I've got a host running Ultrix 4.2 that has the original Ultrix
`su` command. Ultrix's `su` is so secure that it does not allow
su to root on any unsecure tty. This very rigid attitude encourages
people to create backdoors to become root on unsecure ttys.
I know of peple that have the same problem with that, buty none of
them solved it to my satisfaction.
I am thinking of modifying `su` but I miss a few hins like where
to find code I can trust and aplicable for Ultrix (4.2).
QUESTIONS:
- did anybody (you know of) do this noble work?
- if so, how?
- where to find sources?
Regards,
Vincent
PS: I prefer mails for I'm not too much into these groups
The ways I've done it are:
o Set the /etc/ttys file for the additional secure line
to 'on secure'
o If on a modem, use one with a callback feature if it
is attached the above-mentioned line...
o Edit the root .rhosts to allow a specific user from a
specific machine (for course you then extend the requirement
for being secure to that whole machine)
Megan
This software is *not supported by Digital*, but it might do what you want.
--
Frank