[682] in linux-security and linux-alert archive
[linux-security] Re: WARNING: libc/ruserok security hole
daemon@ATHENA.MIT.EDU (Steven L Baur)
Mon Apr 22 06:38:28 1996
To: linux-security@tarsier.cv.nrao.edu
Cc: linux-gcc@vger.rutgers.edu, hjl@gnu.ai.mit.edu
Mail-Copies-To: never
From: Steven L Baur <steve@miranova.com>
In-Reply-To: Joel Maslak's message of 21 Apr 1996 14:15:40 -0700
Date: 22 Apr 1996 00:13:10 -0700
>>>>> "Joel" == Joel Maslak <j@pobox.com> writes:
Joel> libc 5.3.9 has a major security bug in it. It affects rlogin/rsh.
Joel> Scope: If your system uses rlogin/rsh, local and remote users may
Joel> rsh/rlogin to an arbitrary account on your system.
Joel> Fix:
Joel> Method (1): downgrade libc. I know 5.0.9 is secure.
Joel> Method (2): add user name specifications to all .rhosts files.
Joel> I.E.: .rhosts:
Joel> plains.uwyo.edu jmaslak
Joel> NOT:
Joel> plains.uwyo.edu
Joel> Without a user specification, libc-5.3.9 IS INSECURE!!
This bug affects 5.3.11 as well, and does not require .rhosts --
hosts.equiv triggers the same thing. Removing the -DYP from
Makeconfig, and rebuilding libc seems to cure this problem.
--
steve@miranova.com baur
Unsolicited commercial e-mail will be proofread for $250/hour.
Andrea Seastrand: For your vote on the Telecom bill, I will vote for anyone
except you in November.
