From owner-freebsd-stable  Mon Aug 20 20:36: 6 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from www.svzserv.kemerovo.su (www.svzserv.kemerovo.su [213.184.65.80])
	by hub.freebsd.org (Postfix) with ESMTP id D3A8937B408
	for <stable@freebsd.org>; Mon, 20 Aug 2001 20:36:00 -0700 (PDT)
	(envelope-from eugen@svzserv.kemerovo.su)
Received: from svzserv.kemerovo.su (kost [213.184.65.82])
	by www.svzserv.kemerovo.su (8.9.3/8.9.3) with ESMTP id LAA59446
	for <stable@freebsd.org>; Tue, 21 Aug 2001 11:35:58 +0800 (KRAST)
	(envelope-from eugen@svzserv.kemerovo.su)
Message-ID: <3B81D71B.B099197F@svzserv.kemerovo.su>
Date: Tue, 21 Aug 2001 11:35:55 +0800
From: Eugene Grosbein <eugen@svzserv.kemerovo.su>
Organization: SVZServ
X-Mailer: Mozilla 4.76 [en] (Win95; U)
X-Accept-Language: ru,en
MIME-Version: 1.0
To: stable@freebsd.org
Subject: stale entries in utmp (security issue?)
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

Hi!

1. login as root
2. type 'login -f username' when username is valid name of user that is
not logged now
3. type 'logout'
4. Now you are root but command 'w' does not say so (security?)
5. type 'logout'
6. Now command 'w' says user 'username' is still logged but it has no
processes.

This seems like a bug. This is a simple method to reproduce but
there are other ways to get such 'zombie' users. You may have to reboot
system to handle this.

Eugene Grosbein

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message