[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] utmp reliability?
From: Marcus Meissner <meissner () suse ! de>
Date: 2009-05-14 18:33:49
Message-ID: 20090514183349.GA7149 () suse ! de
[Download RAW message or body]
Hi,
While debugging a problem for a customer of us I found that UTMP entries
are not generated reliably and utmp entry creation starts to fail on
higher loads/more users or more utmp activity.
Reason is that glibc locks the UTMP file on write/read with a 1 second
timeout, and if that 1 second timeout triggers no entry is written.
Sadly without any indication of failure if you use login(3) or pututline(3). :(
I am wondering if handling UTMP should be more reliable or if at least error
reporting should happen.
Making it reliable will make it possible to DoS any kind of logins / terminal
opens of course, but make it easier on app writers using utmp.
(Yes, I know the really reliable way is Audit, but this is not user readable.)
Ciao, Marcus
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic