[Full-disclosure] Solaris telnet vulnerability - how many on your network?
Graham Reed
greed at pobox.com
Tue Feb 13 20:53:28 GMT 2007
Brad_Powell at amat.com writes:
> Of course disabling in.telnetd in /etc/inetd.conf (and doing a pkill -HUP
> inetd) if possible is a safe bet,
Or, going with Solaris 10's 'SMF' thing:
% svcadm disable svc:/network/telnet
And, while you're at it,
% svcadm disable svc:/network/shell:default
% svcadm disable svc:/network/login:rlogin
(See man pages for in.telnetd, in.rshd, and in.rlogind.)
At least one machine I run doesn't have the usual /etc/inetd.conf.
Full-Disclosure is hosted and sponsored by Secunia.