Re: Debian 5 security issue

To: debian-user@lists.debian.org
Subject: Re: Debian 5 security issue
From: Tom H <tomh0665@gmail.com>
Date: Wed, 10 Mar 2010 07:51:07 -0500
Message-id: <[🔎] 6d4219cc1003100451qb90a39cof866c242985360c7@mail.gmail.com>
In-reply-to: <[🔎] 4B974194.1050201@cox.net>
References: <[🔎] alpine.DEB.1.10.1003101143150.20648@bretnewworkstation.busby.net> <[🔎] 4B974194.1050201@cox.net>

>> The '/usr/sbin/synaptic' program was started with the privileges of the
>> root user without the need to ask for a password, due to your system's
>> authentication mechanism setup.

>> It is possible that you are being allowed to run specific programs as user
>> root without the need for a password, or that the password is cached.

>> This is not a problem report; it's simply a notification to make sure you
>> are aware of this."

>> I have not knowingly configured the system to institute this system
>> security breach.

> At some point, "it" must have prompted you for the keyring passphrase, and
> you clicked "never ask me this again".

+1


>> How do I eliminate

> Don't know.

I do not have a GUI'd install of Debian to check this but, in Gnome,
"alt-f2, seahorse" should give you access to stored passwords and
auths.

Reply to:

References:
- Debian 5 security issue
  - From: Bret Busby <bret@busby.net>
- Re: Debian 5 security issue
  - From: Ron Johnson <ron.l.johnson@cox.net>

Prev by Date: Re: Getting no reply from this mailing list
Next by Date: Re: Custom debian installeur on DVD
Previous by thread: [OT] Hanlon's Razor (was: Debian 5 security issue)
Next by thread: Re: Debian 5 security issue
Index(es):
- Date
- Thread