Path: utzoo!attcan!uunet!lll-winken!lll-tis!helios.ee.lbl.gov!pasteur!ames!ncar!noao!sunspot!cmiller
From: cmiller@sunspot.UUCP (Charlie Miller)
Newsgroups: comp.unix.questions
Subject: Re: good passwords
Message-ID: <651@sunspot.UUCP>
Date: 19 Jul 88 21:50:36 GMT
References: <16473@brl-adm.ARPA> <4451@fluke.COM>
Reply-To: cmiller@sunspot.UUCP (Charlie Miller)
Organization: Natl. Optical Astronomy Observatories, Tucson, AZ USA
Lines: 15

In article <4451@fluke.COM> strong@tc.fluke.COM (Norm Strong) writes:
>And if you can't bribe the superuser, here's another way to gain access to
>some poor fool's files.  
>
>After you're sure he's logged in, have the receptionist call him and tell him
>that he's supposed to attend a meeting in Room xxx right away.  When he leaves
>his desk, run over to his terminal and copy all his files into your
>directory.
>-- 
>Norm   (strong@tc.fluke.com)

How about leaving a program running on a terminal, say in a student
terminal room, that mimics the standard login prompt?  Then just file
away the user name and password...etc.

Charlie (cmiller@sunspot.UUCP)