Finding Passwords
Vadim G. Antonov
avg at hq.demos.su
Mon Oct 8 01:52:03 AEST 1990
Hi! I think the problem of login trojan horses has a quite simple
solution:
1) There should be UNMASKABLE method of killing all programs
reading this terminal. It may be a predefined sequence
of characters or a special hardware signal like BREAK or
CARRIER DROP. This feature should be hard-coded in TTY
driver.
2) All processes, associated with a TTY should be killed
(as SIGHUP does) andprotected processes should be
RE-ASSOCIATED with an unique TTY-id (which actually
does not exist).
Each user SHOULD should enter unmaskable sequence before login
(I think the login program must check that this seq was entered
to force lusers to use it).
Seems to me an appropriate hack is about 20 lines in a kernel
and getty.
Vadim Antonov
DEMOS, Moscow, USSR
(It is NOT a joke!)
More information about the Comp.unix.internals
mailing list