From owner-freebsd-hackers Fri Jul 12 19:31:14 2002 Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 77BB137B401 for ; Fri, 12 Jul 2002 19:31:09 -0700 (PDT) Received: from canning.wemm.org (canning.wemm.org [192.203.228.65]) by mx1.FreeBSD.org (Postfix) with ESMTP id D51E843E64 for ; Fri, 12 Jul 2002 19:31:08 -0700 (PDT) (envelope-from peter@wemm.org) Received: from fw.wemm.org (canning.wemm.org [192.203.228.65]) by canning.wemm.org (Postfix) with ESMTP id 90BAF2A7D6 for ; Fri, 12 Jul 2002 19:31:08 -0700 (PDT) (envelope-from peter@wemm.org) Received: from overcee.wemm.org (overcee.wemm.org [10.0.0.3]) by fw.wemm.org (Postfix) with ESMTP id 3BB864C241 for ; Fri, 12 Jul 2002 19:31:08 -0700 (PDT) (envelope-from peter@wemm.org) Received: from wemm.org (localhost [127.0.0.1]) by overcee.wemm.org (Postfix) with ESMTP id 1A8AE3811; Fri, 12 Jul 2002 19:31:08 -0700 (PDT) (envelope-from peter@wemm.org) X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 To: ticso@cicely.de Cc: void , Bogdan TARU , freebsd-hackers@FreeBSD.ORG Subject: Re: security problem in sysctl? In-Reply-To: <20020713020401.GU63545@cicely5.cicely.de> Date: Fri, 12 Jul 2002 19:31:08 -0700 From: Peter Wemm Message-Id: <20020713023108.1A8AE3811@overcee.wemm.org> Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Bernd Walter wrote: > On Fri, Jul 12, 2002 at 10:23:35PM +0100, void wrote: > > On Wed, Jul 10, 2002 at 02:30:19PM +0200, Bogdan TARU wrote: > > > > > > Hi guys, > > > > > > I have just rebooted my machine, and immediately after boot I have run > > > 'sysctl -a' as an usual user. Well, in 'kern.msgbuf' I have found the > > > whole master.passwd file, with combinations of usernames/passwords. Isn't > > > that a security threat? > > > > Do you know how it got in there in the first place? I'd say that's the > > security problem. > > I would asume something like editing the passwd in single use mode. > kern.msgbuf should be closed for non root users - IMO. The real problem is that a year or so ago phk added code that unconditionally logged the /dev/console output in the msgbuf so that it could be logged as /var/log/console.log. This is one of the unfortunate side effects. Another one is that /dev/console output blows away the boot messages. I've been looking for an excuse to disable and/or reimplement this properly for ages, but it never got urgent enough. IMHO, the console output should go to a seperate buffer [which is restricted to root-only], and uses a different output channel to syslogd. Cheers, -Peter -- Peter Wemm - peter@wemm.org; peter@FreeBSD.org; peter@yahoo-inc.com "All of this is for nothing if we don't go to the stars" - JMS/B5 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message