[1221] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

Re: [linux-security] telnetd/telnetsnoopd (was Re: libc 5.4.7)

daemon@ATHENA.MIT.EDU (Roscinante)
Mon Oct 14 07:36:46 1996

Date: Sun, 13 Oct 1996 16:28:45 -0400 (EDT)
From: Roscinante <rosc@fbn.globalent.net>
To: Avery Pennarun <apenwarr@foxnet.net>
cc: Linux-security <linux-security@tarsier.cv.nrao.edu>
In-Reply-To: <Pine.LNX.3.93.961013135047.1251A-100000@discovery.dindernet>

On Sun, 13 Oct 1996, Avery Pennarun wrote:

[Rosc]
> > Ok, I spent the day doing a line-by-line comparison of the old telnetsnoopd &

> I did some hacking on ttysnoop a while back, and it seems to me that the
> only required change to telnetd was to make it call "ttysnoops" (notice the
> trailing 's') instead of "login" after the connection was established.

Boy, I wish I'd've known that before I spent the day hacking at it =)  It's
easy enough to edit /usr/include/paths.h to make 

#define _PATH_LOGIN "/bin/login" 

into /bin/ttysnoops momentarily, while telnetd compiles. That worked quite
well, thank you for the info!! :) 

> The ttysnoops program does its thing with the tty's and then spawns login
> normally.  You then contact it with the "ttysnoop" (no trailing 's').

> So search and replace "/bin/login" with "/usr/sbin/ttysnoops" (or whatever
> it is on your system) in the latest telnetd source, and you should be fine. 

> To avoid recompiling telnetd all the time, someone might add a
> command-line parameter that tells telnetd what login program to use. 
> Hard-coding it in always seemed kind of silly to me.

[REW: reverse-trimmed the quoting, so you all can now read it in just
ONE message... :-)  ]

~~
All that is gold does not glitter..                       .
Not all those who wander are lost..J.R.R.T.         .     /\     .
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~    ._____//  \\_____.
And the knowledge that they fear                 . \\    Rush    // .
is a weapon to be held against them.. N.P.       .   \\  2112  //   .
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~    .  //   /\   \\  .
Ghost in the Machine (wraith@styx.ios.com)        I[[[[[[[[]]]]]]]]I
Roscinante (rosc@fbn.globalent.net)
http://www.globalent.net/users/fbn

home help back first fref pref prev next nref lref last post