Bugtraq mailing list archives
Re: password backdoors
From: szabo_p () maths su oz au (Paul Szabo)
Date: Thu, 11 May 95 12:49:25 +1000
Lyndon (formerly from Rover?) (System Admin <root () sentinet demon co uk>) wrote:
I have an old Apollo box running Domain 10.4.1 and lost the password for root, the only account. ... the HP service engineer said that I should have given him a ring as they have a way to get in ! ... Can anyone enlighten me further into how this would be done
I am sure your HP engineer was just boasting, I am sure there are no 'password backdoors' in Domain/OS. However, Domain/OS (as installed by default) has many other security holes which allow anyone (preferably with physical access) to do anything they like. Even though this is a full disclosure list, I would prefer not to elaborate on how to expoit these holes, but rather point you to a set of scripts which close most (all?) of them: ftp://ftp.maths.su.oz.au/protect/scripts.tar.Z Paul Szabo - System Manager // School of Mathematics and Statistics szabo_p () maths su oz au // University of Sydney, NSW 2006, Australia
Current thread:
- Re: password backdoors Dave Mischler (May 10)
- <Possible follow-ups>
- Re: password backdoors Paul Szabo (May 10)
- Re: password backdoors Rick Weldon (May 11)
- Re: password backdoors Eric Kimminau (May 11)
- Re: password backdoors cmcurtin () clipper cb att com (May 10)
- Re: password backdoors Lee J. Silverman (May 11)
- Re: password backdoors Mark Joseph Crosbie (May 11)
- Re: password backdoors Aleph One (May 11)
- Re: password backdoors Lee J. Silverman (May 11)
- Re: password backdoors Randy Rasmussen (May 11)
- Re: password backdoors Larry Kealey (May 11)
- Re: password backdoors Virantha Mendis (May 12)
- Re: password backdoors H Morrow Long (May 11)
(Thread continues...)