Johannes Rohr <[EMAIL PROTECTED]> writes: > "Alfred M. Szmidt" <[EMAIL PROTECTED]> writes: > > > How do you access this `login' shell from remote? > > > > See the login> prompt when you login? That is the login shell, it is > > just a normal shell that is running as an anonymous user (see the > > output of ids). > > > > Is there a known security issues? > > > > None that I know of. > > But even the anonymous user can to something like > > cat /dev/zero > /tmp/foobar > > I don't know, if this matches your definition of "security issues" but > it's an effective way to make the box unusable.
I don't need the anonymous account to hose your system this way. Do you log incoming network connections of any kind? Then I can fill up your log. This is assuming that I'm not clever enough to just ping-flood.