Ronald,
I'm afraid I'm not sure what you mean -- the vulnerability, if exploited,
would give someone access to your running server as the "www" user.
It wouldn't give them access as the "root" user, and it has nothing to do
with bootp at all.
(We're talking about the potential for a human to break into your machine;
this isn't like a virus. Even then, there's no known exploit in the wild, so the
probability of a successful attack is very low, and is 0 after following the
instructions in the advisory.)
It sounds as though a machine on your network is issuing bootp requests.
But since SME Server doesn't include a bootp daemon, I don't know what
might be answering bootp requests, unless you've installed a bootp daemon
yourself.
What does this command give you:
ps ww $( fuser 67/tcp | cut -b22-27 )
--Rich
5 Replies
480 Views