subject:"Bug#305600\: Wait a second. This bug is not fixed"

Bug#305600: Wait a second. This bug is not fixed

2005-05-08 Thread Florian Weimer

* Martin Quinson: > So, I reopen this bug just to leave the discussion open and see what > happens. In my opinion, this is a unfixable bug. Whatever we do in login to > prevent it could be done by an attacker, too. But I may well be wrong. One approach is a "secure attention key":

Bug#305600: [Pkg-shadow-devel] Bug#305600: Wait a second. This bug is not fixed

2005-05-08 Thread Christian Perrier

> happens. In my opinion, this is a unfixable bug. Whatever we do in login to > prevent it could be done by an attacker, too. But I may well be wrong. Exactly. So, this is exactly why I closed the bug and I see no point discussing forever to just discover that login can be mimiced. So what? GDM

Bug#305600: Wait a second. This bug is not fixed

2005-05-08 Thread Martin Quinson

reopen 305600 thanks Hello, I'm not completely sure about this one and thus woudn't like to see it archived too fast. First, let me summarize how a normal user could use this security hole (if any). - Write a script which looks like login, ask for the password once, say the pass is wrong (sa

Bug#305600: Wait a second. This bug is not fixed

Bug#305600: [Pkg-shadow-devel] Bug#305600: Wait a second. This bug is not fixed

Bug#305600: Wait a second. This bug is not fixed

3 matches

Site Navigation

Mail list logo

Footer information