[1221] in linux-security and linux-alert archive
Re: [linux-security] telnetd/telnetsnoopd (was Re: libc 5.4.7)
daemon@ATHENA.MIT.EDU (Roscinante)
Mon Oct 14 07:36:46 1996
Date: Sun, 13 Oct 1996 16:28:45 -0400 (EDT)
From: Roscinante <rosc@fbn.globalent.net>
To: Avery Pennarun <apenwarr@foxnet.net>
cc: Linux-security <linux-security@tarsier.cv.nrao.edu>
In-Reply-To: <Pine.LNX.3.93.961013135047.1251A-100000@discovery.dindernet>
On Sun, 13 Oct 1996, Avery Pennarun wrote:
[Rosc]
> > Ok, I spent the day doing a line-by-line comparison of the old telnetsnoopd &
> I did some hacking on ttysnoop a while back, and it seems to me that the
> only required change to telnetd was to make it call "ttysnoops" (notice the
> trailing 's') instead of "login" after the connection was established.
Boy, I wish I'd've known that before I spent the day hacking at it =) It's
easy enough to edit /usr/include/paths.h to make
#define _PATH_LOGIN "/bin/login"
into /bin/ttysnoops momentarily, while telnetd compiles. That worked quite
well, thank you for the info!! :)
> The ttysnoops program does its thing with the tty's and then spawns login
> normally. You then contact it with the "ttysnoop" (no trailing 's').
> So search and replace "/bin/login" with "/usr/sbin/ttysnoops" (or whatever
> it is on your system) in the latest telnetd source, and you should be fine.
> To avoid recompiling telnetd all the time, someone might add a
> command-line parameter that tells telnetd what login program to use.
> Hard-coding it in always seemed kind of silly to me.
[REW: reverse-trimmed the quoting, so you all can now read it in just
ONE message... :-) ]
~~
All that is gold does not glitter.. .
Not all those who wander are lost..J.R.R.T. . /\ .
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ._____// \\_____.
And the knowledge that they fear . \\ Rush // .
is a weapon to be held against them.. N.P. . \\ 2112 // .
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ . // /\ \\ .
Ghost in the Machine (wraith@styx.ios.com) I[[[[[[[[]]]]]]]]I
Roscinante (rosc@fbn.globalent.net)
http://www.globalent.net/users/fbn