my error, this is passwd code
On Thu, 2004-08-12 at 23:01, Aaron Gaudio wrote:
Perhaps I'm being daft, but the exploit appears to be a 'passwd' trojan,
not an su trojan. And the attacker would need to get it in a place where
it would get inadvertently run (preferably by root).
--
Aaron Gaudio <prothonotar(a)tarnation.dyndns.org>