[11767] in Athena Bugs
decmips 7.6G: dialing in via a DADN line
daemon@ATHENA.MIT.EDU (Christina Diete DeMello)
Mon Feb 21 11:51:47 1994
To: bugs@MIT.EDU
Date: Mon, 21 Feb 94 11:51:35 EST
From: Christina Diete DeMello <cdemello@MIT.EDU>
System name: timesink
Type and version: KN02ca 7.6G (2 update(s) to same version)
Display type: PMAG-DV
What were you trying to do?
Well, I wasn't trying to be disconnected when I dialed in, but
I was (my roommate picked up the phone).
What's wrong:
When I dialed in again it reconnected me to my past login
session as if I had never lost my connection.
What should have happened:
It should have asked me to reenter my login and password. It
made me more than a little nervous to know that if someone just
randomly happened to try to dial into my phone they would
have gotten access to my account -- which if they knew what
they were doing would have gotten them access to quite a few other
things as well (i.e. moira since its my default and not root instance
that has access to it).
Please describe any relevant documentation references:
No relevant documentation, but probably common sense if
you taken security into consideration...
P.S. The same thing has happened to Jeff Solof, and he too has a
DEC5000/25 with a 9600 DADN line. Both of us ran mkserv modem to get
the configurations we have.
