Error in /etc/pam.d/su ??
Kris Kennaway
kris at obsecurity.org
Thu Oct 21 09:56:39 PDT 2004
On Thu, Oct 21, 2004 at 02:56:52PM +0200, Roman Kennke wrote:
> Hi there,
>
> I just upgraded RELENG_5. Now it seems, that su lets me into root
> without a passwd.
> Checking /etc/pam.d/su it seems that there is an include control flag,
> which isn't recognized:
>
> auth include system
> account include system
>
> I suppose this must be changed to required or requisite? I am no PAM
> expert, but this seems like a serious bug to me.
If it's not recognized on your system, you haven't done a complete
upgrade to RELENG_5 - it's been recognized there for a long time now.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-current/attachments/20041021/872bfb21/attachment.bin
More information about the freebsd-current
mailing list