The 'Security Digest' Archives (TM)

Archive: About | Browse | Search | Contributions | Feedback
Site: Help | Index | Search | Contact | Notices | Changes

ARCHIVE: 'Phage List' - Archives (1988 - 1989)
DOCUMENT: phage #122 [Another Feature of the Worm] (1 message, 389 bytes)
SOURCE: http://securitydigest.org/exec/display?f=phage/archive/122.txt&t=text/plain
NOTICE: securitydigest.org recognises the rights of all third-party works.

START OF DOCUMENT

From: bukys@cs.rochester.edu
To: phage
Date: Mon 16:33:44 07/11/1988 EST
Subject: Another Feature of the Worm
References: [Thread Prev: 205] [Thread Next: 138] [Message Prev: 123] [Message Next: 121]

The worm exhibited one other manifestation, heretofore undiscussed:

It logged in on the console (on a machine known to be physically secure).
The login only lasted for moments.  The appropriate entries are in wtmp.

It appears that it only did it with an account for which it had already
cracked the password.

END OF DOCUMENT