Worm/Passwords
John F. Haugh II
jfh at rpp386.Dallas.TX.US
Mon Nov 14 00:41:49 AEST 1988
In article <8869 at smoke.BRL.MIL> gwyn at brl.arpa (Doug Gwyn (VLD/VMB) <gwyn>) writes:
>In article <8563 at rpp386.Dallas.TX.US> jfh at rpp386.Dallas.TX.US (John F. Haugh II) writes:
>>I have been working on a drop-in replacement for login and friends since I
>>learned of the Internet virus.
>
>Why? Your replacement would not have stopped this virus.
I currently don't have any systems running TCP/IP or sendmail. Since the
current front-line attack for UUCP systems is through login, I thought it
would be a great idea.
One other consideration was that in the real world system programmers
don't have the source to all known forms of Unix to play with. Very soon
I hope there will be an infinitely configurable login to use.
>Making life harder for legitimate users does not necessarily
>increase security, and it often achieves the opposite effect.
And please examine the code before being so critical. Several of the new
[ cloned, rather ] features do not inconvenience the user.
--
John F. Haugh II +----Make believe quote of the week----
VoiceNet: (214) 250-3311 Data: -6272 | Nancy Reagan on Artifical Trish:
InterNet: jfh at rpp386.Dallas.TX.US | "Just say `No, Honey'"
UucpNet : <backbone>!killer!rpp386!jfh +--------------------------------------
More information about the Comp.unix.wizards
mailing list