From owner-freebsd-security Wed Mar 21 13:41: 8 2001 Delivered-To: freebsd-security@freebsd.org Received: from web13204.mail.yahoo.com (web13204.mail.yahoo.com [216.136.174.189]) by hub.freebsd.org (Postfix) with SMTP id 558EA37B71C for ; Wed, 21 Mar 2001 13:41:03 -0800 (PST) (envelope-from lipshitz909@yahoo.com) Message-ID: <20010321160143.26738.qmail@web13204.mail.yahoo.com> Received: from [213.167.135.253] by web13204.mail.yahoo.com; Wed, 21 Mar 2001 08:01:43 PST Date: Wed, 21 Mar 2001 08:01:43 -0800 (PST) From: Larry Librettez Subject: Cannot su to root in X terminal with 4.3-BETA To: freebsd-security@freebsd.org Cc: freebsd-stable@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org After upgrading to 4.3-BETA, I find I cannot su to root in a terminal window (rxvt, xterm) in X (XFree86-3.3.6 with either GNOME or KDE). Even if I enter the correct password, the su login gets rejected (and yes, user is member of wheel group). The logs report `BAD SU LIPSHITZ to root on ttyp0`. However, in a plain terminal (not in X), I CAN su to root as a regular user. Prior to upgrading to 4.3-BETA (kernel + userland), I was able to su to root in X in 4.2-STABLE. I tried adding `secureī after the ttyp entries in /etc/ttys but that didnīt help. I did both mergemaster and MAKEDEV all during my rebuild. I specifically re-made the ttyp* devices. I even typed out the su password on the terminal to make sure it shows correctly and it does. On a separate box using 4.2-STABLE I upgraded only the kernel to 4.3-BETA (same 4.2-STABLE userland), and the problem still occurred - couldnīt su to root in an X terminal. Is the problem in the kernel? A bug? A DoS? I cvsupīd 3 times and rebuilded 3 times with no change in this problem. How do I fix this? __________________________________________________ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message