rootshell hacked via ssh-1.2.26

From: Felix von Leitner (leitnerat_private-BERLIN.DE)
Date: Wed Oct 28 1998 - 15:14:58 PST

Next message: Niels Bakker: "Re: nestea v2 against freebsd 3.0-Release"

Previous message: John Horn: "Re: Firewall-1 Security Advisory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On the rootshell home page, there is this notice:

   Rootshell Defaced
   10/28/98 8:44AM PDT On Wed Oct 28th at 5:12AM PST the main Rootshell
   page was defaced by a group of crackers. Entry to the machine was made
   via SSH (secure shell) which is an encrypted interface to the machine
   at 04:57AM PST this morning. Rootshell was first informed of this
   incident at 6:00 AM PST and the site was immediately brought offline.
   The site was back up and operational by 8:00AM PST.

They also mention that they used ssh-1.2.26 (the current version) and
their port 22 is not blocked (presumably firewalled away).

Does anyone have any further info?  This should probably leave a _lot_ of
us quite restless tonight...

Felix

Next message: Niels Bakker: "Re: nestea v2 against freebsd 3.0-Release"
Previous message: John Horn: "Re: Firewall-1 Security Advisory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:21:24 PDT