[9297] in bugtraq
Re: UNIX shell modem access vulnerabilities
daemon@ATHENA.MIT.EDU (Steve Bellovin)
Fri Jan 29 12:20:47 1999
Date: Fri, 29 Jan 1999 08:41:35 -0500
Reply-To: smb@RESEARCH.ATT.COM
From: Steve Bellovin <smb@RESEARCH.ATT.COM>
To: BUGTRAQ@NETSPACE.ORG
Problems with tty access not being revoked are not new -- they've occurred
for at least 20 years. Circa 1988, I devised a strong solution; however,
I was unable to get it into System V in that form. Today, with the advent
of several different free UNIX-like systems, it may be worth revisiting
the question. See http://www.research.att.com/~smb/papers/sessext.ps
(or .pdf) for a description of my work. (Btw -- while I can't guarantee
that there are no patent claims lurking around, I did not file anything,
and I don't know of anyone else who might claim something.)
