[rescue] Solaris 10 Remote-Root Exploit

Magnus magnus at yonderway.com
Wed Feb 14 08:57:21 CST 2007

Jonathan C. Patschke wrote:

> If you have any public-facing systems running Solaris's telnetd, you
> should disable it now. 

Some would argue it never should have been enabled in the first place.

> Even turning off remote root logins is
> insufficient, since this seems to bypass PAM.

This is a new feature in Solaris 10 called the "Foot Gun".

More information about the rescue mailing list