On Sun, Oct 27, 2002 at 12:55:00AM -0400, Alysia wrote:
> If one was to put in a back door to a game. How would they go about
> doing it? I need to check some code, i had a fellow imp go insane recently.
> So now my task is to make sure there is nothing else hard coded in that would
> provide this person with immortal access to the game in any way shape or form.
Let's not forget opening up a backdoor to the system at compile
time, like the backdoors that got into BitchX, OpenSSH, and
Sendmail configure scripts recently when their FTP sites were
compromised. If this person controlled source code that you compile
or run on your machine, they could potentially put in a backdoor to
more than just your MUD, even through a firewall (reverse tunnel).
--
{ IRL(Jeremy_Stanley); PGP(9E8DFF2E4F5995F8FEADDC5829ABF7441FB84657);
SMTP(fungi@yuggoth.org); IRC(fungi@irc.yuggoth.org#ccl); ICQ(114362511);
AIM(dreadazathoth); YAHOO(crawlingchaoslabs); FINGER(fungi@yuggoth.org);
MUD(Nergel@srmud.net:2325); WWW(http://fungi.yuggoth.org/); }
--
+---------------------------------------------------------------+
| FAQ: http://qsilver.queensu.ca/~fletchra/Circle/list-faq.html |
| Archives: http://post.queensu.ca/listserv/wwwarch/circle.html |
| Newbie List: http://groups.yahoo.com/group/circle-newbies/ |
+---------------------------------------------------------------+
This archive was generated by hypermail 2b30 : 06/25/03 PDT