Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!henry
From: henry@utzoo.UUCP (Henry Spencer)
Newsgroups: net.unix-wizards
Subject: Re: deceptive mail
Message-ID: <4632@utzoo.UUCP>
Date: Tue, 13-Nov-84 15:39:03 EST
Article-I.D.: utzoo.4632
Posted: Tue Nov 13 15:39:03 1984
Date-Received: Tue, 13-Nov-84 15:39:03 EST
References: <331@uvm-cs.UUCP> <45@uwvax.UUCP>, <221@turing.UUCP>
Organization: U of Toronto Zoology
Lines: 12

> It is even worse: if you are working at a terminal, somebody comes along
> and in order to show you something logs in recursively: (login x)
> then after his login process has finished your identity will be reported
> as x by programs like who and routines like getlogin().

This should not be a staggering surprise; the login operation is not
recursive, and trying to use it that way is obviously a disaster in the
making.  The correct approach to this particular problem is to fix login
to recognize, and reject, attempts at recursive logins.
-- 
				Henry Spencer @ U of Toronto Zoology
				{allegra,ihnp4,linus,decvax}!utzoo!henry