Path: utzoo!utgpu!news-server.csri.toronto.edu!rutgers!usc!zaphod.mps.ohio-state.edu!mips!smsc.sony.com!dce
From: dce@smsc.sony.com (David Elliott)
Newsgroups: comp.unix.questions
Subject: Re: How secure is UNIX?
Keywords: Security, ftp
Message-ID: <1990May28.162258.21924@smsc.sony.com>
Date: 28 May 90 16:22:58 GMT
References: <100928@<1990May23> <9000030@m.cs.uiuc.edu> <1990May28.102235.10021@agate.berkeley.edu>
Reply-To: dce@Sony.COM (David Elliott)
Organization: Sony Microsystems Corp.
Lines: 23

In article <1990May28.102235.10021@agate.berkeley.edu> dankg@ocf.Berkeley.EDU (Dan Kogai) writes:
>In article <9000030@m.cs.uiuc.edu> carroll@m.cs.uiuc.edu writes:
>>in it. Does FTP check for .netrc specially? If not, then this seems to
>>claim that you ftp'd the .netrc and it was that copy that was used,
>>not your 600 .netrc.
>
>	It might be system dependent but ALL ftp I know refuses to use
>.netrc with wrong mode.

Hold on, Dan.  I think that carrol@m.cs.uiuc.edu is asking "when going
a get or a put, does ftp check for .netrc specially".  That is, is it
possible that you did a get/put of everything in a directory, and
that your .netrc got copied to a new place without being protected?

This is what the note you found implied to me as well -- that the
"rapist" found a file called .netrc that wasn't mode 0600, and got
your password from that file.

-- 
David Elliott
dce@smsc.sony.com | ...!{uunet,mips}!sonyusa!dce
(408)944-4073
"If I had a hat the size of Oklahoma, I'd be a happy person."