Bug 9206 - identd runs as root, not nobody
identd runs as root, not nobody
Status: CLOSED RAWHIDE
Product: Red Hat Linux
Classification: Retired
Component: pidentd (Show other bugs)
6.1
All Linux
medium Severity medium
: ---
: ---
Assigned To: Trond Eivind Glomsrxd
: Security
: 9539 9540 (view as bug list)
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2000-02-08 04:25 EST by wingc
Modified: 2008-05-01 11:37 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2000-02-21 11:02:46 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:


Attachments (Terms of Use)

  None (edit)
Description wingc 2000-02-08 04:25:48 EST
The identd daemon in Red Hat 6.1 runs as the root user, not 'nobody', which
is unnecessary and for all I know may lead to a security compromise. There
are actually 2 separate bugs:

1. in /etc/inetd.conf, identd is run as 'root' instead of 'nobody'
	(this should be marked as a bug in netkit-base, I know)

2. (more importantly) the identd code is multithreaded but is not aware of
the fact that threads do not share UIDs in Linux. This causes some of the
identd threads to run as root when identd is started from init. identd also
fails to drop supplimental group IDs, which results in it having group ID 0
anyway.

A fix against pidentd-3.0.10, the version in the current Raw Hide, is
located at:

http://www.engin.umich.edu/caen/systems/Linux/code/patches/pidentd-3.0.10-security.patch


Thanks,

Chris Wing
wingc@engin.umich.edu
Comment 1 Bill Nottingham 2000-02-21 11:02:59 EST
*** Bug 9539 has been marked as a duplicate of this bug. ****** Bug 9540 has been marked as a duplicate of this bug. ***Will be fixed in pidentd-3.0.10-4.

Note You need to log in before you can comment on or make changes to this bug.