Bugtraq mailing list archives

HP/UX 10.01 Remote Administration accoun

From: Matt_Barrie () oti com (Matt Barrie SYD)
Date: Tue, 16 Jul 1996 22:10:42 -0600


Yep, under hpux 10.01 sam adds the following to the passwordfile on
a system to be remotely administered:

sam_exec:SA/pD6P1YPzaE:0:1::/home/sam_exec:/usr/bin/sh

This was accomplished by adding localhost to the machines to be
administered using its ip number (it recognised the hostname as itself).

I tried "Yosemite" and "yosemite" but it looks like they've changed
the remote password. I don't have crack on me now, but I'm sure someone
on this list will be able to figure out what it is.

matt

Current thread:

Re: brute force Jacob Langseth (Jul 10)
- Re: brute force Buckaroo Banzai (Jul 16)
- Holly Wars Aleph One (Jul 16)
- [linux-security] sliplogin (fwd) Paul Danckaert (Jul 16)
  - Re: [linux-security] sliplogin (fwd) Nate Williams (Jul 16)
  - HP/UX 10.01 Remote Administration accoun Matt Barrie SYD (Jul 16)
  - locate Ian Otsane (Jul 16)
    - Re: locate Christian Limpach (Jul 17)
  - FreeBSD Security Advisory 96:17 - rzsz FreeBSD Security Officer (Jul 17)
  - FreeBSD Security Advisory 96:16 - rdist FreeBSD Security Officer (Jul 17)