RE: Re[2]: Solaris telnet vulnberability - how many on your network?

To: <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: RE: Re[2]: Solaris telnet vulnberability - how many on your network?
From: "Evans, Thomas" <ttevans@xxxxxxxxxxxx>
Date: Thu, 15 Feb 2007 12:10:34 -0700
In-reply-to: <200702150649.l1F6nKkP014649@xxxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <1946605590.20070214013204@xxxxxxxxx> from "Thierry Zoller" at Feb 14, 2007 01:32:04 AM <200702150649.l1F6nKkP014649@xxxxxxxxxxxxxxxxxxx>
Thread-index: AcdRMoK1tJPhwYF+RSeZoU4cH2Nh6gAAk+tg
Thread-topic: Re[2]: Solaris telnet vulnberability - how many on your network?

For some commentary on this issue, this is one man's thoughts.

http://www.schneier.com/crypto-gram-0602.html#16

Tom

Hawk Corporation
ttevans@xxxxxxxxxxxx
440-528-4045 Direct
440-498-2276 x 4045
Cell: 440-669-2526
Fax: 917-464-7241


-----Original Message-----
From: Darren Reed [mailto:avalon@xxxxxxxxxxxxxxxxxxx] 
Sent: Thursday, February 15, 2007 1:49 AM
To: Thierry@xxxxxxxxx
Cc: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Re[2]: Solaris telnet vulnberability - how many on your
network?

In some mail from Thierry Zoller, sie said:
> 
> CDSC>  real back doors are better
> I like that tautologie, "real backdoors", what makes a backdoor more
> real than another one ? Is it the coolness, the stealth ? Or is it
> simply the fact that it gives back door access ?

How about putting a backdoor into your C compiler such that it
generates "special code" when it recognises it is compiling
/bin/login that allows special access?

That doesn't show up in any code audit of /bin/login...

so you think about auditting the code that makes up the compiler..

where does the executable for that come from...

and so on back.

References:
- Re[2]: Solaris telnet vulnberability - how many on your network?
  - From: Thierry Zoller
- Re: Re[2]: Solaris telnet vulnberability - how many on your network?
  - From: Darren Reed

Prev by Date: Re: [Full-disclosure] Firefox: serious cookie stealing / same-domain bypass vulnerability
Next by Date: MSN redirect Bug
Previous by thread: Re: Re[2]: Solaris telnet vulnberability - how many on your network?
Next by thread: Reflections on Trusting Trust [was: Re: Solaris telnet ...]
Index(es):
- Date
- Thread