From: dave@horsfall.org (Dave Horsfall)
Subject: [TUHS] History of exploits - request for authors
Date: Wed, 20 Dec 2017 10:45:21 +1100 (EST) [thread overview]
Message-ID: <alpine.BSF.2.21.1712201034460.92288@aneurin.horsfall.org> (raw)
In-Reply-To: <20171219201721.GA95741@accordion.employees.org>
On Tue, 19 Dec 2017, Derek Fawcus wrote:
>> Leaving a "login" simulator on a terminal (quite common).
>
> Well if you include that one, you may want to include the simple brute
> force testing of passwords against /etc/passwd (before shadow files
> existed). The login name and real names (direct or reversed) would tend
> to get at least one hit.
Too easy :-)
Re the simulator, a former boss suggested (when these things were rife)
that the BEL character could only be outputted by "root", and if you
didn't hear "ding", well...
I (and likely others) worked around them by deliberating typing a wrong
password (the kiddies were rarely smart enough to loop a couple of times
or to test it), and I was glad when I started working there and had my own
terminal (OK, a shared one in our office).
--
Dave Horsfall DTM (VK2KFU) "Those who don't understand security will suffer."
next prev parent reply other threads:[~2017-12-19 23:45 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-12-18 10:31 Arrigo Triulzi
2017-12-19 1:08 ` Dave Horsfall
2017-12-19 20:17 ` Derek Fawcus
2017-12-19 20:32 ` Ron Natalie
2017-12-20 2:22 ` Dave Horsfall
2017-12-19 23:45 ` Dave Horsfall [this message]
2017-12-29 11:22 ` Arrigo Triulzi
2017-12-19 20:25 ` Derek Fawcus
2017-12-19 1:25 ` Larry McVoy
2017-12-20 0:01 ` Nemo
2017-12-29 11:14 ` Arrigo Triulzi
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=alpine.BSF.2.21.1712201034460.92288@aneurin.horsfall.org \
--to=dave@horsfall.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).