From: ButtrBoy@yabbs
To: Schief@yabbs
Subject: re: rexd hole?
Date: Mon Apr 18 01:53:37 1994
rexd? is this a daemon for a protocol i've never heard about?
on the bugtraq list there was recently a flurry over ftpd
trojans...something in the passwd checking routine (looks
like this in ftpd.c:)
#ifdef ULTRIX_AUTH
        if ((numfails = ultrix_check_pass(passwd, xpasswd)) < 0) {
#else
        /* The strcmp does not catch null passwords! */
        if (pw == NULL || *pw->pw_passwd == '\0' ||
            strcmp(xpasswd, pw->pw_passwd)) {
#endif
            reply(530, "Login incorrect."); 
All ftpd versions 2.2 and before are insecure, wu-ftpd 2.3 is
the new patched version. The above snatch of src is from the 
earlier version...