Bug#158090: security.debian.org: Easy for any user to fake messages into syslog

To: Martin Schulze <joey@infodrom.org>, 158090@bugs.debian.org
Cc: Matt Zimmerman <mdz@debian.org>, Deepak Goel <deego@gnufans.redirectme.net>
Subject: Bug#158090: security.debian.org: Easy for any user to fake messages into syslog
From: Joey Hess <joeyh@debian.org>
Date: Sun, 25 Aug 2002 15:15:08 -0400
Message-id: <[🔎] 20020825191508.GJ2641@kitenet.net>
Reply-to: Joey Hess <joeyh@debian.org>, 158090@bugs.debian.org
In-reply-to: <20020825175702.GH29052@finlandia.infodrom.north.de>
References: <E17iqok-0003En-00@computer> <20020825151540.GW12945@alcor.net> <20020825175702.GH29052@finlandia.infodrom.north.de>

Martin Schulze wrote:
> Even worse, syslogd only reads what is provided on /dev/log.
> 
> The socket is world writable, glibc's syslog() function writes
> to it, from any program.  Restricting its write access to root
> would effectively disable syslogging.

syslogd could use getsockopt(SO_PEERCRED) to get a ucred structure and
work out the user who has opened /dev/log and include that info in the
log somewhere. This would require no special glibc support. If you want
generic code to do that on a unix socket (works on linux, and probably
freebsd, and possibly other bsd's), I can provide it. Where in the log
to put this information without changing the format and breaking a lot of
stuff, I do not know.

-- 
see shy jo

Reply to:

Prev by Date: Bug#158090: security.debian.org: Easy for any user to fake messages into syslog
Next by Date: Bug#158090: security.debian.org: Easy for any user to fake messages into syslog
Previous by thread: Bug#158090: security.debian.org: Easy for any user to fake messages into syslog
Next by thread: Bug#158090: security.debian.org: Easy for any user to fake messages into syslog
Index(es):
- Date
- Thread