emo/shadow

Go to file

Samanta Navarro 37ae232080 Correctly handle illegal system file in tz If the file referenced by ENV_TZ has a zero length string, then an out of boundary write occurs. Also the result can be wrong because it is assumed that the file will always end with a newline. Only override a newline character with '\0' to avoid these cases. This cannot be considered to be security relevant because login.defs and its contained references to system files should be trusted to begin with. Proof of Concept: 1. Compile shadow's su with address sanitizer and --without-libpam 2. Setup your /etc/login.defs to contain ENV_TZ=/etc/tzname 3. Prepare /etc/tzname to contain a '\0' byte at the beginning `python -c "print('\x00')" > /etc/tzname` 4. Use su `su -l` You can see the following output: `tz.c:45:8: runtime error: index 18446744073709551615 out of bounds for type 'char [8192]'` Signed-off-by: Samanta Navarro <ferivoz@riseup.net>		2023-02-01 15:47:35 -06:00
.builds	CI: add libbsd and pkg-config dependencies	2022-11-28 09:07:41 -06:00
.github	workflow: update checkout acton v2 to v3	2023-01-13 09:51:05 +01:00
contrib	Fix typos	2023-01-26 22:44:39 -06:00
doc	Remove traces of utmpx	2022-12-22 10:31:43 +01:00
docs	fix spelling and unify whitespace	2021-08-18 18:06:02 +00:00
etc	fix PAM service files --without-selinux	2022-03-04 08:51:20 -06:00
lib	leading_zerosul(): Fix bug	2023-02-01 09:10:34 +01:00
libmisc	Correctly handle illegal system file in tz	2023-02-01 15:47:35 -06:00
libsubid	Revert "Drop unused function subid_init()"	2022-08-21 13:20:56 -05:00
man	Supporting vendor given -shells- configuration file	2023-01-26 22:45:32 -06:00
po	updated Dutch translation	2022-09-27 16:01:31 -05:00
src	Supporting vendor given -shells- configuration file	2023-01-26 22:45:32 -06:00
tests	Add '62_usermod_remove_supplementary_groups' test case to test runner scripts (run_some)	2022-12-11 10:58:37 -06:00
.gitignore	Show libsubid api version in subid.h	2021-12-05 08:02:57 -06:00
.travis.yml	subids: support nsswitch	2021-04-16 21:02:37 -05:00
acinclude.m4	configure: replace obsolete autoconf macros	2022-05-10 09:55:18 +02:00
AUTHORS.md	AUTHORS: improve markdown output	2022-03-18 16:10:51 -05:00
autogen.sh	undo accidental autogen.sh commit: enable-shared	2021-11-27 14:56:03 -06:00
ChangeLog	fix typo	2023-01-12 12:10:57 +01:00
configure.ac	Supporting vendor given -shells- configuration file	2023-01-26 22:45:32 -06:00
COPYING	Update licensing info	2021-12-23 19:36:50 -06:00
Makefile.am	fix spelling and unify whitespace	2021-08-18 18:06:02 +00:00
NEWS	fix typo	2023-01-12 12:10:57 +01:00
README	Add README as symlink to README.md	2021-12-19 14:09:08 -06:00
README.md	README: update content and format	2021-11-22 15:31:54 +01:00
SECURITY.md	Add Christian Brauner to SECURITY.md	2021-10-25 14:26:37 -05:00
shadow.spec.in	* shadow.spec.in: Fix the source (new FTP).	2008-08-31 17:30:45 +00:00
TODO	fix spelling and unify whitespace	2021-08-18 18:06:02 +00:00

README.md

shadow-utils

Introduction

The shadow-utils package includes the necessary programs for converting UNIX password files to the shadow password format, plus programs for managing user and group accounts. The pwconv command converts passwords to the shadow password format. The pwunconv command unconverts shadow passwords and generates a passwd file (a standard UNIX password file). The pwck command checks the integrity of password and shadow files. The lastlog command prints out the last login times for all users. The useradd, userdel, and usermod commands are used for managing user accounts. The groupadd, groupdel, and groupmod commands are used for managing group accounts.

Sites

Contacts

There are several ways to contact us:

the general discussion mailing list
the #shadow IRC channel on libera.chat:
- irc://irc.libera.chat/shadow

Mailing archives

the general discussion mailing list archive
the commit mailing list archive, only used for historical purposes

Authors and maintainers

Authors and maintainers are listed in AUTHORS.md.