From owner-doc-jp@jp.freebsd.org  Tue Jul 31 13:43:23 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id NAA25418;
	Tue, 31 Jul 2001 13:43:23 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from TYO202.gate.nec.co.jp (TYO202.gate.nec.co.jp [202.247.6.41])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id NAA25413
	for <doc-jp@jp.freebsd.org>; Tue, 31 Jul 2001 13:43:22 +0900 (JST)
	(envelope-from hino@nwk.cl.nec.co.jp)
Received: from mailgate4.nec.co.jp ([10.7.69.193])
	by TYO202.gate.nec.co.jp (8.11.3/3.7W01041220) with ESMTP id f6V4hDK27288;
	Tue, 31 Jul 2001 13:43:15 +0900 (JST)
Received: from mailsv.nec.co.jp (mailgate51.nec.co.jp [10.7.69.190]) by mailgate4.nec.co.jp (8.11.3/3.7W-MAILGATE-NEC) with ESMTP
	id f6V4hCK19360; Tue, 31 Jul 2001 13:43:12 +0900 (JST)
Received: from leek.nwk.cl.nec.co.jp (IDENT:cPfTgxfIUSkngKpB8/jNrbcz9PfiMm+o@leek.nwk.cl.nec.co.jp [10.56.32.7]) by mailsv.nec.co.jp (8.11.3/3.7W-MAILSV-NEC) with ESMTP
	id f6V4hBp15729; Tue, 31 Jul 2001 13:43:11 +0900 (JST)
Received: from localhost by leek.nwk.cl.nec.co.jp (8.11.3/NWK_M-20010214) with ESMTP
	id f6V4hAu59054; Tue, 31 Jul 2001 13:43:10 +0900 (JST)
To: doc-jp@jp.freebsd.org
Cc: harada@handm.jp
From: hino@ccm.cl.nec.co.jp
X-In-Reply-To: kiroh@yahoo.co.jp's message of
	"Tue, 31 Jul 2001 13:35:40 +0900 (JST)"
In-Reply-To: <20010731043540.57103.qmail@web112.mail.yahoo.co.jp>
References: <20010731043540.57103.qmail@web112.mail.yahoo.co.jp>
X-Mailer: Mew version 1.93 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <20010731134310U.hino@nwk.cl.nec.co.jp>
Date: Tue, 31 Jul 2001 13:43:10 +0900
X-Dispatcher: imput version 980905(IM100)
Lines: 17
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: doc-jp 8302
Subject: [doc-jp 8302] Re: FreeBSD-SA-01:49
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: hino@nwk.cl.nec.co.jp

>> On Tue, 31 Jul 2001 13:35:40 +0900 (JST), Kiroh HARADA
>> <kiroh@yahoo.co.jp> said:
:> The telnetd service is enabled by default on all FreeBSD installations
:> if the 'high' security setting is not selected at install-time. This
:> vulnerability is known to be exploitable, and is being actively
:> exploited in the wild.

:> telnetd $B%5!<%S%9$O(B, $B%$%s%9%H!<%k;~$K%;%-%e%j%F%#@_Dj$r(B 'high' $B$K@_Dj$7$J(B
:> $B$$8B$j(B, $B$9$Y$F$N(BFreeBSD $B$G%G%U%)%k%H$GF3F~$5$l(B, $BM-8z$K$5$l$F$$$^$9(B. $B$3$N(B
:> $B@H<e@-$O0-MQ2DG=$H$7$FG'<1$5$l(B, $B<B:]$K0-MQ$5$l$F$$$^$9(B. 
                                   ~~~~~~^^^^^^^^$B$9$G$KB??t$N0-MQ$,3NG'$5$l(B

$B0ULu$G$9$,!"6[5^46$r9b$a$k$?$a!D(B

$BB>$O!"$6$C$H$_$?$H$3$mLdBj$r8+$D$1$i$l$^$;$s$G$7$?!#(B

$BF|Ln(B
