Massive Security Hole In Ubuntu
I've just been informed of this absolutely massive security hole in Ubuntu that allows any user to grab any passwords that were set during setup because they're stored in a log file for later helping users if they bump into problems. The
I've just been informed of this absolutely massive security hole in Ubuntu that allows any user to grab any passwords that were set during setup because they're stored in a log file for later helping users if they bump into problems. The original thread.
There is a file that contains all the installation logs :
/var/log/installer/cdebconf/questions.dat
In this file, there is all the questions asked to the user abd all the user's answers.
So, near the end of the file, we can find the user created during the installation... and its password (not hidden).
Then, tell me if I'm wrong :
_ in the normal installation mode, the user created can get the root privileges with sudo
_ in the expert mode, there is a root account created
In both case, it's possible to get an administrator username/password.
Moreover, this file can be read by all users (contrary to the syslog).
The fastest way to fix this is to just change your password as the only passwords in this log are the ones set through setup (not subsequently). If you made a lot of accounts at setup, then you might find it easier to delve into the file with vi and nuke them all from the log directly.
Don't just sit there like a lemon! Reply!
Got something to say? Now's the time to share it with the author and everybody else that reads this posting! Lemons need not apply.
