Bugtraq mailing list archives
Re: Security risk with powermanagemnet on Solaris 2.6
From: Brad.Powell () ENG SUN COM (Brad Powell)
Date: Mon, 20 Jul 1998 15:36:39 -0700
lej writes to bugtraq:
From: Lars-Erik Johansson <lej () ALGO NET> Subject: Re: Security risk with powermanagemnet on Solaris 2.6 To: BUGTRAQ () NETSPACE ORG
more text deleted
I have another interesting aspect of Powermanager. In solaris 2.6 powermanager is now installed by default including the setuid program usr/openwin/bin/sys-suspend which can be used by any user to suspend the machine and turn off the power. I think this is scary...
not so. Who is allowed to run sys-suspend (according to the man page) is controlled by the configuration file /etc/default/sys-suspend. The default is PERMS=console-owner thus only the "console owner" can suspend the system. If an intruder has physical access to the console, then yes he/she could use sys-suspend. But then you have bigger problems imho :-) :-\ I'd agree that the default configuration should probably be PERMS= - or PERMS=root edit by hand or a simple titan script would fix this. ======================================================================= Brad Powell : brad.powell () Sun COM Sr. Network Security Architect Sun Microsystems Inc. ======================================================================= The views expressed are those of the author and may not reflect the views of Sun Microsystems Inc. =======================================================================
Current thread:
- Re: Security risk with powermanagemnet on Solaris 2.6 Lars-Erik Johansson (Jul 17)
- Re: Security risk with powermanagemnet on Solaris 2.6 Casper Dik (Jul 21)
- <Possible follow-ups>
- Re: Security risk with powermanagemnet on Solaris 2.6 Robert Sink (Jul 17)
- Re: Security risk with powermanagemnet on Solaris 2.6 Brad Powell (Jul 20)