18 Sep
2002
18 Sep
'02
15:21
Sven 'Darkman' Michels wrote:
Hi,
afaik SuSE 8.0 uses (after updates) the 3.4p1 version of openssh. Maybe thats interesting: http://online.securityfocus.com/archive/1/292015/2002-09-15/2002-09-21/0 (at last just for noticing ;)
Well, there's close to nothing you can do against an evil root on Linux. I could ltrace the sshd-process and wait, until it calls crypt() - same problem, even without privsep. This is no vulnerability, as nonpriviledged users can't the the passwords. Ralph