[696] in linux-security and linux-alert archive
[linux-security] sh-utils-1.12+security
daemon@ATHENA.MIT.EDU (Eric John Kuzniar)
Fri May 3 09:14:26 1996
Date: Fri, 3 May 1996 02:30:25 -0400 (EDT)
From: Eric John Kuzniar <kuzniar@cs.unca.edu>
To: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <Pine.LNX.3.91.960130151057.4068A-100000@underground.org>
This is the standard sh-utils-1.12 source distributions with a couple
additions to su. One is implementation for the wheel group. Persons in
the wheel group (as defined in /etc/group) are the only ones allowed to
su to root. It also has some code to prevent a user from using an old
password to login, a design flaw in most implementations of su which is
commonly exploited with a combination of social engineering.
What follows it the lsm for this package.
Eric Kuzniar
Begin3
Title: sh-utils-1.12+security.tar.gz
Version: Fri Apr 26 01:21:48 EDT 1996
Entered-date: 02MAY96
Description: This is the sh-utils-1.12 package
with a few security enhancements.
most notably support for wheel groups in su.
Keywords: su false util security secure
Author:
Maintained-by: kuzniar@cs.unca.edu (Eric John Kuzniar)
Primary-site: sunsite.unc.edu /pub/system/Misc
Alternate-site:
Original-site: hendersonville.cs.unca.edu /pub/linux/security
Platform:
Copying-policy: GPL
End
