randy@chinet.chi.il.us (Randy Suess) (06/09/90)
I just had a root breaking here on chinet. I am running ISC 2.0.2 with smail 3.0. smail 3.0 is setuid root. I believe he broke in via smail. This is a piece of mail that got bounced to postmaster here. Any ideas? From MAILER-DAEMON Fri Jun 8 13:32:55 1990 Return-Path: <MAILER-DAEMON> Received: by chinet.chi.il.us (/\=-/\ Smail3.1.18.1 #18.65) id <m0hdo8c-00024vC@chinet.chi.il.us>; Fri, 8 Jun 90 13:32 CDT Message-Id: <m0hdo8c-00024vC@chinet.chi.il.us> Date: Fri, 8 Jun 90 13:32 CDT From: <MAILER-DAEMON@chinet.chi.il.us> To: Postmaster Subject: mail failed, sending to address owner Reference: <m0hdo8U-00021UC@chinet.chi.il.us> Status: RO |------------------------- Failed addresses follow: ---------------------| "|/tmp/x" ... failed: transport pipe: child returned status EX_1 (1) |------------------------- Message text follows: ------------------------| Received: by chinet.chi.il.us (/\=-/\ Smail3.1.18.1 #18.65) id <m0hdo8U-00021UC@chinet.chi.il.us>; Fri, 8 Jun 90 13:32 CDT Message-Id: <m0hdo8U-00021UC@chinet.chi.il.us> Date: Fri, 8 Jun 90 13:32 CDT From: gandalf (alien life form) To: root hehe -- Randy Suess randy@chinet.chi.il.us
randy@chinet.chi.il.us (Randy Suess) (06/09/90)
Not sure if this got out the first time..... I just had a root breaking here on chinet. I am running ISC 2.0.2 with smail 3.0. smail 3.0 is setuid root. I believe he broke in via smail. This is a piece of mail that got bounced to postmaster here. Any ideas? From MAILER-DAEMON Fri Jun 8 13:32:55 1990 Return-Path: <MAILER-DAEMON> Received: by chinet.chi.il.us (/\=-/\ Smail3.1.18.1 #18.65) id <m0hdo8c-00024vC@chinet.chi.il.us>; Fri, 8 Jun 90 13:32 CDT Message-Id: <m0hdo8c-00024vC@chinet.chi.il.us> Date: Fri, 8 Jun 90 13:32 CDT From: <MAILER-DAEMON@chinet.chi.il.us> To: Postmaster Subject: mail failed, sending to address owner Reference: <m0hdo8U-00021UC@chinet.chi.il.us> Status: RO |------------------------- Failed addresses follow: ---------------------| "|/tmp/x" ... failed: transport pipe: child returned status EX_1 (1) |------------------------- Message text follows: ------------------------| Received: by chinet.chi.il.us (/\=-/\ Smail3.1.18.1 #18.65) id <m0hdo8U-00021UC@chinet.chi.il.us>; Fri, 8 Jun 90 13:32 CDT Message-Id: <m0hdo8U-00021UC@chinet.chi.il.us> Date: Fri, 8 Jun 90 13:32 CDT From: gandalf (alien life form) To: root hehe -randy randy@chinet.chi.il.us -- Randy Suess randy@chinet.chi.il.us