[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#556522: marked as done (hurd - using the login shell is insecure)



Your message dated Sun, 20 Mar 2011 22:20:17 +0000
with message-id <E1Q1Qyv-0001zO-B8@franck.debian.org>
and subject line Bug#556522: fixed in hurd 20110319-1
has caused the Debian Bug report #556522,
regarding hurd - using the login shell is insecure
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
556522: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=556522
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: hurd
Version: 20090404-2
Severity: important
Tags: security

Hurd uses a login shell by default on the ttys. This is a security
problem as it allows access with other permissions to all ressources.

Bastian

-- 
You're too beautiful to ignore.  Too much woman.
		-- Kirk to Yeoman Rand, "The Enemy Within", stardate unknown



--- End Message ---
--- Begin Message ---
Source: hurd
Source-Version: 20110319-1

We believe that the bug you reported is fixed in the latest version of
hurd, which is due to be installed in the Debian FTP archive:

hurd-dbg_20110319-1_hurd-i386.deb
  to main/h/hurd/hurd-dbg_20110319-1_hurd-i386.deb
hurd-dev_20110319-1_hurd-i386.deb
  to main/h/hurd/hurd-dev_20110319-1_hurd-i386.deb
hurd-doc_20110319-1_all.deb
  to main/h/hurd/hurd-doc_20110319-1_all.deb
hurd-udeb_20110319-1_hurd-i386.udeb
  to main/h/hurd/hurd-udeb_20110319-1_hurd-i386.udeb
hurd_20110319-1.debian.tar.bz2
  to main/h/hurd/hurd_20110319-1.debian.tar.bz2
hurd_20110319-1.dsc
  to main/h/hurd/hurd_20110319-1.dsc
hurd_20110319-1_hurd-i386.deb
  to main/h/hurd/hurd_20110319-1_hurd-i386.deb
hurd_20110319.orig.tar.gz
  to main/h/hurd/hurd_20110319.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 556522@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Samuel Thibault <sthibault@debian.org> (supplier of updated hurd package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 27 Feb 2011 19:02:04 +0100
Source: hurd
Binary: hurd hurd-dev hurd-dbg hurd-doc hurd-udeb
Architecture: source all hurd-i386
Version: 20110319-1
Distribution: unstable
Urgency: low
Maintainer: GNU Hurd Maintainers <debian-hurd@lists.debian.org>
Changed-By: Samuel Thibault <sthibault@debian.org>
Description: 
 hurd       - The GNU Hurd
 hurd-dbg   - The GNU Hurd (debugging files)
 hurd-dev   - The GNU Hurd (development files)
 hurd-doc   - The GNU Hurd manual
 hurd-udeb  - The GNU Hurd - udeb (udeb)
Closes: 556522 558664
Changes: 
 hurd (20110319-1) unstable; urgency=low
 .
   [ Samuel Thibault ]
   * New upstream snapshot.
   * debian/local/setup-translators: Add inet6 -> 26 symlink.
   * debian/local/finish-install.d/51hurd_config-target-network: Set pfinet
     translator on /servers/socket/26 too, add +x permission.
   * debian/local/partman/commit.d/40hurd_reload-partitions: Add +x permission.
   * debian/local/runsystem: Don't let d-i start if there is less then 256MiB
     memory.  Tell the user he needs to be patient while the d-i templates get
     loaded.
   * debian/patches/ext2fs_nowait.patch: Avoid systematically waiting for all
     disk writes, as it slows us down awfully.
   * debian/control: Recommend random-egd, to provide /dev/*random
     (Closes: Bug#558664). Break old gnumach packages, instead of depending on
     them. Break libc0.3 before getifaddrs fix, now that pfinet provides a
     correct response.
