Summary: | su security problem | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | lone_iguana |
Component: | New packages | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | critical | CC: | azarah |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
lone_iguana
2003-07-07 16:03:49 UTC
*** Bug 24082 has been marked as a duplicate of this bug. *** This is debateble I guess. The fix is, remove the 'nodelay' from system-auth: ------------------------------------------------- # grep nodelay /etc/pam.d/system-auth auth sufficient /lib/security/pam_unix.so likeauth nullok nodelay ------------------------------------------------- This is how RH/MDK/whoever had it in the past. I see MDK at least removed this. Default with 'nodelay' removed is prob the best. Fixed in -r7. |