Date: Mon, 17 Jun 1996 14:51:34 -0400 From: Garrett Wollman <wollman@lcs.mit.edu> To: Branson Matheson <branson@widomaker.com> Cc: "Chris Lavin" <chrisl@bbs.justcompute.com>, questions@freebsd.org Subject: Re: Wierdo situation!! Message-ID: <9606171851.AA02726@halloran-eldar.lcs.mit.edu> In-Reply-To: <199606171844.OAA01729@garion.hq.ferg.com> References: <199606171820.OAA09150@only.justcompute.com> <199606171844.OAA01729@garion.hq.ferg.com>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Mon, 17 Jun 1996 14:44:41 -0400, Branson Matheson <branson@widomaker.com> said:
> in /etc/ttys with
> ttyd1 "/usr/bin/telnet {othermachine}" unknown on secure
> They _WILL_ see a login from the other machine... and the security
> implications of using a rsh to accomplish this as init runs as root are tooo
> scary.
The security implications of allowing random users to get a root shell
on the gateway machine by typing `C-] ! RET' are even scarier...
-GAWollman
--
Garrett A. Wollman | Shashish is simple, it's discreet, it's brief. ...
wollman@lcs.mit.edu | Shashish is the bonding of hearts in spite of distance.
Opinions not those of| It is a bond more powerful than absence. We like people
MIT, LCS, ANA, or NSA| who like Shashish. - Claude McKenzie + Florent Vollant
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9606171851.AA02726>