This is a follow-up to a posting by Cliff Friedel <cfriedel_at_jane.penn.com>
The dop problem is definitely an issue. We had a couple kids find the hack on
bugtraq and were able to exploit it. Hopefully we will be able to prevent
the problem
by not allowing telnet, shadowing the password file (C2 security), and
chmod'ing
the /usr/sbin/dop to 0. You can get more information at:
http://geek-girl.com/bugtraq/1997_1/0271.html
http://geek-girl.com/bugtraq/1997_1/0237.html
Thanks...
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
John Pritchard
Catalyst Solutions
pritchj_at_catalystsol.com
http://www.catalystsol.com
Received on Mon Jun 02 1997 - 16:04:54 NZST