* login.c: fix a security-threating race condition: chown'ing the

ccache to the user can be bad if the user can delete the file first and make it a symlink to something else. The solution is to re-create the ccache after login as setuid() to the user. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9084 dc483132-0cff-0310-8789-dd5450dbe970
author: Barry Jaspan <bjaspan@mit.edu> 1996-09-11 21:28:43 +0000
committer: Barry Jaspan <bjaspan@mit.edu> 1996-09-11 21:28:43 +0000
commit: c6fbdba2d20542c3f09d0f3497d6fbdab74ac032 (patch)
tree: d52426b3085da68422756920c976e3cf2c6f7e3e /src/appl/bsd/ChangeLog
parent: 887b4e35081259b02fe1c374d4f9cf4db44cedb1 (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/src/appl/bsd/ChangeLog b/src/appl/bsd/ChangeLog
index e23fc867b..e6d6bd602 100644
--- a/src/appl/bsd/ChangeLog
+++ b/src/appl/bsd/ChangeLog
@@ -1,3 +1,10 @@
+Wed Sep 11 17:27:02 1996  Barry Jaspan  <bjaspan@mit.edu>
+
+	* login.c: fix a security-threating race condition: chown'ing the
+ 	ccache to the user can be bad if the user can delete the file
+ 	first and make it a symlink to something else.  The solution is to
+ 	re-create the ccache after login as setuid() to the user.
+	
 Tue Sep 10 14:03:53 1996  Tom Yu  <tlyu@mit.edu>
 
 	* klogind.M, kshd.M, login.M, rcp.M, rlogin.M, rsh.M: remove ".so
author	Barry Jaspan <bjaspan@mit.edu>	1996-09-11 21:28:43 +0000
committer	Barry Jaspan <bjaspan@mit.edu>	1996-09-11 21:28:43 +0000
commit	c6fbdba2d20542c3f09d0f3497d6fbdab74ac032 (patch)
tree	d52426b3085da68422756920c976e3cf2c6f7e3e /src/appl/bsd/ChangeLog
parent	887b4e35081259b02fe1c374d4f9cf4db44cedb1 (diff)