Path: utzoo!utgpu!water!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!uccba!alobar!grs
From: grs@alobar.ATT.COM (Gregg Siegfried)
Newsgroups: comp.unix.wizards
Subject: Re: REMOTE REJECT Failure (also annonymous uucp)
Summary: NOSTRANGERS can be overridden
Keywords: HDB SysV R3.1.2 annonymous UUCP 386/ix ISC
Message-ID: <209@alobar.ATT.COM>
Date: 16 Aug 88 04:18:20 GMT
References: <749@mccc.UUCP> <218@pigs.UUCP> <1988Aug13.185324.1409@gpu.utcs.toronto.edu> <323@occrsh.ATT.COM>
Reply-To: grs@alobar.UUCP (Gregg Siegfried)
Distribution: na
Organization: AT&T OSS Development, Cincinnati
Lines: 29

In article <323@occrsh.ATT.COM> rjd@occrsh.UUCP (Randy_Davis) writes:
>In article <1988Aug13.185324.1409@gpu.utcs.toronto.edu> woods@gpu.utcs.Toronto.EDU (Greg Woods) writes:
>:Does anyone know of any special tricks required to allow annonymous UUCP
>:connections to HDB Uucp, specifically 386/ix's version?
>
>  Unless you have source to HDB Uucp, or have a version compiled with the
>NOSTRANGERS ifdef undefined, you are out of luck.  The default compile
>is to not allow any communication onless the caller is in the Systems file.

This is not completely true.  Randy is right, NOSTRANGERS is defined by
default, and should be, but its behaviour can be overridden.  I don't
use 386/IX, but hopefully HDB is HDB.  (Unix is Unix, right?? :-)

NOSTRANGERS is a program to execute if an unknown host logs in.  Generally,
this is defined as remote.unknown, which is a executable shell file in 
/usr/lib/uucp that echoes the unknown system name into $SPOOLDIR/.Admin/Foreign.

This can be overridden by making this file unexecutable.  So a 
chmod 600 remote.unknown should allow anyone to uucp into your system.

Note that this is greatly reducing the builtin HDB security, but judicious
use of the Permissions file can help make up for it.

Good luck...
-- 
 Gregg Siegfried            | Nothing I say should be construed as AT&T
 AT&T - Cincinnati          | policy or opinion .. I just hack here.
 UUCP: grs@alobar.att.com   | Don't Rock - Wobble
 ARPA: grs%alobar@att.arpa  | 513-629-8314 (work) 513-561-0368 (antiwork)