Re: ftp hijacking
- From: Steve Baker <ice@xxxxxxxxxxxxxxxxx>
- To: technocracy@xxxxxxxxxxxxx
- Date: Tue, 6 Mar 2001 10:22:08 -0500
Jerold Hargis <sigrah@xxxxxxxxxxxxx> writes:
> Is anyone on the list familar with this?
>
> http://www.macintouch.com/ftphijack.html
It's happened to me numerous times. Why 'o why can't FTP installations
come with sane defaults to keep this sort of thing from happening? Well, I
haven't had this kind of problem on slackware for years, but I did recently
have the same problem on Solaris, but we kept using the same FTP area from
the Solaris 2.5 days, so it was probably broken for quite some time.
It's real easy to spot. Your FTP usage shoots way up. Then you go through
the directory tree with my tree program (tree -a, spots em every time) and
delete away. Then you set your perms correctly and you'll never see them
again.
As far as hacks go, ftp hijacking is the most benign. It's also quite fun
to wipe out a whole volume of warze in some 30 seconds that some loser spent
all night uploading. Cathartic even.
- Steve
Other related posts:
