Bugtraq mailing list archives
Re: Fwd: Re: Login Failures under Solaris 2.7
From: bpowell () ENG SUN COM
Date: Fri, 23 Feb 2001 07:39:20 -0800
okay, a side note just for clarification. Packages like ssh WILL NOT log to loginlog, neither will a back orfice or other shell siting on some bogus port. Only Telnet and Rsh/Rlogin will get logged this way (possibly things like ssh compiled to use /bin/login will work as well) This is a good feature, but doesn't stop a bad-guy only loggs the dumb ones. Anyone wanting to bypass this will just try login four times, break the session and re-establish a new session thus re-setting the count to five again. Honestly folks have your customers use tokens (hard or soft)or One Time Passwords. The whole reuseable replayable password scheme was supposed to be obsolete in 1979 (unix writers figured it would last 10 years, so 1968 +10 with a little fudge of a year = 1979). It is -way- past time we put it to rest for good. Brad
Current thread:
- Login Failures under Solaris 2.7 Ricardo Creisstoff (Feb 21)
- Re: Login Failures under Solaris 2.7 Michael J. Corrigan (Feb 22)
- Re: Login Failures under Solaris 2.7 Edsel Adap (Feb 22)
- <Possible follow-ups>
- Re: Login Failures under Solaris 2.7 Ram Kasturi (Feb 22)
- Re: Login Failures under Solaris 2.7 Vladimir V. Samoilov (Feb 22)
- Fwd: Re: Login Failures under Solaris 2.7 Michael (Feb 22)
- Re: Fwd: Re: Login Failures under Solaris 2.7 bpowell (Feb 23)