Subject: Re: NetBSD-3.1 was attacked: Bug of SSHD or cyrus-sasl?
To: Gavan Fantom <>
From: Andy Ruhl <>
List: tech-pkg
Date: 01/12/2007 10:05:33
On 1/12/07, Gavan Fantom <> wrote:
> Unless your box was severely hardened against malicious local users, you
> really should consider it rooted once a local account is compromised.

It's not me, it's another guy. I was just chiming in which maybe was a
bad idea...

But still, I find it difficult to believe how quickly people assume
the box is rooted just because a user account was compromised. Is it
really that easy to get root on NetBSD? Or is it just simply unknown
how many compromises there are?