Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 9/18/84; site ut-sally.UUCP
Path: utzoo!linus!philabs!cmcl2!seismo!ut-sally!jsq
From: jsq@ut-sally.UUCP (John Quarterman)
Newsgroups: net.unix-wizards
Subject: Re:  deceptive mail
Message-ID: <269@ut-sally.UUCP>
Date: Thu, 15-Nov-84 22:22:21 EST
Article-I.D.: ut-sally.269
Posted: Thu Nov 15 22:22:21 1984
Date-Received: Sat, 17-Nov-84 19:48:40 EST
References: <5807@brl-tgr.ARPA>
Reply-To: jsq@ut-sally.UUCP (John Quarterman)
Organization: U. Texas CS Dept., Austin, Texas
Lines: 10

Make /bin/login mode 500 owned by root and it will fail on exec,
usually causing /etc/init to fork another copy of itself and the
new user to thus get a fresh copy of /bin/login for normal login,
or (perhaps with parentheses) an error message from the shell.
This mode also makes realistic login simulators (of the sort that
want to collect your password) harder to write, since they can't
just exec /bin/login afterwards and leave the user no wiser.
-- 
John Quarterman, CS Dept., University of Texas, Austin, Texas 78712 USA
jsq@ut-sally.ARPA, jsq@ut-sally.UUCP, {ihnp4,seismo,ctvax}!ut-sally!jsq