BeyondTrust

Security In Context

Bringing you news and commentary on solutions and strategies for protecting your critical IT infrastructure.

Posts Tagged ‘powerbroker servers’

clock-reset

sudo authentication bypass when clock is reset

A recent discovery by a German researcher, Marco Schoepl, found that it is possible for a user to bypass sudo authentication by resetting the clock. To read more about this vulnerability see the articles on seclist.org and threatpost.com. What we have found is that many highly secure customers have already adopted the timestamp_timeout=0 setting which…

Post by Rod Simmons March 7, 2013
Tags:
, , , ,
BeyondTrust is the expert source of VMware Security LEARN MORE