Date: Tue, 14 Nov 1995 21:21:16 -0500 (EST) From: Brian Tao <taob@io.org> To: FREEBSD-SECURITY-L <freebsd-security@freebsd.org> Subject: Using telnet as a shell Message-ID: <Pine.BSF.3.91.951114211932.289C-100000@flinch.io.org>
next in thread | raw e-mail | index | archive | help
How safe is the Kerberized telnet client as a shell? I have an
account on one of my machines called "telnet" with no password. It
calls /usr/bin/telnet as the shell. I played with it for about ten
minutes and couldn't find any way to spawn a shell or otherwise gain
unauthorized access to the machine. Have I overlooked something?
--
Brian Tao (BT300, taob@io.org)
Systems Administrator, Internex Online Inc.
"Though this be madness, yet there is method in't"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.951114211932.289C-100000>