On Fri, Jul 12, 2002 at 10:23:35PM +0100, void wrote: > On Wed, Jul 10, 2002 at 02:30:19PM +0200, Bogdan TARU wrote: > > > > Hi guys, > > > > I have just rebooted my machine, and immediately after boot I have run > > 'sysctl -a' as an usual user. Well, in 'kern.msgbuf' I have found the > > whole master.passwd file, with combinations of usernames/passwords. Isn't > > that a security threat? > > Do you know how it got in there in the first place? I'd say that's the > security problem.
I would asume something like editing the passwd in single use mode. kern.msgbuf should be closed for non root users - IMO. -- B.Walter COSMO-Project http://www.cosmo-project.de [EMAIL PROTECTED] Usergroup [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
