John H. Robinson, IV wrote:
Lan Barnes wrote:
That shellcode then fires off whatever the atacker wants. Oftimes an
identd that will spawn telnetd or something of the like. The attacker
can then log in whenever he wants, as root.
???? A script belonging to apache (at best) fires off inetd? I would be
quite surprised.
Why not? Write your own inetd.conf, but allocate no ports < 1024. Run
your own telnetd on an oddball port. I tend to like 3030 :)
I'm looking for inetd.conf but cannot find it. Where is it?
--
KPLUG-List mailing list
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
