Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: selection_svc exploit?James Beckett (James.Beckettisltd.insignia.com)
Mon, 03 Apr 1995 20:30:38 BST
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: John F. Haugh II: "Re: SUMMARY: Dropping YP (DBM passwd, shadow and netgroups?)"
- Previous message: Tom 'moof' Spindler: "Re: Network Monitoring and Control (announcement)"
James Bonfield wrote: >Well I've got some code that's been kicking around for years (5 or so maybe), >that exploits a Sunview selection_svc problem. I doubt if it's the same bug as Good grief that's ancient! Did it ever work? Hmm. Now I think about it, it did.. I remember selection_svc used to hang around running as root, whether because it always ran as root or because it didn't die when the previous person logged out I'm not sure... it would also blithely read directory info too. >Anyway, thanks to James Beckett (Hiya James!) from whom I snarfed this code >oh so long ago. I would leave it up to James to post this code, but I >have a feeling he may not have it anymore. Oh I have, I have.... only it's on a cracked and faded reel-to-reel tape dump that just doesn't fit in the QIC drive, even if you fold it. James -- The human mind is like a knife, and the most dangerous knives are dull ones.