>Number:         4046
>Category:       security
>Synopsis:       /etc/security does not handle (new) ftpusers
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    gnats-admin (GNATS administrator)
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Wed Aug 27 02:50:02 1997
>Last-Modified:
>Originator:     Erik Bertelsen
>Organization:
	
>Release:        NetBSD-current 26 Aug 1997
>Environment:
	
System: NetBSD erik-be.uni-c.dk 1.2G NetBSD 1.2G (ERIKBE) #47: Mon Aug 25 12:08:52 MEST 1997 erik@erik-be.uni-c.dk:/sw/NetBSD/src/sys/arch/i386/compile/ERIKBE i386


>Description:
/etc/security does not grok the new (as of april) format of /etc/ftpusers
with allow and deny as demonstrated by the following output:


root is not listed in /etc/ftpusers file.

uucp is not listed in /etc/ftpusers file.


>How-To-Repeat:
>Fix:

Note that the white space handling could be more general than a simple
blank or tab that I have used below.

- Erik Bertelsen

Index: security
===================================================================
RCS file: /home/cvs-base/src/etc/security,v
retrieving revision 1.1.1.9
diff -r1.1.1.9 security
254c254
<               if ! egrep "^$i$" /etc/ftpusers > /dev/null ; then
---
>               if ! egrep "^$i[        ]deny$" /etc/ftpusers > /dev/null ; then

>Audit-Trail:
>Unformatted: