Path: utzoo!censor!comspec!lethe!torsqnt!news-server.csri.toronto.edu!bonnie.concordia.ca!clyde.concordia.ca!nstn.ns.ca!news.cs.indiana.edu!samsung!rex!uflorida!novavax!ankh!branch!tree!wcr
From: wcr@tree.metrolink.com (W.c. Rothanburg)
Newsgroups: comp.unix.sysv386
Subject: Re: SECURITY BUG IN INTERACTIVE UNIX SYSV386
Message-ID: <WCR.91Feb14012138@tree.tree.metrolink.com>
Date: 14 Feb 91 01:21:38 GMT
References: <KR3NBQQ@dobag.in-berlin.de> <1991Feb11.184130.11321@jwt.UUCP>
	<1991Feb12.020625.6779@kithrup.COM> <529@jahangir.UUCP>
	<6A5NSZK@dobag.in-berlin.de>
Sender: wcr@tree.metrolink.com
Organization: From the Branch Office.305-979-2073
Lines: 34
In-reply-to: lumpi@dobag.in-berlin.de's message of 12 Feb 91 22:52:49 GMT

In article <6A5NSZK@dobag.in-berlin.de> lumpi@dobag.in-berlin.de (Joern Lubkoll) writes:

   marc@jahangir.UUCP (Marc Rossner) writes:

   >> In article <1991Feb11.184130.11321@jwt.UUCP> john@jwt.UUCP (John Temples) writes:
   >> >Yikes.  This also works on ESIX-D without a coprocessor, and on ISC 2.0.2
   >> >*with* a coprocessor.  It failed on Microport 2.2 with a coprocessor.
   >> >Now, the question is, what do we do to protect ourselves in the meantime?
   >Works like a charm on ISC 2.2 with a 486 -- good thing the only people
   >over here that read this newsgroup already know the root password.
   >"Feature", indeed!  Hope ISC hears a lot about this, if anyone can ever
   >get past the 15 minutes it takes their telephone guy to locate you in his
   >files before he'll let you discuss anything real.
   Set UAREAUS and UAREARW to zero and it won't work any more !
   But this works onlu on ISC 2.2 and not on 2.02. No 2.02 system can be 
   protected !

The only problem with setting UAREAUS and UAREAW to zero is you
cannot do any floating point operations without a co-processor.  
(I don't have a co-processor to try it with... <sigh>)

We (at Metro Link) have found the AT&T Unix/386 appears to have the
same problem.  (I heard this second hand and don't know from whom.)  

Bill

--
Who  : Metro Link, Inc.
What : X11.R4. for ISC Unix 386/ix, SCO Unix/386, and Everex ESIX
Where: 2213 West Mc Nab Road, Pompano Beach,FL 33069
Sales: sales@metrolink.com
Email: wcr@metrolink.com
Phone: +1 305 970 7353 x927
Fax  : +1 305 970 7351