Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Technical Report

rlogin(1): The Untold Story

  • November 1998
  • By Larry Rogers
  • Members of the CERT/CC have analyzed coding defects with the goalof understanding each well enough to communicate the details to those responsible for fixing them and those responsible for installing their fixes (systems administrators). This report describes everything that members of the CERT/CC have learned and subsequentlysynthesized from analyzing the rlogin defect.
  • Publisher: Software Engineering Institute
    CMU/SEI Report Number: CMU/SEI-98-TR-017
  • Abstract

    Coding defects account for a significant portion of the reports received by the CERT Coordination Center (CERT/CC). Through in-depth analysis of these reports and generalizing our findings from those analyses, we have begun to create guidelines for mitigation strategies for existing defects and avoidance strategies when coding new software. In this document, we report the results of our analysis of the well-known defect in the rlogin program. We discuss the coding defect in detail, three mitigation strategies devised to remedy the defect, and two avoidance strategies offered as a guide to reducing the instances of similar coding defects in new programs. We end with three design notes aimed at eliminating these defects at the hardware and protocol design level.

  • Download

Cite This Report

SEI

Rogers, Lawrence. rlogin(1): The Untold Story. CMU/SEI-98-TR-017. Software Engineering Institute, Carnegie Mellon University. 1998. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13161

IEEE

Rogers. Lawrence, "rlogin(1): The Untold Story," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Report CMU/SEI-98-TR-017, 1998. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13161

APA

Rogers, Lawrence. (1998). rlogin(1): The Untold Story (CMU/SEI-98-TR-017). Retrieved December 09, 2016, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13161

CHI

Lawrence Rogers. rlogin(1): The Untold Story (CMU/SEI-98-TR-017). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 1998. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13161

MLA

Rogers, Lawrence. 1998. rlogin(1): The Untold Story (Technical Report CMU/SEI-98-TR-017). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13161

BibTex

@techreport{Rogersrlogin1The1998,
title={rlogin(1): The Untold Story},
author={Lawrence Rogers},
year={1998},
number={CMU/SEI-98-TR-017},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13161} }