Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!wuarchive!usc!apple!agate!ucbvax!remus.ee.byu.edu!jlol
From: jlol@remus.ee.byu.edu (Jay Lawlor)
Newsgroups: comp.sys.hp
Subject: Security hole in HP-UX
Message-ID: <9102231724.AA05268@ucbvax.Berkeley.EDU>
Date: 23 Feb 91 17:24:00 GMT
Sender: usenet@ucbvax.BERKELEY.EDU
Reply-To: jlol@ee.byu.edu
Lines: 10

>>>>> On 20 Feb 91 13:57:33 GMT, ton@let.rug.nl (Ton Roovers) said:


Ton> Some months ago I converted our HP-UX 7.0 systems to 'secure systems'.
Ton> Only last week one of 'my' users discovered (by pure accident), that
Ton> by making a mistake in entering his username (in login) he was logged
Ton> in as ROOT! (I think it is not wise to state the exact procedure here).

Yeah, we ran into this under 6.5.  Our solution?  Reinstall and don't
convert to a secure system.  It was much more secure that way. :)


Brought to you by Super Global Mega Corp .com