Bugtraq mailing list archives
Legato Vulnerable
From: "Venkatesh babu Sira" <vsira () hotmail com>
Date: Thu, 10 Jan 2002 18:00:00 +0000
Scenario is Legato Networker with one drive as NDMP to Backup Netapp.When u start the group to backup Netapp using NDMP drive ,in /nsr/logs/daemon.log it writes all the info including username & passwd(clear text) for NetApp (usually it will root )
As any one can read this file ,so that he can mess up NetApp.I Moved /nsr dir & stop & restarted Networker ,it will recreate /nsr dir with 755 perm.
This is seriously vulnerable to NetApp. I masked few variables from my log file. Solaris7, Networker 6.1 & NetApp DataONTAP 6.0.3. Ex: 01/08/02 10:20:40 nsrd: savegroup info: starting netapp (with 1 client(s)) application information: HIST=y; auth index: netapp; auth index name space: backup, 1; auth level: full; auth mode: save; auth server: server; auth ssname: /vol/vol0; auth ssname long: /vol/vol0; auth sstime: 10xxxxxx; auth sstime 64-bit: 10xxxxx; client id: \ xxxxxxxxxxxxx; groups: netapp; hard session limit: 1; hostname: server; locale: C; ndmp: Yes; password: password; remote user: root; store index entries: Yes; volume pool: netapp; _________________________________________________________________Join the worlds largest e-mail service with MSN Hotmail. http://www.hotmail.com
Current thread:
- Legato Vulnerable Venkatesh babu Sira (Jan 10)
- Re: Legato Vulnerable Wolfgang Fischer (Jan 10)