Brad Powell <brad .
powell @
Sun .
COM> wrote:
> ->>The only program I've discovered on SunOS 4.x that needs DNS access
> ->>and isn't dynamically linked is /usr/ucb/rcp. To solve this, I just
> ->>grabbed the rcp source from the BSD release on ftp.uu.net, then built
> ->>and installed a dynamically linked version in /usr/local.
> ->
> ->If you badly disrupt your machine, usually due to finger trouble,
> ->then having a statically linked rcp is good news as you can use
> ->it to pull in copies of files from other machines. However for
> ->most uses, you want access to the DNS. So keep 2 copies, the
> ->original one, which will look up addresses in /etc/hosts, as
> ->well as the one which uses the shared libraries to use the DNS.
>
> Watch out here. rcp is one of the best ways a cracker can transfer toolkits
> to your system without leaving any log. Scenario is that he/she/it logs in
> as a common user, then places a "+ +" rhosts entry for the user, then uses
> rcp to transfer over a toolkit. rcp isn't logged.
rcp is logged on my systems via tcpd. Definately keep the copy in
/usr/ucb, and add a new rcp to /usr/local, or wherever.
rik.
--
Rik Harris - rik .
harris @
vifp .
monash .
edu .
au || Systems Programmer
+61 3 560-3265 (AH) +61 3 565-3227 (BH) || and Administrator
Fac. of Computing & Info.Tech., Monash Uni, Australia || Vic. Institute of
http://www.vifp.monash.edu.au/people/rik.html || Forensic Pathology
References:
-
Re: DNS w/NIS
From: Brad .
Powell @
Corp .
Sun .
COM (Brad Powell)
|
|
