[142] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Weirdness in Sunos 4.1.3ui/ a cracker in the libs?

daemon@ATHENA.MIT.EDU (Gene Spafford)
Tue Nov 1 14:02:53 1994

To: Charles Howes <chowes@helix.net>
Cc: bugtraq@fc.net
In-Reply-To: Message from Charles Howes <chowes@helix.net>  of
    "Mon, 31 Oct 1994 23:10:52 -0800"
    <Pine.SUN.3.90.941031225829.1381J-100000@trance.helix.net> 
Date: Tue, 01 Nov 1994 11:02:46 -0500
From: spaf@cs.purdue.edu (Gene Spafford)

Those open UDP ports are most probably connections for the syslog.
For a process to send UDP packets, it needs to open a UDP socket.
Once "openlog" runs, it opens a socket for later use.  

I saw "probably" because it is always possible that someone has
subverted the code and is using the socket for more than syslog, but
that would be far more clever than anything I've ever seen a real
intruder do.

--spaf


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[142] in bugtraq

Re: Weirdness in Sunos 4.1.3ui/ a cracker in the libs?

daemon@ATHENA.MIT.EDU (Gene Spafford)Tue Nov 1 14:02:53 1994

daemon@ATHENA.MIT.EDU (Gene Spafford)
Tue Nov 1 14:02:53 1994