Re: New stable version after Sarge

To: debian-devel@lists.debian.org
Subject: Re: New stable version after Sarge
From: Josh Metzler <joshdeb@metzlers.org>
Date: Wed, 5 Jan 2005 11:05:24 -0500
Message-id: <[🔎] 200501051105.25059.joshdeb@metzlers.org>
In-reply-to: <[🔎] 20050104225803.GS32415@mx0.halon.org.uk>
References: <[🔎] 41DA9CC1.1080509@vandervlis.nl> <1104868722.41daf572a3a46@familiasanchez.net:443> <[🔎] 20050104225803.GS32415@mx0.halon.org.uk>

On Tuesday 04 January 2005 05:58 pm, Neil McGovern wrote:
> Recently, I did have a box rooted. This was due to a user running phpbb
> on the system, without me knowing, despite the policy of no software
> without clearance from me.

My I ask, how did the attacker get root?  Did the user have root access that 
was used to install phpbb, or was a local exploit used once the user's 
account was compromised?

Josh

Reply to:

References:
- New stable version after Sarge
  - From: Paul van der Vlis <paul@vandervlis.nl>
- Re: New stable version after Sarge
  - From: roberto@familiasanchez.net
- Re: New stable version after Sarge
  - From: Neil McGovern <maulkin@halon.org.uk>

Prev by Date: Bug#288769: ITP: cedilla -- ascii to postscript renderer
Next by Date: Re: RFS tag?
Previous by thread: Re: New stable version after Sarge
Next by thread: Re: New stable version after Sarge
Index(es):
- Date
- Thread