With all the noise the last 2 days regarding this login vulnerability, can anyone confirm my research:
On Solaris 8, Kerberos 5 does not use the Solaris internal login program, rather it's own (login.krb5). Systems that ONLY have Kerberized rlogin/rsh turned on are not vulnerable to this latest advisory. Thanks in advance! -jim James J. Shumpert WorldCom, Inc.
