Ok. looking into source code of inetutils didn't really clear up how services are registered to the telnet daemon. Another idea I've had meanwhile is, that telnetd just creates a pseudo terminal like /dev/pts/5 and Linux automatically detects this and connects it to a login shell. But yet I don't know any further.
@Simon: I'm just experimenting, security is currently not a question.
|