1. Forum
  2. USENET
  3. news.admin.peering

  • Re: URGENT: Security Compromise - DE-PEER novabbs.com infrastructure

    From doctor@doctor@doctor.nl2k.ab.ca (The Doctor) to news.admin.peering on Sat Jun 28 16:34:46 2025
    From Newsgroup: news.admin.peering

    In article <20250628110044.421e145b@ryz.dorfdsl.de>,
    Marco Moock <mm@dorfdsl.de> wrote:
    On 28.06.2025 00:00 Uhr NovaBBS / RockSolid Security Team wrote:

    If you are currently peering with any of these servers, please
    disconnect immediately to protect your systems and users.

    Which security impact does have an infected NNTP server to a peer?

    It can generate any message and offer it to the peer. Where is the real >security problem?


    Possible break in on that node.

    --
    kind regards
    Marco

    Send spam to 1751061600muell@stinkedores.dorfdsl.de

    --
    Member - Liberal International This is doctor@nk.ca Ici doctor@nk.ca
    Yahweh, King & country!Never Satan President Republic!Beware AntiChrist rising! Look at Psalms 14 and 53 on Atheism ;
    All I want to hear from JEsus Christ is WEll done Good and Faithful servant
    --- Synchronet 3.21d-Linux NewsLink 1.2
  • From doctor@doctor@doctor.nl2k.ab.ca (The Doctor) to news.admin.peering on Sat Jun 28 16:35:37 2025
    From Newsgroup: news.admin.peering

    In article <wwvikkgdy82.fsf@LkoBDZeT.terraraq.uk>,
    Richard Kettlewell <invalid@invalid.invalid> wrote:
    Marco Moock <mm@dorfdsl.de> writes:
    On 28.06.2025 00:00 Uhr NovaBBS / RockSolid Security Team wrote:
    If you are currently peering with any of these servers, please
    disconnect immediately to protect your systems and users.

    Which security impact does have an infected NNTP server to a peer?

    It can generate any message and offer it to the peer. Where is the real
    security problem?

    If the adversary is aware of an (undisclosed) vulnerablity in the peerrCOs >NNTP implementation, they could exploit it.

    In this case however the OP hasnrCOt given any detail, nor any explanation >why anyone should listen to them. If theyrCOre the operator of novabbs etc >they could just shut it down themselve. If not then they need to explain
    why any of novabbsrCOs peers should pay attention.

    I donrCOt peer with novabbs but I wouldnrCOt disable a peer just because of >an unauthenticated and unsupported claim on Usenet.


    Something is up.

    --
    https://www.greenend.org.uk/rjk/
    --
    Member - Liberal International This is doctor@nk.ca Ici doctor@nk.ca
    Yahweh, King & country!Never Satan President Republic!Beware AntiChrist rising! Look at Psalms 14 and 53 on Atheism ;
    All I want to hear from JEsus Christ is WEll done Good and Faithful servant
    --- Synchronet 3.21d-Linux NewsLink 1.2