HOME HISTORY EFFECT TOUR LESSONS BIBLIOGRAPHY
The try_rsh Function
This attack method operates by creating a duplicate process which attempts to remotely execute on the target machine. If this child process succeeds in its task, it returns the file descriptors of the open pipe back to the main Worm in order to receive the new Worm process.
If this attempt fails, then the file descriptors are closed, the child process is killed and infect is called again to attempt the try_fingerd method.
Return to the main Worm page.