Re: Problem with SATAN/VMS

afxibm.de

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Baltzer, Craig: "All.Net's security testing service"
• Previous message: Jonathan Stott: "Re: SATAN ATTACKS EVERYWHERE"
• In reply to: David R. Sears: "Problem with SATAN/VMS"
• Next in thread: Timothy Newsham: "Re: Problem with SATAN/VMS"

SATAN on AIX has a similar problem.
AIX emits a permission denied that the simple test (test -s) doesn't catch

> The bourne shell script 'rsh.satan' falsely reports a vulnerability on 
> hosts that are running DEC VMS 6.1  This is because the OS sends the 
> following message to standard output:
> 
> 	UCX$RSHD - Permission denied - host IP addr
> 
> To fix, just add a test for the above string to the 'if $TEST -s 
> "$tmp_file"' test in 'rsh.satan'.



-- 
Andreas Siegert       afxibm.de / afxbarolo.ak.munich.ibm.com / AFX at IPNET
Every time we've moved ahead in IBM, it was because someone was willing to take
a chance, put his head on the block, and try something new - Thomas Watson, Jr.

• Next message: Baltzer, Craig: "All.Net's security testing service"
• Previous message: Jonathan Stott: "Re: SATAN ATTACKS EVERYWHERE"
• In reply to: David R. Sears: "Problem with SATAN/VMS"
• Next in thread: Timothy Newsham: "Re: Problem with SATAN/VMS"