Bugtraq mailing list archives

Re: pam limits drops privileges

From: Tarhon-Onu Victor <mituc () iasi rdsnet ro>
Date: Thu, 6 Sep 2001 16:39:42 +0300 (EEST)

On Thu, 6 Sep 2001, Lukasz Trabinski wrote:

Password:
Too many logins for 'test'.


        First of all kill all the processes owned by test. Then let's make
it step by step:

# groupadd testgroup
# useradd -g testgroup testuser
# echo '@testgroup - maxlogins 3'>>/etc/security/limits.conf
# ssh pulea@localhost
pulea@localhost's password:
Last login: Thu Sep  6 16:30:16 2001 from localhost.localdomain
blackblue (pulea):~>telnet 0 -l testuser
Trying 0.0.0.0...
Connected to 0.
Escape character is '^]'.
Password:
Last login: Thu Sep  6 16:32:33 from localhost.localdomain
blackblue (pulea):~>id
uid=504(pulea) gid=100(users) groups=508(testgroup)
blackblue (pulea):~>id testuser
uid=508(testuser) gid=508(testgroup) groups=508(testgroup)

        Syslog messages:

Sep  6 16:33:30 blackblue pam_limits[19558]: checking if testuser is in
group testgroup
Sep  6 16:33:30 blackblue  -- testuser[19558]: LOGIN ON pts/1 BY pulea
FROM localhost.localdomain

        You will obtain same results (logging in as testuser you will get
pulea's shell) logging from console as testuser.

-- 
Tarhon-Onu Victor
Network and System Engineer
RDS Iasi - Network Operations Center
Phone: +40-32-218385

Current thread:

pam limits drops privileges Tarhon-Onu Victor (Sep 05)
- Re: pam limits drops privileges Chris Adams (Sep 06)
- <Possible follow-ups>
- Re: pam limits drops privileges Lukasz Trabinski (Sep 07)
  - Re: pam limits drops privileges Tarhon-Onu Victor (Sep 07)
- Re: pam limits drops privileges Lukasz Trabinski (Sep 09)