Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Mandriva: Updated nss_ldap package fixes race condition

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Mandriva: Updated nss_ldap package fixes race condition
# 1  
Old 02-25-2008
Mandriva: Updated nss_ldap package fixes race condition
LinuxSecurity.com: A race condition in nss_ldap, when used in applications that use pthread and fork after a call to nss_ldap, does not properly handle the LDAP connection, which might cause nss_ldap to return the wrong user data to the wrong process, giving one user access to data belonging to another user, in some cases. The updated package hais been patched to prevent this issue.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. Programming

problem about race condition

Hi all, i'm reading Andrew S.Tanenbaum's book --- Modern Operating System.At the part of discussing race condition.And the author gives a solution with using the TSL instruction,say that one process must call the enter_region function before entering the critical regions and call the leave_region... (0 Replies)
Discussion started by: homeboy
0 Replies

2. Programming

Race condition with PTY

I've been experimenting with pseudo-terminals and found something I don't quite understand. Writing an EOF character to the master end doesn't work quite as I expect. Once I've written any other data, the master pty seems to treat a single ^D as a seperator, i.e. writing "abcabc" would let cat do... (1 Reply)
Discussion started by: Corona688
1 Replies
Login or Register to Ask a Question

LEARN ABOUT CENTOS

ssh-ldap-helper

SSH-LDAP-HELPER(8)					    BSD System Manager's Manual 					SSH-LDAP-HELPER(8)

NAME

     ssh-ldap-helper -- sshd helper program for ldap support

SYNOPSIS

     ssh-ldap-helper [-devw] [-f file] [-s user]

DESCRIPTION

     ssh-ldap-helper is used by sshd(1) to access keys provided by an LDAP.  ssh-ldap-helper is disabled by default and can only be enabled in the
     sshd configuration file /etc/ssh/sshd_config by setting AuthorizedKeysCommand to ``/usr/libexec/openssh/ssh-ldap-wrapper''.

     ssh-ldap-helper is not intended to be invoked by the user, but from sshd(8) via ssh-ldap-wrapper.

     The options are as follows:

     -d      Set the debug mode; ssh-ldap-helper prints all logs to stderr instead of syslog.

     -e      Implies -w; ssh-ldap-helper halts if it encounters an unknown item in the ldap.conf file.

     -f      ssh-ldap-helper uses this file as the ldap configuration file instead of /etc/ssh/ldap.conf (default).

     -s      ssh-ldap-helper prints out the user's keys to stdout and exits.

     -v      Implies -d; increases verbosity.

     -w      ssh-ldap-helper writes warnings about unknown items in the ldap.conf configuration file.

SEE ALSO

     sshd(8), sshd_config(5), ssh-ldap.conf(5),

HISTORY

     ssh-ldap-helper first appeared in OpenSSH 5.5 + PKA-LDAP .

AUTHORS

     Jan F. Chadima <jchadima@redhat.com>

BSD
								  April 29, 2010							       BSD