Bugtraq mailing list archives
? Trojan /usr/bin/false ?
From: pbjeremy () idiom com (Jeremy Brinkley)
Date: Thu, 25 Jul 1996 15:14:18 -0700
Replacing the default shell with /usr/bin/false (or /bin/false or whatever) is a common simple security reccommendation. Has anyone heard of somebody replacing /usr/bin/false with a Trojan version to gain access to the non-account accounts (adm, lp, bin, etc...)? -- /------------------------|------------------------\ | Jeremy Brinkley | Peninsula Blood Bank | | I.S. Assistant | 1791 El Camino Real | | pbjeremy () idiom com | Burlingame, CA 94010 | | (415) 697 5164 | FAX (415) 697 4332 | \------------------------|------------------------/
Current thread:
- bin owned system files Robert E. Adams (Jul 25)
- ? Trojan /usr/bin/false ? Jeremy Brinkley (Jul 25)
- Re: ? Trojan /usr/bin/false ? Elliot Lee (Jul 25)
- Re: bin owned system files Gene Spafford (Jul 25)
- Re: bin owned system files Colin Jenkins (Jul 26)
- Re: bin owned system files Gene Spafford (Jul 26)
- Re: bin owned system files Jungseok Roh (Jul 26)
- <Possible follow-ups>
- Re: bin owned system files William McVey (Jul 26)
- Re: bin owned system files dsiebert () icaen uiowa edu (Jul 26)
- Re: bin owned system files Bruce Barnett (Jul 26)
- ? Trojan /usr/bin/false ? Jeremy Brinkley (Jul 25)