Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 9/18/84; site brl-tgr.ARPA
Path: utzoo!watmath!clyde!bonnie!akgua!mcnc!decvax!wivax!cadmus!harvard!seismo!brl-tgr!internet!William LeFebvre <phil@RICE.ARPA>
From: William LeFebvre <phil@RICE.ARPA>
Newsgroups: net.unix-wizards
Subject: Re: deceptive mail and /bin/login
Message-ID: <5857@brl-tgr.ARPA>
Date: Fri, 16-Nov-84 23:20:57 EST
Article-I.D.: brl-tgr.5857
Posted: Fri Nov 16 23:20:57 1984
Date-Received: Sun, 18-Nov-84 05:39:43 EST
Sender: news@brl-tgr.ARPA
Organization: Ballistic Research Lab
Lines: 16

> Make /bin/login mode 500 owned by root and it will fail on exec,
> usually causing /etc/init to fork another copy of itself and the
> new user to thus get a fresh copy of /bin/login for normal login,

Of course, if you are dialed up or are connected through a switch on a
line that has the TIOCHPCL bit set, the line gets dropped before init
has the chance to start a new getty (getty execs login after it gets
the login name).  I'm afraid I don't like that idea much.  Especially
since we have a ROLM switch and getty sets the TIOCHPCL bit on every
switch line.  Being able to just say "login user" rather than
struggling with the switch is a big win.

                                William LeFebvre
				Department of Computer Science
				Rice University
                                <phil@Rice.arpa>