!!!
Also note that something else changed. I run Slackware 2.3. I used to
have a lengthy login banner that said something to the effect of, "Don't
break into my system." The new telnet does not recognize it.
It does not have the shared library vulnerability (at least as far as I
could determine).
Where's the source for this?
--
Joel Maslak
I am Pentium of Borg.
Division is futile.
You will be approximated.
