J. Grant wrote on Sun, Oct 06, 2002 at 08:07:32PM +0100 : > > theoretically not, if some1 has got a fake binary for your shell as a > normal user, he/she can then log you getting root. best way is to get > the ssh client to execute the login command as root and go in directly. > (thus bypassing the binarys that could have been compromised)
If the user installed fake binaries (especially the shell), then they
already have root on your machine.
Blue skies... Todd
--
...and I will strike down upon thee with great vengeance and furious
anger, those who attempt to poison and destroy my binaries, and you
will know my name is root, when I lay my vengeance upon thee.
Cooker Version mandrake-release-9.0-0.3mdk Kernel 2.4.19-16mdk
msg58960/pgp00000.pgp
Description: PGP signature
