Red Hat Bugzilla – Bug 54297
Issue with pam_listfile.so when given bad parameter?
Last modified: 2007-04-18 12:37:28 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.77 [en] (X11; U; Linux 2.4.3-12 i686)
Description of problem:
Bad config file parameter to pam_listfile.so, specifically space after
"file=" parameter, causes application SEGV.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Installed vsftpd
2. In /etc/pam.d/ftp, have the auth line:
auth required /lib/security/pam_listfile.so item=user sense=deny file=
(notice the <SPACE> after "file=")
3. ftp to server and try anonymous ftp
I'm not sure if this is a problem in vsftpd or in pam_listfile. I also
have not tried this in 7.x series. Let me know if you'd like me to.
This should be one of the bugs fixed in the current errata release for RHL 7.2,
so I'm marking this as fixed in the current release. Because you'd have to
configure it incorrectly to cause it to crash, I don't think it warrants an
erratum at this time.