Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1994_2

Bugtraq archives for 2nd quarter (Apr-Jun) 1994: Re: AIX rlogind

Re: AIX rlogind

Kevin Johnson (kjjpondscum.phx.mcd.mot.com)
Sun, 22 May 1994 08:02:05 -0700 (MST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Casper Dik: "Re: AIX rlogind"
Previous message: Peter Wemm: "Re: AIX rlogind"
In reply to: Peter Wemm: "Re: AIX rlogind"
Next in thread: Casper Dik: "Re: AIX rlogind"

> It seems that just about every system that has installed the "shadow"
> password suite (the free version from John F. Haugh II. It was posted
> on comp.sources.unix from memory.) is vulnerable with this.

Hmmm... I can't seem to reproduce it with Haugh's shadow passwd package.

The arg processing in lmain.c uses getopt.
Is it a bug in some implementations of getopt?  Or are you testing an
older version of the package than I have source code for (it appears to
be 3.3)?

--
#include <std_disclaimer>
"Frank Zappa is dead - the world is a duller shade of gray" - me
.-----------------------------------------------------------------------------.
| Kevin Johnson                                           kjjphx.mcd.mot.com |
| Information Technologies Network Administrator  Motorola MCG                |
| MCG postmaster, MCG Network Security Administrator                          |

Next message: Casper Dik: "Re: AIX rlogind"
Previous message: Peter Wemm: "Re: AIX rlogind"
In reply to: Peter Wemm: "Re: AIX rlogind"
Next in thread: Casper Dik: "Re: AIX rlogind"