Date: Tue, 21 Aug 2001 11:35:55 +0800 From: Eugene Grosbein <eugen@svzserv.kemerovo.su> To: stable@freebsd.org Subject: stale entries in utmp (security issue?) Message-ID: <3B81D71B.B099197F@svzserv.kemerovo.su>
next in thread | raw e-mail | index | archive | help
Hi! 1. login as root 2. type 'login -f username' when username is valid name of user that is not logged now 3. type 'logout' 4. Now you are root but command 'w' does not say so (security?) 5. type 'logout' 6. Now command 'w' says user 'username' is still logged but it has no processes. This seems like a bug. This is a simple method to reproduce but there are other ways to get such 'zombie' users. You may have to reboot system to handle this. Eugene Grosbein To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3B81D71B.B099197F>