Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)

To: debian-devel@lists.debian.org
Subject: Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
From: Brian May <bam@snoopy.debian.net>
Date: Wed, 14 Feb 2007 10:04:06 +1100
Message-id: <[🔎] sa464a5hd7d.fsf@margay.local>
In-reply-to: <[🔎] 20070213151558.GI10550@washoe.onerussian.com> (Yaroslav Halchenko's message of "Tue, 13 Feb 2007 10:15:59 -0500")
References: <[🔎] 20070212212214.GE10550@washoe.onerussian.com> <[🔎] 20070212223200.GD7627@mauritius.dodds.net> <[🔎] 20070212231052.GF10550@washoe.onerussian.com> <[🔎] 20070213025804.GG10550@washoe.onerussian.com> <[🔎] 873b5azqpq.fsf@windlord.stanford.edu> <[🔎] 20070213034650.GH10550@washoe.onerussian.com> <[🔎] 1171356240.450.8.camel@silicium.ccc.cea.fr> <[🔎] 20070213151558.GI10550@washoe.onerussian.com>

>>>>> "Yaroslav" == Yaroslav Halchenko <debian@onerussian.com> writes:

    Yaroslav> Just checked -- you are right. I thought since sshd is
    Yaroslav> running already and it is dyn linked against libpam, I
    Yaroslav> hoped that all required pam modules are loaded by
    Yaroslav> then... I was wrong... so indeed there is not much use
    Yaroslav> for login. I guess it is better to have some terminal
    Yaroslav> session with sash running to have constantly opened for
    Yaroslav> such occasions.

In which case, this extra sashroot user is pointless, and
automatically configuring it via a debconf question may introduce a
false sense of security.

(unless you modify/recompile login to bypass PAM checks in which case
it would be easy enough for a sysadmin to add the user entry).
-- 
Brian May <bam@snoopy.debian.net>

Reply to:

References:
- recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Yaroslav Halchenko <debian@onerussian.com>
- Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Steve Langasek <vorlon@debian.org>
- Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Yaroslav Halchenko <debian@onerussian.com>
- Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Yaroslav Halchenko <debian@onerussian.com>
- Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Russ Allbery <rra@debian.org>
- Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Yaroslav Halchenko <debian@onerussian.com>
- Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Josselin Mouette <joss@debian.org>
- Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
  - From: Yaroslav Halchenko <debian@onerussian.com>

Prev by Date: Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
Next by Date: Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
Previous by thread: Re: recent etch upgrade... sashroot (uid=0) started to impersonate uid=0 (root)
Next by thread: Hope to hear from you soon and God bless you!!!!
Index(es):
- Date
- Thread