Bugtraq mailing list archives
Re: Internet Worm
From: isdmill () gatekeeper ddp state me us (David Miller)
Date: Mon, 17 Oct 1994 16:17:55 -0400 (EDT)
On Mon, 17 Oct 1994, Steve Davis wrote:
Various methods of making users' and administrators' lives a pain deleted. Brett Lymn writes:This should stop the user creating a .rhosts file as there is a directory there with that name.Seems to me that we would all be better served by running daemons that don't trust the user to determine valid remote authentication. Why not fix the r-daemons and login to ignore these files? This is certainly possible if a) you have source, and b) you're a competant enough programmer to #ifdef the necessary bits of code into oblivion.
If you're going to do that, why not just remove the services? Take them out of etc/services and inetd.conf and your problems will all go away:) What's that you say? A user can put up the services on his own, just on ports > 1024? DRAT! There's always a catch. :)
Unfortunatly, a) is rarely true. It'd be nice if vendors would ship their products secure. -- Steve Davis <strat () ksu ksu edu> Kansas State University
---------------------------------------------------------------------------- It's *amazing* what one can accomplish when one doesn't know what one can't do!
Current thread:
- Re: Internet Worm, (continued)
- Re: Internet Worm Christine R. Gressley (Oct 17)
- r commands Aleph One (Oct 17)
- Re: r commands Perry E. Metzger (Oct 18)
- Re: r commands Fred Kuhns (Oct 18)
- Re: Internet Worm Bennett Todd (Oct 17)
- PLEASE UNSUBSCRIBE Cpt Danger (Aug 20)
- PLEASE UNSUBSCRIBE ME Mike Roemmich x71633 - ESO (Oct 18)
- Re: Internet Worm Julian Assange (Oct 18)
- PLEASE UNSUBSCRIBE ME Mark McPherson (Oct 17)
- Re: Internet Worm Pat Myrto (Oct 17)
- Re: Internet Worm David Miller (Oct 17)
- PLEASE UNSUBSCRIBE Vatsal P. Sonecha (Oct 17)
- Re: Internet Worm Fred Kuhns (Oct 18)
- Internet Worm Source Code Michael S. Hines (Oct 17)
- rhosts (+ REQUEST SNMP bug) James Seng (Oct 17)
- Re: Internet Worm Icarus Sparry (Oct 18)
- Re: Internet Worm F. L. Charles Seeger III (Oct 18)