From owner-freebsd-bugs@FreeBSD.ORG Thu Mar 11 23:10:01 2004 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D39B816A4CE for ; Thu, 11 Mar 2004 23:10:01 -0800 (PST) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id AF0FF43D45 for ; Thu, 11 Mar 2004 23:10:01 -0800 (PST) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) i2C7A1bv012069 for ; Thu, 11 Mar 2004 23:10:01 -0800 (PST) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.10/8.12.10/Submit) id i2C7A1UE012068; Thu, 11 Mar 2004 23:10:01 -0800 (PST) (envelope-from gnats) Resent-Date: Thu, 11 Mar 2004 23:10:01 -0800 (PST) Resent-Message-Id: <200403120710.i2C7A1UE012068@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Gerd Wachs Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2EC4116A4CE for ; Thu, 11 Mar 2004 23:05:28 -0800 (PST) Received: from www.freebsd.org (www.freebsd.org [216.136.204.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id 24A3643D45 for ; Thu, 11 Mar 2004 23:05:28 -0800 (PST) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.12.10/8.12.10) with ESMTP id i2C75R72082164 for ; Thu, 11 Mar 2004 23:05:27 -0800 (PST) (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.12.10/8.12.10/Submit) id i2C75RpN082163; Thu, 11 Mar 2004 23:05:27 -0800 (PST) (envelope-from nobody) Message-Id: <200403120705.i2C75RpN082163@www.freebsd.org> Date: Thu, 11 Mar 2004 23:05:27 -0800 (PST) From: Gerd Wachs To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-2.3 Subject: misc/64143: Security issue : fstab item missing causes automatic login as root without password when machine restarted. X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Mar 2004 07:10:01 -0000 >Number: 64143 >Category: misc >Synopsis: Security issue : fstab item missing causes automatic login as root without password when machine restarted. >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu Mar 11 23:10:01 PST 2004 >Closed-Date: >Last-Modified: >Originator: Gerd Wachs >Release: 4.9 Release >Organization: >Environment: >Description: This is a security issue. When an item in fstab no longer exists, and the machine is restarted, FreeBSD logs you on as root without asking for a password. You have full privilidges without having to select a user or password. >How-To-Repeat: Clean installation. Add a USB (Maxtor One Touch 120GB) to the machine. Add a reference in the fstab so that it can be mounted. Note that the reference has not been setup as automount. Ensure that you can mount the device as normal. Restart the machine with the device attached to confirm normal request for user password occurs. Shutdown the machine. Remove the USB hard disk. Restart the machine. An error stating invalid device in the fstab. You are asked for your shell with a default [bash\sh] for the root user. You press enter, and you are into the system with root privileges without having typed a password. >Fix: >Release-Note: >Audit-Trail: >Unformatted: