From owner-freebsd-questions Mon Jun 17 11:51:40 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id LAA19067 for questions-outgoing; Mon, 17 Jun 1996 11:51:40 -0700 (PDT) Received: from halloran-eldar.lcs.mit.edu (halloran-eldar.lcs.mit.edu [18.26.0.159]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id LAA19060 for ; Mon, 17 Jun 1996 11:51:35 -0700 (PDT) Received: by halloran-eldar.lcs.mit.edu; (5.65/1.1.8.2/19Aug95-0530PM) id AA02726; Mon, 17 Jun 1996 14:51:34 -0400 Date: Mon, 17 Jun 1996 14:51:34 -0400 From: Garrett Wollman Message-Id: <9606171851.AA02726@halloran-eldar.lcs.mit.edu> To: Branson Matheson Cc: "Chris Lavin" , questions@freebsd.org Subject: Re: Wierdo situation!! In-Reply-To: <199606171844.OAA01729@garion.hq.ferg.com> References: <199606171820.OAA09150@only.justcompute.com> <199606171844.OAA01729@garion.hq.ferg.com> Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk < said: > in /etc/ttys with > ttyd1 "/usr/bin/telnet {othermachine}" unknown on secure > They _WILL_ see a login from the other machine... and the security > implications of using a rsh to accomplish this as init runs as root are tooo > scary. The security implications of allowing random users to get a root shell on the gateway machine by typing `C-] ! RET' are even scarier... -GAWollman -- Garrett A. Wollman | Shashish is simple, it's discreet, it's brief. ... wollman@lcs.mit.edu | Shashish is the bonding of hearts in spite of distance. Opinions not those of| It is a bond more powerful than absence. We like people MIT, LCS, ANA, or NSA| who like Shashish. - Claude McKenzie + Florent Vollant