bin/93391: inetd's internal auth service allows use of ~/.fakeid
Juraj Lutter
otis at sk.FreeBSD.org
Wed Feb 15 06:10:07 PST 2006
>Number: 93391
>Category: bin
>Synopsis: inetd's internal auth service allows use of ~/.fakeid
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Wed Feb 15 14:10:04 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator: Juraj Lutter
>Release: FreeBSD 5.4-STABLE i386
>Organization:
>Environment:
System: FreeBSD remedy.wilbury.sk 5.4-STABLE FreeBSD 5.4-STABLE #0: Sun Jul 17 13:16:48 CEST 2005 root at remedy.wilbury.sk:/usr/obj/usr/src/sys/remedy i386
>Description:
default settings of inetd allows users to use ~/.fakeid file to change
IDENT server replies.
>How-To-Repeat:
use "-r" flag (as in default inetd config) to "auth" internal service
>Fix:
remove "-r" and probably "-n", too from default inetd.conf
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list