Passwd entry
Bob Kinne
bobk at fred.colorado.edu
Sat Aug 26 03:38:43 AEST 1989
Thanks to the many people who responded to my request for information
about the /etc/passwd entry
::0:0:::
This is a large security hole, allowing anyone on the machine to
become root. In BSD 4.2 (at least), a blank line or corrupted
entry in the /etc/passwd file can be changed to such an entry by
such programs as passwd, yppasswd, chsh, chfn. This problem exists
in ULTRIX 3.0, which we run. I don't know if it has been corrected
in 3.1, or what other flavors of UNIX it exists in.
My main concern was to find out how this entry could have gotten
into a /etc/passwd file. Since this was apparently due to a security
hole in ULTRIX, I do not suspect any deliberate attempt to attack
the system. Thanks for your help.
Bob Kinne Optoelectronics Computing Center
UCB, Campus Box 525 VOICE (303) 492-3330
Boulder, CO 80309 INTERNET bobk at boulder.Colorado.EDU
More information about the Comp.unix.questions
mailing list