A partial user-mode tty security fix for SunOS, Ultrix, et al.
Jussi Eloranta
eloranta at jyu.fi
Mon Jun 17 00:53:20 AEST 1991
In article <9657.Jun1316.43.1691 at kramden.acf.nyu.edu> brnstnd at kramden.acf.nyu.edu (Dan Bernstein) writes:
>In the referenced article, Jussi Eloranta presents a patch to telnetd
>meant to stop tty problems under SunOS 4.1.1. Unfortunately, the patch
>doesn't accomplish any more than Sun's patch as announced a while back
>by CERT. Neither patch stops my SunOS 4.1.1 test code, and I don't think
>it's safe to believe that either patch will stop the Dutch hackers for
>long.
>
True. My code expected that the snoop program had the pty as its controlling
terminal but this doesn't need to be true. So not a good patch...
jussi
--
============================================================================
Jussi Eloranta Internet(/Bitnet): ! The ultimate trip is
University of Jyvaskyla, eloranta at tukki.jyu.fi ! death.
Finland [128.214.7.5] ! -- Jim Morrison
More information about the Comp.unix.wizards
mailing list