LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Blogs > Unpopular Positions: One Geek's Take
User Name
Password

Notices


A space to ponder, discuss, speculate, disagree, and learn.

Expected topics include:
  • Technology
  • Politics
  • Defense
  • Philosophy
  • Humanism and Transhumanism
  • The Future
Rate this Entry

Another systemd zero-day security vuln

Posted 07-06-2017 at 11:26 AM by ttk

Systemd falls back to root privileges when an invalid user account is specified.

Shadow-tools allows the creation of invalid user accounts.

Face, meet palm.

https://github.com/systemd/systemd/issues/6237

The systemd devs aren't being gracious about it, either.
Posted in Uncategorized
Views 928 Comments 2
« Prev     Main     Next »
Total Comments 2

Comments

  1. Old Comment
    Scrubs will be scrubs.
    Posted 07-06-2017 at 12:34 PM by mralk3 mralk3 is offline
  2. Old Comment
    Code:
    root@ws1:~$ useradd 0day
    useradd: invalid user name '0day'
    root@ws1:~$
    Perhaps they should have used Slackware.
    Posted 07-09-2017 at 07:11 AM by GazL GazL is offline
 

  



All times are GMT -5. The time now is 11:42 AM.

Main Menu
Advertisement
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration