Bug 88
Summary: | Security hole in adduser/useradd tool | ||
---|---|---|---|
Product: | [Retired] Red Hat Linux | Reporter: | soucym |
Component: | basesystem | Assignee: | David Lawrence <dkl> |
Status: | CLOSED NOTABUG | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | high | ||
Version: | 5.1 | Keywords: | Security |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 1998-11-16 13:49:54 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
soucym
1998-11-16 13:19:22 UTC
The -p option to adduser is to set the *encrypted* password; it assumes whatever you give it is already encrypted. Notice if you try to use whatever you specified to -p to login that it won't work... Commits pushed to master at https://github.com/openshift/origin https://github.com/openshift/origin/commit/962bcbc2400f6e66e951e61ba259e81a6036f1a2 fix issue#88 - generate unique cookie based on vtep https://github.com/openshift/origin/commit/c7a4777f9eb352bf9956a62803bbcd8fc9de9fde Merge pull request #89 from rajatchopra/master fix issue#88 - generate unique cookie based on vtep |