Date: Sun, 10 Jan 1999 14:46:36 +0100 (CET) From: Jeroen Ruigrok/Asmodai <asmodai@wxs.nl> To: "Daniel O'Callaghan" <danny@FreeBSD.ORG> Cc: freebsd-bugs@FreeBSD.ORG, root@cc.fh-lippe.de Subject: Re: misc/9424 Message-ID: <XFMail.990110144636.asmodai@wxs.nl> In-Reply-To: <199901101121.DAA12865@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 10-Jan-99 Daniel O'Callaghan wrote: > Synopsis: wrong grep in /etc/security > > State-Changed-From-To: open->closed > State-Changed-By: danny > State-Changed-When: Sun Jan 10 03:21:15 PST 1999 > State-Changed-Why: > Fix applied. Thank you. This fix creates another problem. Just telnet to localhost, log in as a user and provide a wrong password. When it returns for the username again, close the session. Now telnet again, and this time enter a name, wrong password, enter a name again, and another wrong password and then close the session again. The log (var/log/messages) will report this: Jan 10 12:27:52 daemon login: 1 LOGIN FAILURE FROM daemon.ninth-circle.org Jan 10 12:29:57 daemon login: 3 LOGIN FAILURES FROM daemon.ninth-circle.org So changing the parameters of grep from failure to failures or vice versa `forgets' to include one case, so the best thing would be to include both --- Jeroen Ruigrok van der Werven A veil of smoke is what I am, asmodai(at)wxs.nl I wait and I wait... Network/Security Specialist <http://home.wxs.nl/~asmodai>; BSD & picoBSD: The Power to Serve <http://www.freebsd.org>; To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.990110144636.asmodai>