Date: Thu, 28 Mar 2024 11:30:35 -0400 (EDT) Message-ID: <546623915.491.1711639835574@windcrest.sei.cmu.edu> Subject: Exported From Confluence MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_Part_490_660544581.1711639835573" ------=_Part_490_660544581.1711639835573 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Content-Location: file:///C:/exported.html
A complete revision history is at the end of this file.
The Computer Emergency Response Team/Coordination Center (CERT/CC) would= like to alert you to automated tftp probes that have been occurring over t= he last few days. These probes have attacked Internet sites throughout the = world and in most cases the file retrieved was /etc/passwd. However, other = files such as /etc/rc may have been retrieved.
The CERT/CC is working with the site(s) that were used by intruders to l= aunch the attacks. We are actively contacting those sites where we believe = the retrievals were successful. We are urging all sites to carefully check = their system configurations concerning tftp usage.
ULTRIX 4.0 tftp dgram udp nowait /etc/tftpd tftpd -r /tftpboot SunOS 4.1 tftp dgram udp wait root /usr/etc/in.tftpd in.tftpd -s /tftpbootAs in item A. above, inetd must be restarted or forced to read the u= pdated configuration file to make the change effective.=20
Copyright 1991 Carnegie Mellon University.
September 18,1997 Attached Copyright Statement