Bugtraq mailing list archives

Re: Internet Worm (fwd)

From: seeger () cis ufl edu (F. L. Charles Seeger III)
Date: Mon, 17 Oct 1994 11:28:59 -0400


+------ Nick Andrew wrote (Sat, 15-Oct-94, 23:58 +1000):
| 
| Better to change the location of the .rhosts file to something which
| the user cannot edit, say /etc/rhosts/username and enforce all changes
| to be done by root. I can change the location of the .rhosts file in
| Linux by editing libc-linux/inet/rcmd.c, function ruserok() and linking
| that into the C shared library. It is good to have the source code :-)

My preference is to leave the .rhosts files in place, but to modify
the library to require that the file be owned by root, be writable
only by owner, and (for less well designed OSes that allow users to
give away files) have the sgid bit set.

Best regards,
Chuck

Current thread:

Re: Internet Worm (fwd) Nick Andrew (Oct 15)
- Re: Internet Worm (fwd) F. L. Charles Seeger III (Oct 17)