SUMMARY: unauthorized access attempt

From: Jake Mahon (jakem@apex.com)
Date: Tue Nov 08 1994 - 19:39:04 CST


I asked about reporting an attempt to access our computing system:

> An attempt was made this morning to exploit a rather well known
> bug to gain access to our business computing platform from an
> account at a remote (and unrelated) site.
>
> I have already contacted postmaster & root at the involved sites,
> but have not yet received a response.
>
> Does protocol or conventional wisdom suggest reporting this attempt
> elsewhere?
 
Although the vulnerability was reported by the CERT advisory CA-93:16
of November 4, 1993, and the attempt was unsuccessful, the consensus
suggests reporting the attempt back to cert@cert.org. I will.

Thanks to: sven@mpim-bonn.mpg.de
           bstrawse@copper.ucs.indiana.edu
           lau@nwnexus.wa.com
           chris@cs.yorku.ca
           stevel@skyhook.airone.claircom.com

jakem@apex.com



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:09:14 CDT