Date: Mon, 28 Jul 1997 15:28:38 -0700 (PDT) From: Vincent Poy <vince@mail.MCESTATE.COM> To: "Matthew N. Dodd" <winter@jurai.net> Cc: security@FreeBSD.ORG, JbHunt <johnnyu@accessus.net>, "[Mario1-]" <mario1@PrimeNet.Com> Subject: Re: security hole in FreeBSD Message-ID: <Pine.BSF.3.95.970728152741.3844M-100000@mail.MCESTATE.COM> In-Reply-To: <Pine.BSF.3.95q.970728171235.25254D-100000@sasami.jurai.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 28 Jul 1997, Matthew N. Dodd wrote: =)On Mon, 28 Jul 1997, Vincent Poy wrote: =)> I'll do that as soon as the machine comes back up. I heard that =)> suid programs can be a problem too but which ones are required to be suid? =) =)As a general rule I set all suid/sgid system executeables schg and run =)with securelevel set to 1 or 2. =) =)Getting rid of any unecessary suid/sgid programs would be good too. That wouldn't do any good if the user can chflags noschg on the binaries you have schg on. Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____]
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95.970728152741.3844M-100000>