   * debian/patches/auth-intr-cure.patch: Add patch to mitigate
     reauthentication issue triggered by sudo.
   * debian/patches/libpager_deadlock.patch: Add patch to fix a known
     synchronization deadlock.
   * debian/local/finish-install.d/51hurd_config-target-network: Record active
     network configuration, not only passive. Create /servers/socket/26 node if
     it doesn't exist yet.
   * debian/local/setup-translators, debian/patches/makedev_keep_options.patch:
     Fix -K option into not starting existing translators.
   * debian/patches/libdiskfs_self-reauth.patch: Add patch to fix one of the
     spurious mach port deallocation issues.
 .
   [ Justus Winter ]
   * debian/hurd.{postinst,postrm}: Add/remove loginpr shell and login user with
     loginpr shell, to drop the login shell in order to match common Debian
     convention, in particular for remote telnet access...
     (Closes: Bug#556522)
 .
   [ Samuel Thibault ]
   * debian/NEWS: Add a notice about that.
Checksums-Sha1: 
 186377e1962e56cbd8f20da181f9ecf6a4ddf6a3 1585 hurd_20110319-1.dsc
 5f39089808748cff932688a80dd29a8109888bdc 2735128 hurd_20110319.orig.tar.gz
 90d76758269454a3f778836136fa40fcd39f3f91 76522 hurd_20110319-1.debian.tar.bz2
 0c371795c10c4343f0b3b12ffe0bf108a7a79128 196856 hurd-doc_20110319-1_all.deb
 b2082a8bd64ef8ba92246c5a38dfabc159ec66f2 3403856 hurd_20110319-1_hurd-i386.deb
 2c7b6ad26ea6312c9555414595c2487956fc94ba 532782 hurd-dev_20110319-1_hurd-i386.deb
 72d88f093280f860ca5f5e3355771027ba9525c1 6258272 hurd-dbg_20110319-1_hurd-i386.deb
 c6960b8fdb1fef432047f103bbdd4746eab28632 1904886 hurd-udeb_20110319-1_hurd-i386.udeb
Checksums-Sha256: 
 04c310604089ab1dc807ca53ae3f1a823f8c3f9af5aad9d633410719ea16fdd8 1585 hurd_20110319-1.dsc
 4017af1059a5b5bd62c0469106c650efa9b51a5701a5d8a90789b3cb93b20a22 2735128 hurd_20110319.orig.tar.gz
 d8abc1785a545b71e1ba61f6d1aee80fe3d376ab44f02dff43491ee1a9728e1f 76522 hurd_20110319-1.debian.tar.bz2
 398900b38321d6b80ca1c0c5925d42817cb718e4ebfb24d03c6019b54f8ab0d0 196856 hurd-doc_20110319-1_all.deb
 79dbfa9b6ccbfbb47ef5914d29fd5c31e061eb5dc13eee47db4180f61f3dd324 3403856 hurd_20110319-1_hurd-i386.deb
 c71ae1df1729ca0e6c67495adc16d698b105d3d7444b3644b903a18ae87c9d41 532782 hurd-dev_20110319-1_hurd-i386.deb
 6603f196844c69aeb3082c02a2dde2b650cc5f133fb57e9dc1bba54cd65b45bd 6258272 hurd-dbg_20110319-1_hurd-i386.deb
 c5cdf2d9406199166eca44a25d6b027dd5290283d4fb65608762ab9dcd84e5c4 1904886 hurd-udeb_20110319-1_hurd-i386.udeb
Files: 
 875b66d02f9ae69633e27fa1e1e9906b 1585 admin required hurd_20110319-1.dsc
 8bc392cae1e87378803bf0a6ebb61800 2735128 admin required hurd_20110319.orig.tar.gz
 45d5b7f48053b333c0fd48080f30dc7b 76522 admin required hurd_20110319-1.debian.tar.bz2
 819b298cf037b60a4c74ffc35d375393 196856 doc optional hurd-doc_20110319-1_all.deb
 225618bfdfc5c70948f989dd21233ea3 3403856 admin required hurd_20110319-1_hurd-i386.deb
 14dd055164df97d1b733c2e7b3600b2e 532782 libdevel standard hurd-dev_20110319-1_hurd-i386.deb
 533af0e96acee1cff5be31ea1420e52c 6258272 debug extra hurd-dbg_20110319-1_hurd-i386.deb
 c987996069e2495ab77d91c767e0571a 1904886 debian-installer optional hurd-udeb_20110319-1_hurd-i386.udeb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iF4EAREIAAYFAk2FwNMACgkQg7iRWpzNNcNh0AD/czSvu4SMhfYfpuU9dcDkc5Fc
aYLL6yJM5yHIm3InPP4A/ROvUxZO0BOU9lP6O/W/1oWlh2+rDGG68QX3L3ptGr60
=p1PR
-----END PGP SIGNATURE-----



--- End Message ---

Reply to: