On Tue, 26 Jun 2001, Joachim Blaabjerg wrote: > No, not directly, but if your `su` uses PAM to authenticate users and > PAM reacts to the spaces in the beginning of the passwd file, it > surely has something to do with PAM. To check whether `su` uses PAM or > not, try "ldd `which su`|grep libpam" /etc/passwd is not the only place you might want to modify. Think of rc.local or anything like that. -- _____________________________________________________ Michal Zalewski [[EMAIL PROTECTED]] [security] [http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};: =-=> Did you know that clones never use mirrors? <=-=
- Re: smbd remote file creation vulnerabi... Jarno Huuskonen
- Re: smbd remote file creation vulne... Pavol Luptak
- Re: smbd remote file creation v... Simple Nomad
- Re: smbd remote file creat... Olaf Kirch
- Re: smbd remote file c... Simple Nomad
- Re: smbd remote file creation vulnerabi... Wichert Akkerman
- Re: smbd remote file creation vulne... Michal Zalewski
- Re: smbd remote file creation vulne... Phil Stracchino
- Re: smbd remote file creation vulne... Steve Beattie
- Re: smbd remote file creation vulnerabi... Joachim Blaabjerg
- Re: smbd remote file creation vulne... Michal Zalewski
- Re: smbd remote file creation vulne... sarnold
- Re: smbd remote file creation vulnerability Fatal Connect
- Re: smbd remote file creation vulnerability Joseph Nicholas Yarbrough
- Re: smbd remote file creation vulnerability Christopher William Palow
- Re: smbd remote file creation vulnerability Dan Stromberg
- Re: smbd remote file creation vulnerability Daniel Jacobowitz