Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1994_1

Bugtraq archives for 1st quarter (Jan-Mar) 1994: utmp

utmp

Aleph One (hbcsc009huey.csun.edu)
Tue, 22 Mar 94 6:31:53 PST

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Stan Barber: "Re: NFS problems"
Previous message: Pat Myrto: "NFS problems"
Next in thread: H Morrow Long: "Re: utmp"

Hmm, anyone can explain a bit more the recent CERT advisory on /etc/utmp.
I assume the attakers where able to obtain root by fooling programms that
only use the information in /etc/utmp for authentication, instead of
calling for the users user id  and real user id. anyone mind extending
this description...

Next message: Stan Barber: "Re: NFS problems"
Previous message: Pat Myrto: "NFS problems"
Next in thread: H Morrow Long: "Re: utmp"