Bugtraq mailing list archives
Re: Sol2.x Mouse EXPLOIT info - CORRECTION
From: newsham () aloha net (Timothy Newsham)
Date: Thu, 19 Jan 1995 10:23:41 -1000 (HST)
Another thing not considered, is that by default under Ultrix all the network tty's are _unsecure_ meaning root cannot log in on them no matter what .rhosts says. Unless you have changed this it is absolutely not possible for this to be a problem.You mean except for "rsh ultrixhost rm -rf /" Remember, with /.rhosts, having unsecure ttys has no effect. --DaveOr instead of rm -rf /, how about using sed to change those ttys to secure to allow you a normal login?
you dont have to jump through hoops:
rm -rf host csh -if
gives you an interactive shell (though no tty). At this point you
can go around changing things at will interactively.
Doug Siebert dsiebert () isca uiowa edu
Current thread:
- Re: Sol2.x Mouse EXPLOIT info - CORRECTION Leo Bicknell (Jan 18)
- Re: Sol2.x Mouse EXPLOIT info - CORRECTION David Barr (Jan 18)
- Re: Sol2.x Mouse EXPLOIT info - CORRECTION Doug Siebert (Jan 18)
- Re: Sol2.x Mouse EXPLOIT info - CORRECTION Timothy Newsham (Jan 19)
- O/S holes Matthew Harding (Jan 19)
- Re: Sol2.x Mouse EXPLOIT info - CORRECTION Doug Siebert (Jan 18)
- Attach on DES paper??? Robert Moskowitz (Jan 18)
- Re: Attach on DES paper??? Perry E. Metzger (Jan 19)
- Re: Attach on DES paper??? Alexander Haiut (Jan 19)
- Re: Sol2.x Mouse EXPLOIT info - CORRECTION Timothy Newsham (Jan 19)
- Re: Sol2.x Mouse EXPLOIT info - CORRECTION David Barr (Jan 18)