[rc5] Win32 GUI client is a trojan?

wooledge at kellnet.com wooledge at kellnet.com
Sun Nov 9 17:50:00 EST 1997


Tim Charron (tcharron at interlog.com) wrote:

> Agreed.  However, it wouldn't be unreasonable to ask your sysadmin to 
> set up a unix account that had basically no access to anything.  It 
> would allow rc5 to be run on that machine, and there would be no 
> possibility for malicious activity.

This might be possible in a chroot()'ed environment, with a phony passwd
file....  Even so, the fact the an untrusted program is running inside
the firewall (with TCP/IP sockets available to it) might be sufficient
to make some paranoid types forbid it.

How many of the administrators at *your* site know how to set up a
working chroot()'ed environment?  Of those, how many would be willing
to take the time required?

-- 
# Greg Wooledge                         # "Daddy, why do those people have to
# wooledge at kellnet.com                  #   use Microsoft Windows?"
# http://kellnet.com/wooledge/main.html # "Don't stare, son; it's not polite."
#        --  Crack RC5-64 now! http://www.distributed.net/rc5/  --
----
To unsubscribe, send email to majordomo at llamas.net with 'unsubscribe rc5' in the body.



More information about the rc5 mailing list