Bugtraq mailing list archives
permissions
From: perry () imsi com (Perry E. Metzger)
Date: Mon, 16 May 1994 08:52:25 -0400
Steve Simmons says:
Ob. Bug: The System V vendor(s) who shipped both / and /etc with mode 777.
To this day, SunOS ships with horrible permissions on directories. Directories that because of NFS vulnerabilities should be owned by root ship owned by bin; /usr/games ships with loads of suid and sgid programs that are potential security holes, etc. Part of the system install proceedure at my last job was a large chmod/chown script we ran on every machine... Perry
Current thread:
- Re: new iss stuff, (continued)
- Re: new iss stuff Steven C. Blair (May 10)
- Time For New Security Package? (was Re: new iss stuff) David Bianco (May 10)
- Re: Time For New Security Package? (was Re: new iss stuff) Tom Fitzgerald (May 10)
- Re: Time For New Security Package? (was Re: new iss stuff) Oliver Friedrichs (May 11)
- ANNOUNCING THE [8LGM] FILESERVER & MAILING LIST INFO Karl Strickland (May 14)
- Re: Time For New Security Package? (was Re: new iss stuff) Gene Spafford (May 14)
- The ISS Program Paul Robinson (May 10)
- wolves and sheep on the inet Timothy Newsham (May 11)
- Re: wolves and sheep on the inet Gene Spafford (May 13)
- Re: wolves and sheep on the inet Steve Simmons (May 13)
- permissions Perry E. Metzger (May 16)
- Re: permissions Pat Myrto (May 16)
- Re: permissions Evil Pete (May 17)
- Re: permissions Pat Myrto (May 17)
- Re: permissions Gene Spafford (May 17)
- Re: permissions Evil Pete (May 18)
- Re: permissions Evil Pete (May 18)
- [8lgm]-Advisory-7.UNIX.passwd.11-May-1994.NEWFIX [8LGM] Security Team (May 13)
- iss equivalents *Hobbit* (May 11)
- Source vs. binary for tools Jeremy Epstein -C2 PROJECT (May 12)
- runaway lockd problems (SunOS 4.1.3) Pat Myrto (May 12)