Bugtraq mailing list archives
bug in su (Slackware 3.4)
From: peter () ATTIC VUURWERK NL (Peter van Dijk)
Date: Sun, 15 Mar 1998 18:32:26 +0100
If sulog file logging is enabled in /etc/login.defs (shadowing installed!) and su has never been used, a user can set his umask to 0 and then run su. /var/log/sulog will then be created mode 666, which means user can use su to try lots of passwords and then, when done, do something like cat /dev/null > /var/log/sulog and clear out the logfile. Same goes for sudo. Note: everything will still be logged in syslog (unless disabled!) Greetz, Peter. ------------------------------------------------------------------------------ 'Selfishness and separation have led me to . Peter 'Hardbeat' van Dijk to believe that the world is not my problem . network security consultant I am the world. And you are the world.' . (yeah, right...) Live - 10.000 years (peace is now) . peter () attic vuurwerk nl ------------------------------------------------------------------------------ 6:25pm up 1 day, 4:22, 5 users, load average: 0.69, 0.22, 0.07 ------------------------------------------------------------------------------
Current thread:
- LinCity Buffer Overflow T. Freak (Mar 16)
- Re: LinCity Buffer Overflow Bob Tracy - TDS (Mar 16)
- BSD/OS 3.0 config_anonftp script trey (Mar 16)
- bug in su (Slackware 3.4) Peter van Dijk (Mar 15)
- Re: bug in su (Slackware 3.4) Martin Schulze (Mar 22)
- Re: bug in su (Slackware 3.4) Martin Schulze (Mar 22)
- bug in su (Slackware 3.4) Peter van Dijk (Mar 15)
- Re: BSD/OS 3.0 config_anonftp script Bill Becker (Mar 18)
- ncftp 2.4.2 MkDirs bug Michal Zalewski (Mar 19)
- Re: ncftp 2.4.2 MkDirs bug Theo Van Dinter (Mar 20)
- New FrontPage98 Server Extensions Release (fwd) Marc Slemko (Mar 20)
- Ascend Kill Thomas Michaux (Mar 20)
- <Possible follow-ups>
- Re: Lincity Buffer Overflow bst () INAME COM (Mar 17)