[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [linux-security] Re: denial of service attack on login

From: marekm i17linuxb ists pwr wroc pl (Marek Michalkiewicz)
To: linux-security redhat com
Cc: johnsonm redhat com
Subject: Re: [linux-security] Re: denial of service attack on login
Date: Wed, 27 Nov 1996 21:09:08 +0100 (MET)

Chris Adams:
> > 	joe$ nvi /var/log/wtmp
> > 
> > 	[ Now no-one else can log in ]
> 
> This doesn't seem to happen on my system - RedHat 3.0.3 + shadow
> passwords.  My /bin/login comes from shadow-960810-1.  Maybe the
> shadow passowrd suite doesn't try to lock wtmp?

Yes.  It shouldn't be necessary - the O_APPEND open() flag should be
enough to guarantee atomic writes at end of file (it's a kernel bug
if it doesn't).  Original *BSD login sources don't lock wtmp either,
but util-linux does.  Perhaps O_APPEND didn't work right on old
kernels?  Remember util-linux login was ported to Linux 0.12 :-).

Marek

References:
- Re: [linux-security] denial of service attack on login
  - From: Chris Adams

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]