From owner-freebsd-current Thu Nov 22 6:40:15 2001 Delivered-To: freebsd-current@freebsd.org Received: from web21104.mail.yahoo.com (web21104.mail.yahoo.com [216.136.227.106]) by hub.freebsd.org (Postfix) with SMTP id E044537B405 for ; Thu, 22 Nov 2001 06:40:11 -0800 (PST) Message-ID: <20011122144011.50097.qmail@web21104.mail.yahoo.com> Received: from [62.254.0.4] by web21104.mail.yahoo.com via HTTP; Thu, 22 Nov 2001 06:40:11 PST Date: Thu, 22 Nov 2001 06:40:11 -0800 (PST) From: Hiten Pandya Subject: [SUGGESTION] - disallowing shutdown after su(1) To: current@freebsd.org MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="0-311395425-1006440011=:49711" Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --0-311395425-1006440011=:49711 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline hi all, correct me if i am wrong.. but.. do you think, if we denied a shutdown after an su(1) to root from a non-privileged user would be good... i tried this same thing at home.. i builded it and installed it.. works fine for me... the patch below will allow a shutdown only be logging into root itself and not by issuing an su(1) command to root. this would be very good, i think if someone broke into a normal user and was able to gain access into root using su... (without a password..) i am submitting a tar.gz file, which has the patch for the shutdown.8 manpage, and shutdown.c located at.. src/sbin/shutdown.c... thanks... ===== regards, Hiten Pandya ---------------------------------------------------- Guys!... stay away from Einstein Junior! ---------------------------------------------------- __________________________________________________ Do You Yahoo!? Yahoo! GeoCities - quick and easy web site hosting, just $8.95/month. http://geocities.yahoo.com/ps/info1 --0-311395425-1006440011=:49711 Content-Type: application/x-tar; name="shutdown.tar.gz" Content-Transfer-Encoding: base64 Content-Description: shutdown.tar.gz Content-Disposition: attachment; filename="shutdown.tar.gz" H4sICLEI/TsCA3NodXRkb3duLnRhcgDtV21v2zYQ9lf7VxyyL7YrKaIixy/B gC5I2vVD2yBJsWFZYNASJRGWREGk7BpD/3uPVPySLO2XYSlQ8IEg8eV4PN6R D0/Xl79dvL/s/K8gvn8ahtABDf/JFxGMQ4DxyXgc+GEQEgDik2DcAb/zAmik ojVApxZCfU9unTGWd3463GYMEp4zCZEoFeUli4GXoDIuoaLRkqZs1uvJrFGx WJfexIt5koCLfSrKIBE17Pv2YtF3xKJe7zaj5VJ6Xs+F37liJVzRMt5QrGZc FVQqVgfL1xuaCeFFomjbWfm6WXpvasbOby48Uae9jsV/xpPI/ojzT/zRqD3/ ZBQG/gm2BCQM7Pl/CQyHw4MT7Ik87t5mDXwQKwgCDM0sDGbBFALfJz3XdQ9k n8pNZqNJKzd8DF2H0dg5DcBUtRpdPQUsuT0AJaDkEcs3UArFkw00ktUS0OOa iBjIDTJCAchIenbFyxS0CQ4OlXSlqyhVQFKLYitL44KXXKqaKlFLBzKkMqYL SDSQNnWDxXUmUMNaNHkMAjXUay6ZNgEWpgprrjKQDRKYNk9xJr3eK8Dn5sEJ yJlFoTWiaXoczXOxRgJdbLBFNtoyWuoB3p9IgA2Q7QCjB8C7qvBtKFjooXqA qBQXpQRaM6ArynO6yJGCUfg8B1fRFNw1j9EwXsasVM86m0zGDplM9+4mU+KQ 6XTrcO9Dge+t8bSqGM6med9M8xlCz4eHpT56LF3+vPwf/TD+D05IuON/Ehr+ D4jN/16e/5H9vaj7B1KB4XUC5GRGyAyv53/zf/SU/wleFd/m/+mpg1n9npFM PdgSEsZA8QgJSCGzZzRXDn4r5NJaF2q2wOA4sOR5nuSpA8WiSXJWOiCSnKZn ewVRhrHUvXfnn97cvPvr/rAPWVW1EsNSyE0ZOTDEO6A4Q2ozzc1cb4K7e/gV jnTp6AyOh6BL5kaC4TFqw2clOHI8jRUvGMznV/2+bhkMzrZ9MWfzjWjmaU1X mzneIEtk9nnF03ks0scjnqVvH51DDpxFfORzcrL1lplDTy4a1WpDxx1Mr7vW tC6f62skZvRtx6FDtMSrVoJLveJ+267XbQbjg4rwXeA/Qp/WKXoP36vB8ysg I4cE/sEKCK4g2K2g22qvMAKsjCs9QRcv6yZS+Mcg5TrGvrVp1VsC5zHRjjIH TKFmNJYq5qU2uvtgcBu9gYkZ3rXb200x/Tuxi90vPMF7M4GLy/NPb80ECfRT pljD4/7g+dWMgpEzCsYH2UswcUbhLn/pahY7Mm6HO+14jLZbMGlc7Xne/d/l kXFil33mqk9M+Ut7p6KxLn5gCDfNosaA4h8YLBgmA5h+5DmumUVLQCN1IqSj 0QpnVJoUA48q3Z3J/Y2e6CXLxkVDvHbAuwSk8OBjxTAlwgSj1W6SHQZXrC64 Uiw2ssetZd/YDPCPFnrYNjVmRfGZaTBFPDnoy1ykuEcGbTtP+n0MbVRUfT3e aQUHg60igKrGICf9o8vr64/XswMTtXU701oftiOMG13yUNee/GLTEwsLCwsL CwsLCwsLCwsLCwsLCwsLC4s9vgJf6t1TACgAAA== --0-311395425-1006440011=:49711-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message