Re: strange log entry

To: debian-security@lists.debian.org
Subject: Re: strange log entry
From: Jacob Meuser <jakemsr@clipper.net>
Date: Thu, 24 May 2001 01:34:01 -0700
Message-id: <20010524013401.A30567@funk.meus0002.clipper.net>
In-reply-to: <GCEGLPFGDCACHENIJHDDCEPECCAA.blacknet@phenixcable.net>; from blacknet@phenixcable.net on Thu, May 24, 2001 at 01:24:50AM -0400
References: <200105240507.PAA17435@new-smtp1.ihug.com.au> <GCEGLPFGDCACHENIJHDDCEPECCAA.blacknet@phenixcable.net>

On Thu, May 24, 2001 at 01:24:50AM -0400, Ed Street wrote:
> Hello,
> 
> Well first off WHY are you running the rpc stuff?  (i.e. I can root a redhat
> 6.x box in under 30 seconds with a rpc exploit from a clean install)  Turn
> that stuff OFF.
> 
Not to start a thread discussing OSes, but ...

OpenBSD ships with rstatd and ruserd enabled by default and according to
http://www.openbsd.org/

    "Four years without a remote hole in the default install!"

Which begs the question, especially since the *BSD's release their
sources under BSD style liscenses, why does rpc remain a security problem
in Linux?  Is it the kernel?  Is it the rpc code?

Simply curious,
<jakemsr@clipper.net>

Reply to:

Follow-Ups:
- Re: strange log entry
  - From: Ethan Benson <erbenson@alaska.net>
- Re: strange log entry
  - From: "Noah L. Meyerhans" <frodo@morgul.net>
- RE: strange log entry
  - From: "Ed Street" <blacknet@phenixcable.net>

References:
- strange log entry
  - From: trev26@ihug.com.au
- RE: strange log entry
  - From: "Ed Street" <blacknet@phenixcable.net>

Prev by Date: Re: strange log entry
Next by Date: Re: strange log entry
Previous by thread: RE: strange log entry
Next by thread: Re: strange log entry
Index(es):
- Date
- Thread