Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!tut.cis.ohio-state.edu!zaphod.mps.ohio-state.edu!wuarchive!uunet!philmtl!zap!zoom!marc
From: marc@CLIK.QC.CA (Marc Boucher)
Newsgroups: comp.unix.i386
Subject: Re: rlogin fails as root on ISC 386/ix
Keywords: rlogin, ISC
Message-ID: <1360@zoom.CLIK.QC.CA>
Date: 31 Dec 89 21:26:51 GMT
References: <1940@lamont.ldgo.columbia.edu> <39@guug.UUCP>
Reply-To: marc@CLIK.QC.CA (Marc Boucher)
Organization: CLIK Telematique Inc., Montreal QC
Lines: 19

In article <39@guug.UUCP> ott@guug.UUCP (Joachim Ott) writes:
>In article <1940@lamont.ldgo.columbia.edu>, fritzz@lamont.ldgo.columbia.edu (fritz zaucker) writes:
>> Hi,
>(rest deleted)
>i have done this once for microport unix: find out the address of the string
>'not on system console' in the data segment (use 'hd' and a calculator);
>find out where this address is pushl'ed (to printf) - use 'dis'; shortly
>after the printf-call is the exit-call - replace it with nop's (write your
>own program). After this you can login as root from anywhere.
>J. Ott

	I have patched mine some time ago. no need for nop's.
Change 0x75 to 0xeb at offset 0xc26 in /etc/netlogin. You can use my recently
posted program to patch nfs remapping to do it too. (by changing the offset in
the source, of course).

-- 
Marc Boucher, sys/netadm @ CLIK Telematique Inc - marc@clik.qc.ca
5144668932_home 5149337161_clik 5149332164_fax  - Postmaster@clik.qc.ca