Bug 11831
Summary: | Any user is able to take computer down to runlevel 1 | ||
---|---|---|---|
Product: | [Retired] Red Hat Linux | Reporter: | eugeni |
Component: | pam | Assignee: | Nalin Dahyabhai <nalin> |
Status: | CLOSED NOTABUG | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | high | ||
Version: | 6.2 | Keywords: | Security |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2000-06-01 22:57:20 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
eugeni
2000-06-01 22:18:30 UTC
I guess RedHat should adjust pam and usermode packages to fix it, because it is necessary to remove this "bug" on each machine "available" to public use... Sorry for "yet" another message about this problem (I have seen posts about usermode bugs just a second after I submitted my text :-), but I think it is a HUGE security hole it should be fixed... It is "really" annoying when you discover a lot of local user on a fresh RedHat installation :-) A user with access to the console (which is required to do this) can also just switch the computer off. That said, this is configurable using PAM's configuration file mechanism. Removing the files named "shutdown", "halt", "reboot", and "poweroff" from the /etc/pam.d directory will disable this. |