Forums: Linux Openexchange - Cleartext Rootpw In Swap - Forums

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Linux Openexchange - Cleartext Rootpw In Swap

#1 User is offline   qcred11 

  • Master Sergeant
  • Icon
  • Group: Second Lieutenant
  • Posts: 2,544
  • Joined: 25-February 04

Posted 31 August 2004 - 11:25 AM

Quote

discovered in: SuSE Linux Openexchange Server 4
problem: cleartext rootpw in swap caused by forgotten "mlock" or wiping out memory


hi,

i have noticed my root password flying around on my swap in cleartext.
an attacker who has successfully rooted a box can get the cleartext password from the swap device.

i dont know if this is caused by some SuSE mistake at the web login- maybe its a fault in openldap.
i dont know exactly where this is caused.



root:~ # strings swap -5 | grep GroupwareDBport -A 2| grep -A 2 loginDestination
loginDestination
MYROOTCLEARTEXT_PASSWORD
--
--
loginDestination
MYROOTCLEARTEXT_PASSWORD
--
--
loginDestination
MYROOTCLEARTEXT_PASSWORD
[...]i also had success in getting my cleartext password with

root:~ # strings swap -5 | grep /etc/postfix/main.cf -A 2
/etc/postfix/main.cf
MYROOTCLEARTEXT_PASSWORD
erfolgreich
--
/etc/postfix/main.cf
MYROOTCLEARTEXT_PASSWORD
SIEVEpor
[...]


however- such things can be prevented with wiping out the memory where the
password was stored or with using mlock.


Source: http://seclists.org/...4/Aug/0411.html
0
Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users

  • Share



Our Sponsors:


SwiftLayer Affiliate Web Hosting