From Martin.Kraemer@Fujitsu-Siemens.com  Tue Feb 19 07:15:59 2002
Return-Path: <Martin.Kraemer@Fujitsu-Siemens.com>
Received: from nixpbe.pdb.sbs.de (nixpbe.pdb.sbs.de [192.109.2.33])
	by hub.freebsd.org (Postfix) with ESMTP id 6069037B400
	for <FreeBSD-gnats-submit@freebsd.org>; Tue, 19 Feb 2002 07:15:57 -0800 (PST)
Received: from trulli.pdb.fsc.net (ThisAddressDoesNotExist [172.25.96.20] (may be forged))
	by nixpbe.pdb.sbs.de (8.11.2/8.11.2) with ESMTP id g1JFFtZ23471
	for <FreeBSD-gnats-submit@freebsd.org>; Tue, 19 Feb 2002 16:15:55 +0100
Received: from deejai2.mch.fsc.net (deejai2.mch.fsc.net [172.25.124.236])
	by trulli.pdb.fsc.net (8.9.3/8.9.3) with ESMTP id QAA23188
	for <FreeBSD-gnats-submit@freebsd.org>; Tue, 19 Feb 2002 16:15:55 +0100
Received: (from martin@localhost)
	by deejai2.mch.fsc.net (8.11.6/8.11.6) id g1JFFs359751;
	Tue, 19 Feb 2002 16:15:54 +0100 (CET)
	(envelope-from martin)
Message-Id: <200202191515.g1JFFs359751@deejai2.mch.fsc.net>
Date: Tue, 19 Feb 2002 16:15:54 +0100 (CET)
From: <martin@Deejai.mch.fsc.net>
Reply-To: <martin@Deejai.mch.fsc.net>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: keyinfo reports root's keyinfo
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         35116
>Category:       bin
>Synopsis:       keyinfo(1) reports root's keyinfo
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Feb 19 07:20:04 PST 2002
>Closed-Date:    Fri Apr 08 14:32:31 GMT 2005
>Last-Modified:  Fri Apr 08 14:32:31 GMT 2005
>Originator:     
>Release:        FreeBSD 4.5-STABLE i386
>Organization:
>Environment:
System: FreeBSD deejai2.mch.fsc.net 4.5-STABLE FreeBSD 4.5-STABLE #6: Thu Jan 31 21:40:04 CET 2002 martin@deejai2.mch.fsc.net:/usr/src/sys/compile/DEEJAI4B i386
	
>Description:
Logged in in an xterm, when I invoke keyinfo, I get
"96 de98629". However, when logging in on the console
(or when doing "su -c 'keyinfo martin'"), I get "93 de98558".
As it turns out, the former is root's keyinfo, not martin's.
IMO keyinfo should detect my user id. Yes, I have read in
skey.access(5) that ..."an invocation of login(1) in a
pseudo-tty (e.g. from within xterm(1) or screen(1)"... can cause
problems, but the keyinfo page says nothing about that.
It is however not a security risk to see other people's keyinfo
(you could simply try to enter "root" at the logion prompt and
you would see the same info).
       
>How-To-Repeat:
	Hmmm. Dunno if it's sufficient to do (at the console) a
keyinit for a user and for root, and then try keyinfo in an xterm?

>Fix:
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: vs 
State-Changed-When: Fri Apr 8 14:26:32 GMT 2005 
State-Changed-Why:  
Close this one: keyinfo no longer exists: 
Remove the S/Key key-handling apps, which are no longer needed, as 
they are replaced by opiepasswd, opieinfo and opiekey. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=35116 
>Unformatted:
