[ug-bosug] Exploit for Telnet Vulnerability
Ananth Shrinivas
Ananth.Shrinivas at Sun.COM
Wed Feb 28 08:47:19 PST 2007
Hi List,
You *should* have disabled telnet on your solaris systems a few days
back when a vulnerability was reported. If you haven't please do so
*NOW*. A worm that exploits the vulnerability is floating around.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1245630,00.html
"Use ssh instead of telnet" - has been the hoarse cry for many years
now. Please wake up Rip Van Winkles :-)
S10 users who *cannot* replace telnet at any cost, please apply the
appropriate patch from sunsolve:
sparc: 120068-02
x86 : 120069-02
Solaris Express/BeleniX/Nexenta and others:
# svcadm disable telnet
# svcadm enable ssh
Ananth
More information about the ug-bosug
mailing list