Re: Shadow Passwords

To: submit-linux-debian-user@ratatosk.yggdrasil.com
Subject: Re: Shadow Passwords
From: jhenders@wimsey.com (John Henders)
Date: 4 Feb 1996 11:31:55 -0800
Message-id: <[🔎] 4f31jb$ish@vanbc.wimsey.com>
References: <m0thfsj-00014ZC@miles.econ.queensu.ca> <199601312025.VAA02091@i17linuxb.ists.pwr.wroc.pl> <[🔎] m0tj4kO-0002bjC@chiark.chu.cam.ac.uk>

Ian Jackson <ian@chiark.chu.cam.ac.uk> writes:

>Certainly before this hole is fixed a system with a shadow `login'
>is/was definitely much more vulnerable than one without shadow
>passwords at all.

Actually, this has yet to be proven. No exploit script has been posted
to show that login is vulnerable. The shadow login program does an
isgraph() on all the characters entered, so, assuming there's no bugs in
linux's isgraph, it would be a fair trick to create executable code
from just the set of printable ascii characters. That would mean that
the worst you could expect is for login to dump core.

If people issued a security alert for every piece of code running on
linuux that didn't do bounds checking on input the security list would
be unusable.

-- 
John Henders

Reply to:

Follow-Ups:
- Re: Shadow Passwords
  - From: richard@sfere.uk.geeks.org (Richard Kettlewell)
- Re: Shadow Passwords
  - From: "Mark W. Eichin" <eichin@cygnus.com>

References:
- Re: Shadow Passwords
  - From: Ian Jackson <ian@chiark.chu.cam.ac.uk>

Prev by Date: FW: mail failed, returning to sender (fwd)
Next by Date: Re: Large IDE Drive Mini-HOWTO
Previous by thread: Re: Shadow Passwords
Next by thread: Re: Shadow Passwords
Index(es):
- Date
- Thread