Date: Tue, 21 Aug 2001 12:00:32 +0800 From: Eugene Grosbein <eugen@svzserv.kemerovo.su> To: Tom <tom@uniserve.com> Cc: stable@FreeBSD.ORG Subject: Re: stale entries in utmp (security issue?) Message-ID: <3B81DCE0.FA04FA74@svzserv.kemerovo.su> References: <Pine.BSF.4.10.10108202039170.62960-100000@athena.uniserve.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
> > 4. Now you are root but command 'w' does not say so (security?) > > 5. type 'logout' > > 6. Now command 'w' says user 'username' is still logged but it has no > > processes. > > Since the root user can just delete the utmp file, there is not too much > to be done about this. Some UNIX systems have gone to a utmp API and an > utmp server to maintain the logged in user state better. How can root fix utmp safely without touching other working users? Eugene Grosbein To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3B81DCE0.FA04FA74>