[144] in bugtraq
Re: Weirdness in Sunos 4.1.3ui/ a cracker in the libs?
daemon@ATHENA.MIT.EDU (Karl Strickland)
Tue Nov 1 21:21:13 1994
From: Karl Strickland <karl@bagpuss.demon.co.uk>
To: spaf@cs.purdue.edu (Gene Spafford)
Date: Wed, 2 Nov 1994 00:49:29 +0000 (GMT)
Cc: chowes@helix.net, bugtraq@fc.net
In-Reply-To: <199411011602.LAA00833@uther.cs.purdue.edu> from "Gene Spafford" at Nov 1, 94 11:02:46 am
>
> Those open UDP ports are most probably connections for the syslog.
> For a process to send UDP packets, it needs to open a UDP socket.
> Once "openlog" runs, it opens a socket for later use.
>
> I saw "probably" because it is always possible that someone has
> subverted the code and is using the socket for more than syslog, but
> that would be far more clever than anything I've ever seen a real
> intruder do.
Well, maybe the 'really clever' stuff is that which you dont see. :-)
------------------------------------------+-----------------------------------
Mailed using ELM on FreeBSD | Karl Strickland
PGP 2.3a Public Key Available. | Internet: karl@bagpuss.demon.co.uk
|
