Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.3 alpha 4/15/85; site radha.UUCP
Path: utzoo!mnetor!radha!sanand
From: sanand@radha.UUCP (Sanand Patel)
Newsgroups: comp.unix.wizards
Subject: Ultrix and login:
Message-ID: <134@radha.UUCP>
Date: Wed, 25-Feb-87 16:14:56 EST
Article-I.D.: radha.134
Posted: Wed Feb 25 16:14:56 1987
Date-Received: Wed, 25-Feb-87 19:35:24 EST
Organization: Canstar Communications
Lines: 18

In regards to running login from a non-login shell, I was under
the impression that 'login' should refuse to run if it is not
owned by 'init'. This would be so that you could not threaten the wtmp
entry of a target user.

However, I find that Ultrix 1.2, allows me to run /bin/login from any shell
and thus subvert the wtmp file. Was this not a security hole closed
a long time ago ? Does this happen under 4.2/3 BSD ? I am thinking about
making /bin/login executable only by root -- any comments ?

---
--- utzoo!dciem!radha!sanand
--- seismo!mnetor!radha!sanand
-- 
---
--- seismo!mnetor!radha!sanand
--- utzoo!dciem!radha!sanand
--- 416-293-9722 ext248