projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1a813ae) | patch
Significant security fixes to ksu
authorSam Hartman <hartmans@mit.edu>
Sun, 19 May 1996 18:52:51 +0000 (18:52 +0000)
committerSam Hartman <hartmans@mit.edu>
Sun, 19 May 1996 18:52:51 +0000 (18:52 +0000)
commitf7ef18fa8444d74f7ad6e3c1ae6804ef00b24f79
tree2f20cec634a357172881ac841f1f2c2868fe9e65tree | snapshot
parent1a813ae6f7d501c123fdd3ce748c3b94ba241e8dcommit | diff
Significant security fixes to ksu

* Use source euid all throughout procedure of opening source ccache,
Richard's code had a race condition.

* Use target euid while looking up .k5login and constructing target ccache.

* Avoid chowns completely; they create race conditions.  Fchown could
have been used if we wanted to be really careful, but they aren't
necessary and we would have to violate abstractions.

* Clean up several conditions that would allow users to delete
arbitrary files of the user they were ksuing to without authorization.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8049 dc483132-0cff-0310-8789-dd5450dbe970
src/clients/ksu/ChangeLog diff | blob | history
src/clients/ksu/ccache.c diff | blob | history
src/clients/ksu/configure.in diff | blob | history
src/clients/ksu/heuristic.c diff | blob | history
src/clients/ksu/krb_auth_su.c diff | blob | history
src/clients/ksu/ksu.h diff | blob | history
src/clients/ksu/main.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.