Re: System users and valid shells...

To: Thiemo Seufer <ths@networkno.de>
Cc: debian-devel@lists.debian.org
Subject: Re: System users and valid shells...
From: Gabor Gombas <gombasg@sztaki.hu>
Date: Mon, 8 May 2006 13:17:57 +0200
Message-id: <[🔎] 20060508111757.GH14107@boogie.lpds.sztaki.hu>
In-reply-to: <[🔎] 20060508105315.GB31648@networkno.de>
References: <[🔎] 20060503004556.GA28648@aragorn> <[🔎] 20060503010259.GH12999@riva.ucam.org> <[🔎] Pine.LNX.4.64.0605021837210.2398@hygvzn-guhyr.pnirva.bet> <[🔎] ac9w7uvg.fsf@cante.net> <[🔎] E1FcznH-0001R3-48@scyw00225.scy001.de> <[🔎] 20060508090042.GA31648@networkno.de> <[🔎] 20060508102930.GC14107@boogie.lpds.sztaki.hu> <[🔎] 20060508105315.GB31648@networkno.de>

On Mon, May 08, 2006 at 11:53:15AM +0100, Thiemo Seufer wrote:

> Such a binary is completely broken, and it would fail in a similiar way
> for any sort of file it has no execute permission for, not only for
> $SHELL.

Sure, but that does not change the fact that it is a failure path that
is usually not well-tested. Triggering it deliberately without a general
audit of login shell handling therefore may discover new bugs with
security implications.

Gabor

-- 
     ---------------------------------------------------------
     MTA SZTAKI Computer and Automation Research Institute
                Hungarian Academy of Sciences
     ---------------------------------------------------------

Reply to:

Follow-Ups:
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>

References:
- System users and valid shells...
  - From: Uwe Hermann <uwe@hermann-uwe.de>
- Re: System users and valid shells...
  - From: Colin Watson <cjwatson@debian.org>
- Re: System users and valid shells...
  - From: Richard A Nelson <cowboy@debian.org>
- Re: System users and valid shells...
  - From: Jari Aalto <jari.aalto@cante.net>
- Re: System users and valid shells...
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>
- Re: System users and valid shells...
  - From: Gabor Gombas <gombasg@sztaki.hu>
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>

Prev by Date: Re: System users and valid shells...
Next by Date: Re: System users and valid shells...
Previous by thread: Re: System users and valid shells...
Next by thread: Re: System users and valid shells...
Index(es):
- Date
- Thread