For mgetty users with non-trusted shell logins

Gert Doering (gert@greenie.muc.de)
Wed, 27 Jan 1999 16:53:03 +0100

Messages sorted by:[ date ][ thread ][ subject ][ author ]

Hi,

On Tue, Jan 26, 1999 at 11:32:48PM +0100, l41484@alfa.ist.utl.pt wrote:
> Well if we fiddle with the S2 register (by disabling the escape
> characters) wouldn't we avoid people, entering into command command and
> thus controlling the matter?

No. Just hang up on the caller side.  Voila, the modem is in command mode.

> Although it think, this would stop the called machine, from terminating
> the call. (with +++ATH) This could be prevented, by not disabling the
> escape character, but by changing it, into something else. Or perhaps
> another possibility, would be fiddling with &D", S25 register and a DTR
> transition to hangup? 

Believe Marc, his exploit works, even if the modem is set up correctly,
and all device permissions are set up just perfectly.

I've know this since a fairly long time, but haven't had time to prove it.

gert
-- 
Gert Doering
Mobile communications ... right now writing from *AWAY* :-)) 
... mobile phone: +49 177 2160221 ... or mail me:  gert@greenie.muc.de