Package: libpam-modules
Version: 0.79-3.1
Severity: important
Pam_access.so issues DNS queries for console names and local names.
For instance, lookups for "pts/0" and "cron" are issued, which
simply makes no sense.
If access is restricted on a per IP basis through pam_access with a
standard debian configuration, the restrictions can be bypassed by
manipulating DNS, logging in to an unrestricted account, and using su.
The most simple way of doing this is to place a line like
1.2.3.4 pts/0
into /etc/hosts.
-- System Information:
Debian Release: testing/unstable
Architecture: i386 (i686)
Versions of packages libpam-modules depends on:
ii libc6 2.3.6-15 GNU C Library: Shared libraries
ii libcap1 1:1.10-14 support for getting/setting POSIX.
ii libdb4.3 4.3.29-5 Berkeley v4.3 Database Libraries [
ii libpam0g 0.79-3.1 Pluggable Authentication Modules l
ii libselinux1 1.30-1 SELinux shared libraries
-- no debconf information
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
