From owner-freebsd-security  Mon Jul 28 17:31:10 1997
Return-Path: <owner-freebsd-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id RAA16848
          for security-outgoing; Mon, 28 Jul 1997 17:31:10 -0700 (PDT)
Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA16821
          for <security@FreeBSD.ORG>; Mon, 28 Jul 1997 17:30:57 -0700 (PDT)
Received: from orion.webspan.net (orion.webspan.net [206.154.70.5])
          by mail.webspan.net (WEBSPAN/970608) with ESMTP id UAA24556;
          Mon, 28 Jul 1997 20:30:56 -0400 (EDT)
Received: from orion.webspan.net (localhost [127.0.0.1])
          by orion.webspan.net (WEBSPAN/970608) with ESMTP id UAA06591;
          Mon, 28 Jul 1997 20:30:55 -0400 (EDT)
To: "Jonathan A. Zdziarski" <jonz@netrail.net>
cc: security@FreeBSD.ORG
From: "Gary Palmer" <gpalmer@FreeBSD.ORG>
Subject: Re: security hole in FreeBSD 
In-reply-to: Your message of "Mon, 28 Jul 1997 15:54:26 -0000."
             <Pine.BSF.3.95q.970728155311.12468B-100000@netrail.net> 
Date: Mon, 28 Jul 1997 20:30:55 -0400
Message-ID: <6589.870136255@orion.webspan.net>
Sender: owner-freebsd-security@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

"Jonathan A. Zdziarski" wrote in message ID
<Pine.BSF.3.95q.970728155311.12468B-100000@netrail.net>:
> I'm a little paranoid, as somebody hacked our syste about a month ago and
> said he would do it again.  Where is the source code for /bin/login?  I've
> checked /usr/src, the only thing I find is
> /usr/src/contrib/cvs/src/login.c and contrib/opie/libopie/login.c, but
> that doesn't seem right.

/usr/src/usr.bin/login

Gary
--
Gary Palmer                                          FreeBSD Core Team Member
FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info