[188] in linux-security and linux-alert archive
(fwd) security hole in Yggdrasil Linux
daemon@ATHENA.MIT.EDU (Gary Anderson)
Mon Apr 3 04:18:06 1995
Date: Mon, 3 Apr 1995 01:31:47 -0400
From: Gary Anderson <ganderson@clark.net>
To: linux-alert@tarsier.cv.nrao.edu
[mod: Gary posted this to linux-alert, but I want to get some comment from
Yggdrasil on this before we make an alert. Note that currently, this
claim is unproven. Thought you should know this nevertheless. --okir]
Don't know if this is valid or not (I don't run Yggdrasil), but just
pulled this from comp.security.misc. Thought I'd pass it along, just
in case.
Gary
ganderson@clark.net
>From: swlaemmr@mtu.edu (Shawn W. Laemmrich)
>Newsgroups: comp.security.misc
>Subject: security hole in Yggdrasil Linux
>Date: 2 Apr 1995 11:38:17 -0400
>Organization: Michigan Technological University
>Lines: 13
>Message-ID: <3lmgd9$fpp@fishlab3.fsh.mtu.edu>
>NNTP-Posting-Host: fishlab3.fsh.mtu.edu
>X-Newsreader: TIN [version 1.2 PL2]
>Just writing this to inform everyone out there that there is a MAJOR hole in
>the security of Yggdrasil's release of linux. They have coded in a backdoor
>that is common to all their releases. THey have created an extra root user
>and hidden it. THey claim it was done in case your system went down, and you
>aasked them to fix it, and forgot to give them the root password. In reality,
>once someone knows this password (not real hard to guess) they have root
>access on all machines running Yggdrasil Linux. I believe(but am not posative)
>that upgrading your kernal to a non-yggdrasil release will elimonate this
>--
>---------------------------------------------------------------------------
>|| Shawn Laemmrich Internet: swlaemmr@fsh.mtu.edu ||
>---------------------------------------------------------------------------
