someone just pointed out that various telnetd's have
bugs in them that let you ``fake'' the host you come
from...and netbsd has this bug.

witness:


oink ~> telnet -l -heleet.com oink
Trying 192.231.135.9...
Connected to oink.home.
Escape character is '^]'.
login: mrg
Password:
Last login: Sun May 22 21:58:51 from cerg.org
Copyright (c) 1980,1983,1986,1988,1990,1991 The Regents of the University
of California.  All rights reserved.

NetBSD 0.9B (_oink2_) #20: Sun May 22 18:06:59 EST 1994

mrg has logged on ttyp0 from eleet
oink ~> who
mrg      ttyp0   May 22 22:02   (eleet.com)
mrg      ttyq0   May 22 22:02   (:console:S.1)
oink ~>


i assume this is because telnetd passes the username
``-heleet.com'' to login, which then interprets it
as the host we've come from...

weeeee!

i didn't think this was appropriate for current-users,
and i'll leave it up to the core to pass on the info
to them..

.mrg.

------------------------------------------------------------------------------