APLawrence.com -  Resources for Unix and Linux Systems, Bloggers and the self-employed

userOsa can overwrite passwd and shadow


What is this stuff?

If this isn't exactly what you wanted, please try our Search (there's a LOT of techy and non-techy stuff here about Linux, Unix, Mac OS X and just computers in general!):



Newsgroups: comp.unix.sco.misc
Subject: Re: BUGTRAQ report
References: <7tvq0m$gu1$1@hendrix.postino.com> 
From: john@kuwait.net (John Temples)
Message-ID: <zOLM3.401$uI3.20885@dfiatx1-snr1.gtei.net> 
X-Abuse-Info: Please be sure to forward a copy of ALL headers
X-Abuse-Info: Otherwise we will be unable to process your complaint properly
Distribution: world
Date: Tue, 12 Oct 1999 19:16:47 GMT

In article <7tvq0m$gu1$1@hendrix.postino.com>,
Danny Aldham <danny@hendrix.postino.com> wrote:
>Any user may overwrite any file with group auth (i.e. /etc/shadow,
>/etc/passwd) using /etc/sysadm.d/bin/userOsa.

My quick fix for this is to edit userOsa and replace the string
"debug.log" with "/dev/null".
-- 
John W. Temples, III





Got something to add? Send me email.





(OLDER)    <- More Stuff -> (NEWER)    (NEWEST)   

Printer Friendly Version

-> -> userOsa can overwrite passwd and shadow ––>Re: BUGTRAQ report



Increase ad revenue 50-250% with Ezoic

Kerio Connect Mailserver

Kerio Samepage

Kerio Control Firewall

Have you tried Searching this site?

Unix/Linux/Mac OS X support by phone, email or on-site: Support Rates

This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more.

Contact us





Any problem in computer science can be solved with another level of indirection. (David Wheeler)





This post tagged: