From owner-freebsd-audit Mon Apr 8 5:59:46 2002 Delivered-To: freebsd-audit@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id 13C8437B404 for ; Mon, 8 Apr 2002 05:59:44 -0700 (PDT) Received: by flood.ping.uio.no (Postfix, from userid 2602) id 14C3C5309; Mon, 8 Apr 2002 14:59:41 +0200 (CEST) X-URL: http://www.ofug.org/~des/ X-Disclaimer: The views expressed in this message do not necessarily coincide with those of any organisation or company with which I am or have been affiliated. To: audit@freebsd.org Subject: Audit of credential borrowing code in OpenPAM From: Dag-Erling Smorgrav Date: 08 Apr 2002 14:59:40 +0200 Message-ID: Lines: 12 User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/21.1 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-audit@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I'd be grateful for review of and comment about the credential borrowing code I just added to OpenPAM: src/contrib/openpam/lib/openpam_{borrow,restore}_cred.c It's meant to be used by modules that need to temporarily switch to user credentials for some operations (e.g. pam_ssh(8) when reading keys or starting the agent) DES -- Dag-Erling Smorgrav - des@ofug.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message From owner-freebsd-audit Fri Apr 12 0:32:30 2002 Delivered-To: freebsd-audit@freebsd.org Received: from south.nanolink.com (south.nanolink.com [217.75.134.10]) by hub.freebsd.org (Postfix) with SMTP id 83C5137B404 for ; Fri, 12 Apr 2002 00:32:25 -0700 (PDT) Received: (qmail 68549 invoked from network); 12 Apr 2002 07:38:55 -0000 Received: from unknown (HELO straylight.ringlet.net) (212.116.140.125) by south.nanolink.com with SMTP; 12 Apr 2002 07:38:55 -0000 Received: (qmail 4800 invoked by uid 1000); 12 Apr 2002 07:32:15 -0000 Date: Fri, 12 Apr 2002 10:32:15 +0300 From: Peter Pentchev To: audit@FreeBSD.org Subject: PR bin/36992: battlestar segfaults Message-ID: <20020412103215.A365@straylight.oblivion.bg> Mail-Followup-To: audit@FreeBSD.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="xHFwDpU9dbj6ez1V" Content-Disposition: inline User-Agent: Mutt/1.2.5.1i Sender: owner-freebsd-audit@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --xHFwDpU9dbj6ez1V Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, Can anybody look at PR bin/36992 and my proposed patch, and make sure there is nothing wrong with it? :) If it is indeed okay, would it be fine for me to commit it, or should the battlestar sources be indeed audited a little bit more closely for similar problems? G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 This sentence contains exactly threee erors. --xHFwDpU9dbj6ez1V Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjy2jX8ACgkQ7Ri2jRYZRVPuQgCgn5JVk0Bw5mdjpF/08R1piNyW 414AoKCafs2JjI50NpYpxUUyqTunP1xh =46fY -----END PGP SIGNATURE----- --xHFwDpU9dbj6ez1V-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message