diff options
author | jdp <jdp@FreeBSD.org> | 1997-02-08 20:54:38 +0000 |
---|---|---|
committer | jdp <jdp@FreeBSD.org> | 1997-02-08 20:54:38 +0000 |
commit | c54bd2595235d8db3263818e3e4e58b963c69ac0 (patch) | |
tree | 14b156151bbd804b683a48be5865d5d6dd43181b /etc | |
parent | 9e4d6045b80be63aceb0caeadedaf9256db0988a (diff) | |
download | FreeBSD-src-c54bd2595235d8db3263818e3e4e58b963c69ac0.zip FreeBSD-src-c54bd2595235d8db3263818e3e4e58b963c69ac0.tar.gz |
Security fix. Strip the encrypted passwords out of the "master.passwd"
diff output, and replace them with "(password)". The diffs get
mailed to root, which in many cases is forwarded across the
Internet. A patient sniffer could acquire the entire "master.passwd"
file by saving all the diffs. With this fix, you still see that the
password changed, but you don't see the details.
Unless somebody talks me out of it, I am going to merge this into -2.2
in 48 hours.
Diffstat (limited to 'etc')
-rw-r--r-- | etc/daily | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -81,7 +81,8 @@ if [ ! -f $bak/master.passwd.bak ] ; then fi if cmp -s $bak/master.passwd.bak /etc/master.passwd; then :; else echo "$host passwd diffs:" - diff $bak/master.passwd.bak /etc/master.passwd + diff $bak/master.passwd.bak /etc/master.passwd |\ + sed 's/^\([<>] [^:]*\):[^:]*:/\1:(password):/' mv $bak/master.passwd.bak $bak/master.passwd.bak2 cp -p /etc/master.passwd $bak/master.passwd.bak fi |