For mgetty users with non-trusted shell logins

• Messages sorted by:[ date ][ thread ][ subject ][ author ]

Gert Doering <gert@greenie.muc.de> wrote:
> This means that terminal servers that present the modem transparently
> via TCP/IP as a /dev/tty<something> ARE quite likely vulnerable.  AIX
> terminal servers come to my mind, they work just great with mgetty,
> and hardly otherwise...

Well, yes and no. No if when the modem hangups OR when the local system
requests hangups the link between the TCP port and the modem is broken
till next call.

Do you know the details of the AIX/terminal server implementation ?
Isn't it just the ``rlogin trick'' also and thus not vulnerable ?