Re: admintool (was Re: Zolaris 2.5 Exploited.)

[aleph1 () underground org (Aleph One)]

From: Casper Dik <casper () holland Sun COM>



> I believe the "vold" hole requires you to have physical access to the
> machine, to insert a cdrom into the caddy. Bad anyway...

You can close the security hole not only by disabling vold but
also by just disabling the filemgr actions to vol manager.

To that end, edit /etc/rmmount.conf and comment out the "action_filemgr.so.1"
lines.

Casper