|
|
System administrators at Oregon State University have informed us that one of their main systems was compromised several weeks ago (estimated at Feb. 28, 1999). If you never log in on Oregon State University computers, you can safely disregard the rest of this article. If, however, you have logged in on any OSU systems within the past month, please read on.
OSU administrators are still investigating the incident. They are aware that the intruder had installed, among other things, a program which recorded network traffic, including usernames and passwords, for some systems at OSU. This means that if you logged into any OSU systems within the past month or so, usernames and passwords for any account to which you established a session (telnet, ftp, Eudora, rlogin, ...) may have been captured by the intruder. Any such account is now vulnerable to attack by that intruder.
We have received information on a very limited number of accounts that are known to be vulnerable, and we are contacting the owners of those accounts directly. If you do not hear from us, but you have logged into any OSU systems within the past month, you should still consider yourself vulnerable and you should change your OSU account password(s) promptly.
Users who have not logged into an OSU system since Feb. 27 are probably safe.
For information on changing passwords on OSU accounts, see http://consulting.orst.edu/helpdocs/academic_mainframe or http://osu.orst.edu/dept/consulting/helpdocs/dialing_in/Annex_Password.html ... or contact the OSU consultants (consulting@ucs.orst.edu, 541-737-3474).
For information on changing passwords on UO accounts, see http://cc.uoregon.edu/docs/passwd_policy.html ...or contact a UO consultant at consult@oregon.uoregon.edu, consult@darkwing.uoregon.edu, consult@gladstone.uoregon.edu ... or call 346-1758.