From owner-freebsd-security@FreeBSD.ORG Tue Aug 10 15:55:02 2010 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 800E11065749 for ; Tue, 10 Aug 2010 15:55:02 +0000 (UTC) (envelope-from jh@FreeBSD.org) Received: from gw01.mail.saunalahti.fi (gw01.mail.saunalahti.fi [195.197.172.115]) by mx1.freebsd.org (Postfix) with ESMTP id 3A1B18FC1B for ; Tue, 10 Aug 2010 15:55:01 +0000 (UTC) Received: from jh (a91-153-115-208.elisa-laajakaista.fi [91.153.115.208]) by gw01.mail.saunalahti.fi (Postfix) with SMTP id 0989E151A59; Tue, 10 Aug 2010 18:39:28 +0300 (EEST) Date: Tue, 10 Aug 2010 18:39:28 +0300 From: Jaakko Heinonen To: Janne Snabb Message-ID: <20100810153928.GA28619@jh> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.20 (2009-06-14) X-Mailman-Approved-At: Tue, 10 Aug 2010 15:59:26 +0000 Cc: freebsd-security@freebsd.org Subject: Re: ~/.login_conf mechanism is flawed X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2010 15:55:02 -0000 On 2010-08-10, Janne Snabb wrote: > Looks like the per-user login capability database (~/.login_conf, > ~/.login_conf.db) functionality is creating a vulnerability. See also PR bin/141840: http://www.freebsd.org/cgi/query-pr.cgi?pr=141840 -- Jaakko