[Samba] Huh... 2.2.8 exploit?!

Jeremy Allison jra at samba.org
Mon Jun 30 17:07:41 GMT 2003


On Mon, Jun 30, 2003 at 06:08:02PM +0200, Vizitiu, Ciprian wrote:
> 
> ... By my mistake a 2.2.8a-1 running on RH8 was exposed to the Internet. It
> was cracked in a matter of hours. I noticed it because they've deleted my
> smbd. :-| 
> 
> I'm ready to reinstall the machine, if there are any logs that anybody is
> interested into please say it now. 

Were there any other ports open ? We are not aware of any securty holes
in 2.2.8a (and one of the Samba Team who is a member of ISS has been
testing it on an open Internet connected machine for many weeks now).

Jeremy.



More information about the samba mailing list