su bug in Ultrix 4.1 still there
Marcus J. Ranum
mjr at hussar.dco.dec.com
Tue Dec 11 15:57:43 AEST 1990
rusty at belch.Berkeley.EDU (Rusty Wright) writes:
>I just upgraded my DECstation 5000 to Ultrix 4.1 and the su bug from
>Ultrix 4.0 is still there. For those of you who missed my tirade when
>I upgraded to Ultrix 4.0, here's a synopsis of the problem.
>
>If your security level is set to ENHANCED you can't use the su command
>unless the tty line you're on is marked secure in /etc/ttys.[...]
>But on a workstation running windows you'll almost always be on a tty
>that's a pseudo tty[...]
I see the idea of 'su' and ENHANCED security as mutually exclusive,
to tell you the truth. If you are running under ENHANCED mode, you should
be serious enough about security not to want anyone rooting around on the
machine as "root" unless they log in as "root" on a secure tty (in this case,
*the* secure tty).
I mean, if you want to be able to 'su' to "root" on an unsecure
terminal, the code is trivial to write - a setuid "root" program that checks
"root"'s password, then execs a shell. But, then, you've bypassed your
security, and you may as well not run ENHANCED.
I'm not convinced what you've got is a bug. It may be a feature. :)
mjr.
--
I'd trade all the CASE tools in the world for one real
programmer. [From the programming notebooks of a heretic, 1990]
More information about the Comp.unix.ultrix
mailing list