Date: 15 Feb 2006 14:05:15 -0000 From: Juraj Lutter <otis@sk.FreeBSD.org> To: FreeBSD-gnats-submit@FreeBSD.org Cc: uhlar@nextra.sk Subject: bin/93391: inetd's internal auth service allows use of ~/.fakeid Message-ID: <20060215140515.65019.qmail@remedy.wilbury.sk> Resent-Message-ID: <200602151410.k1FEA5G6031539@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 93391 >Category: bin >Synopsis: inetd's internal auth service allows use of ~/.fakeid >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Wed Feb 15 14:10:04 GMT 2006 >Closed-Date: >Last-Modified: >Originator: Juraj Lutter >Release: FreeBSD 5.4-STABLE i386 >Organization: >Environment: System: FreeBSD remedy.wilbury.sk 5.4-STABLE FreeBSD 5.4-STABLE #0: Sun Jul 17 13:16:48 CEST 2005 root@remedy.wilbury.sk:/usr/obj/usr/src/sys/remedy i386 >Description: default settings of inetd allows users to use ~/.fakeid file to change IDENT server replies. >How-To-Repeat: use "-r" flag (as in default inetd config) to "auth" internal service >Fix: remove "-r" and probably "-n", too from default inetd.conf >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060215140515.65019.qmail>