Bug 17238

Summary: Linuxconf breaks security when used to assign privileges
Product: [Retired] Red Hat Linux Reporter: Need Real Name <hostmaster>
Component: linuxconfAssignee: Nalin Dahyabhai <nalin>
Status: CLOSED WONTFIX QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 6.2   
Target Milestone: ---   
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-02-21 18:47:45 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Need Real Name 2000-09-04 17:36:32 UTC 
When linuxconf is used to change user privileges (say to allow one specific user to shutdown the system), it breaks the security.  After making 
the change ALL users are then allowed to shutdown the system.  This is after all the latest patches for PAM, usermode, etc. have been 
applied.
Comment 1 Brent Fox 2002-06-05 16:12:02 UTC 
Closing because we don't ship linuxconf anymore
Comment 2 Red Hat Bugzilla 2006-02-21 18:47:45 UTC 
Changed to 'CLOSED' state since 'RESOLVED' has been deprecated.