|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: UNIX shell modem access vulnerabilities
Steve Bellovin (smb
RESEARCH.ATT.COM)Fri, 29 Jan 1999 08:41:35 -0500
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Brian Hayward: "Re: How the MS Critical Update Notification works..."
- Previous message: wiseleoBEST.COM: "WebTrends Security Analyzer v2.0 now available<WTID-100244707>"
- Maybe in reply to: Marc SCHAEFER: "UNIX shell modem access vulnerabilities"
Problems with tty access not being revoked are not new -- they've occurred for at least 20 years. Circa 1988, I devised a strong solution; however, I was unable to get it into System V in that form. Today, with the advent of several different free UNIX-like systems, it may be worth revisiting the question. See http://www.research.att.com/~smb/papers/sessext.ps (or .pdf) for a description of my work. (Btw -- while I can't guarantee that there are no patent claims lurking around, I did not file anything, and I don't know of anyone else who might claim something.)
- Next message: Brian Hayward: "Re: How the MS Critical Update Notification works..."
- Previous message: wiseleoBEST.COM: "WebTrends Security Analyzer v2.0 now available<WTID-100244707>"
- Maybe in reply to: Marc SCHAEFER: "UNIX shell modem access vulnerabilities"