home *** CD-ROM | disk | FTP | other *** search
- Xref: sparky comp.unix.admin:6618 comp.unix.programmer:5673 comp.unix.wizards:5211 comp.sys.sun.admin:9397
- Path: sparky!uunet!spool.mu.edu!wupost!zaphod.mps.ohio-state.edu!moe.ksu.ksu.edu!matt.ksu.ksu.edu!news
- From: holland@matt.ksu.ksu.edu (Rich Holland)
- Newsgroups: comp.unix.admin,comp.unix.programmer,comp.unix.wizards,comp.sys.sun.admin
- Subject: Re: revisited, determining if anyone else is logged on
- Date: 13 Dec 1992 19:16:08 -0600
- Organization: Kansas State University
- Lines: 25
- Message-ID: <1ggn8oINNar1@matt.ksu.ksu.edu>
- References: <1992Nov30.184356.11189@cc.ic.ac.uk> <1992Nov30.200139.24033@Princeton.EDU> <Byv4By.Jnv@dcs.ed.ac.uk> <1992Dec7.163111.11117@Princeton.EDU>
- NNTP-Posting-Host: matt.ksu.ksu.edu
-
- subbarao@fc.hp.com (Kartik Subbarao) writes:
-
- >Oh, please. I can also modify the talk source code so you can specify
- >the name to send the request as (I have [grin] -- takes about 2 lines).
-
- Right, but if you have to go that far, it means your utmp file is *not*
- world-writable, and since your new talk program isn't running setgid or
- setuid like the *system* version, it won't work. :-)
-
- >I can forge mail.
-
- Yes, but if the user *replies* to the mail, you're either going to (a) get
- found out, or (b) the reply will bounce and clue them in...
-
- > Hell, I can even CALL your hapless l0sers on the phone and
- > say, ``I'm the sysadmin, give me your password'' if indeed they are so
- > clueless. And there's nothing UNIX can do about that.
-
- True, but what's that got to do with the /etc/utmp file? :-)
-
- --
- Rich Holland | INTERNET: holland@matt.ksu.ksu.edu
- 100 Jardine Terr, Apt A7 | BITNET : holland@ksuvm
- Manhattan, KS 66502-3357 | UUCP : ...!rutgers!matt.ksu.ksu.edu!holland
- char*p="char*p=%c%s%c;main(){printf(p,34,p,34);}";main(){printf(p,34,p,34);}
-
