[K12OSN] Huge security issue
Dan Young
dyoung at mesd.k12.or.us
Fri Feb 9 16:49:55 UTC 2007
Daniel Kuecker wrote:
> Just when I thought I had everything going good. I have a huge security
> issue. I just noticed that i can log into my thin clients with user root
> and any password.
> actually, i can log in as any valid user with any password from GDM. IF
> I try to do they same with ssh, it will only allow the correct password.
> I have it setup to auth against ADS. I have two thin clients setup, and
> both are allowing this. Does anyone have any suggestions? I need to
> resolve this before any students figure it out and have root
> access.....
Can you show us the contents of /etc/pam.d/gdm and /etc/pam.d/system-auth?
--
Dan Young <dyoung at mesd.k12.or.us>
Multnomah ESD - Technology Services
503-257-1562
More information about the K12OSN
mailing list