[4195] in bugtraq
Re: your mail
daemon@ATHENA.MIT.EDU (Jamie Rishaw)
Mon Mar 24 11:54:52 1997
Date: Mon, 24 Mar 1997 09:14:31 -0500
Reply-To: jamie@dilbert.iagnet.net
From: Jamie Rishaw <jamie@DILBERT.IAGNET.NET>
X-To: C0WZ1LL4@netspace.org
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <199703220730.CAA13054@netspace.org> from "C0WZ1LL4@netspace.org"
at "Mar 22, 97 02:30:49 am"
> Hello fellow mongoloids
> Try this:
> Make hard link of /etc/passwd to /var/tmp/dead.letter
> Telnet to port 25, send mail from some bad email address to some unreacheable hoost.
> Watch your message get appended to passwd.
> ie:
> cowzilla::0:0:c0wz1ll4 0wns u:/:/bin/sh
This is why Good Little Sysadmins(tm) have /, /var, /tmp, /usr, etc. on
separate partitions and/or drives.
If /etc and /var/tmp are on different partitions this wont work. Can't
symlink cross-device far as I know.
> This is not good. Worked with my 8.8.4, will probably also work with 8.8.5
> Root for the whole family
>
> -Cowzilla the omnipotent b0v1n3
> PD
> Greets to various #2600 people
>
--
jamie g.k. rishaw <jamie@iagnet.net> - Internet Access Group [www.iagnet.net]
- Cleveland - Akron - Pittsburgh - Detroit - Columbus - Toledo -
Corp: (800) 637 4IAG / (216) 623 3565. DID: (216) 902 5455. FAX (216) 623 3566.
Personal: jamie@@arpa.com || jamie@@null.net (Remove second @, nonspammers) =)
