Return to BSD News archive
Path: sserve!newshost.anu.edu.au!harbinger.cc.monash.edu.au!msunews!uwm.edu!vixen.cso.uiuc.edu!howland.reston.ans.net!news.sprintlink.net!helena.MT.net!nate From: nate@trout.sri.MT.net (Nate Williams) Newsgroups: comp.os.386bsd.bugs Subject: Re: Nasty bug in FreeBSD-2.0 chfn/chpass Date: 13 Feb 1995 01:27:04 GMT Organization: SRI Intl., Montana Lines: 19 Message-ID: <3hmch8$9om@helena.MT.net> References: <3himpp$bu4@tyrell.s.bawue.de> Reply-To: "Nate Williams" <nate@sneezy.sri.com> NNTP-Posting-Host: trout.sri.mt.net [ Trying out my new Inet SLIP connection. Let's hope this works.... ] >I just discovered a bad bug in FreeBSD-2.0 chfn/login. When >a password has expired for an ordinary user, login execs >passwd and lets that user change the root password (!!). Yep, this bug was found and fixed after 2.0R was released. It's fixed in the -current sources and will be in 2.1. Thanks for pointing it out! Nate -- nate@FreeBSD.org | Do you think SRI cares what I say? They certainly nate@sneezy.sri.com | don't accept responsibility for my actions, so I work #: (406) 449-7662 | obviously don't represent them on Usenet. home #: (406) 443-7063 | *FreeBSD core member and all around tech. weenie*