Date: Fri, 22 Sep 2000 07:14:38 -0700 From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> To: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> Cc: "Yuri A. Wolf" <subs@proxy.obk.ru>, freebsd-security@FreeBSD.ORG Subject: Re: I thinked it is fixed Message-ID: <200009221415.e8MEF9o11149@cwsys.cwsent.com> In-Reply-To: Your message of "Thu, 21 Sep 2000 22:32:53 EDT." <200009220232.WAA10152@khavrinen.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <200009220232.WAA10152@khavrinen.lcs.mit.edu>, Garrett Wollman write s: > <<On Fri, 22 Sep 2000 09:26:54 +0700 (NOVST), "Yuri A. Wolf" <subs@proxy.obk. > ru> said: > > > 1. Login normally as root > > 2. Do the next > > #/usr/bin/login -f userx > > Now I'm non-root user 'userx'. > > 3. Exit back > > $^D > > # > > Now I'm root, right? But try to do "who", "who am i", "finger", they all > > say 'userx'. > > Don't do that then. > > (Perhaps login(8) should fail if it's not the session leader. I'm not > sure there's actually a way to reliably detect whether it is or not.) Solaris does this: dragon# login -f foobar No utmpx entry. You must exec "login" from the lowest level "shell". dragon# Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/DEC Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD, ISTA Province of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200009221415.e8MEF9o11149>