Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- From: "Zane C.B." <v.velox@xxxxxxxxxx>
- Date: Sun, 20 May 2007 12:01:42 -0400
On Sun, 20 May 2007 17:49:19 +0200
Dag-Erling Smørgrav <des@xxxxxx> wrote:
"Zane C.B." <v.velox@xxxxxxxxxx> writes:
I figure some one here may find this interesting. I just begun
work on allowing a smb home directory to be automounted upon
login.
Your patch opens a gaping security hole. Sensitive information
should never be placed in the environment.
Unless I am missing something, this is only dangerous if one is doing
something stupid with what ever is being executed by pam_exec.
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- From: Dag-Erling Smørgrav
- Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- References:
- PAM exec patch to allow PAM_AUTHTOK to be exported.
- From: Zane C.B.
- Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- From: Dag-Erling Smørgrav
- PAM exec patch to allow PAM_AUTHTOK to be exported.
- Prev by Date: Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- Next by Date: Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- Previous by thread: Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- Next by thread: Re: PAM exec patch to allow PAM_AUTHTOK to be exported.
- Index(es):
