RedHat's RealServer.

From: Jason Aras (jarasat_private)
Date: Fri Sep 18 1998 - 14:03:47 PDT

Next message: Brandon Reynolds: "Re: Incorrect Linux ARP behavior"

Previous message: Shawn Hernan: "Re: exploit for CERT advisory CA-98.11?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I have not seen this posted anywhere, but if I am wrong just drop it.

On a default RedHat Install that includes the Real Server from progressive
networks, there is a default password in the config file.  This isnt a
problem _IF_ you know what your looking for.  If you are not an
experienced sysadmin you will most likely not be looking for something
like this.  All a person can do is upload files and get control over the
real server (such as monitor it and watch who is connected)  I don't know
of this can lead to any more destruction, though the server is running as
root.


Jason Aras

Next message: Brandon Reynolds: "Re: Incorrect Linux ARP behavior"
Previous message: Shawn Hernan: "Re: exploit for CERT advisory CA-98.11?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:16:48 PDT