Steve wrote: > > Since lpd isn't as common as I thought it might be, > maybe crontab would be better... > > Here's the URL of an old vixie crontab exploit > http://www.insecure.org/sploits/vixie.crontab.overflow.html > > And a description (sans code) of the dillon crontab > exploit (used in Slack 3.4): > http://www.insecure.org/sploits/dillon.crontab.html
Thank you for these links. I enjoyed going through the details. >From my reading of the crontab exploit, it appears it can only be utilized by users who already have an account (and shell) on the system. So, as long as you don't allow remote logins, this one is not exploitable from the internet. Cheers, Steven
