Date: Sun, 3 Aug 1997 15:13:06 +0000 (GMT) From: "Jonathan A. Zdziarski" <jonz@netrail.net> To: "Jordan K. Hubbard" <jkh@time.cdrom.com> Cc: security@FreeBSD.ORG Subject: Re: setuid shutdown? Message-ID: <Pine.BSF.3.95q.970803151150.18721A-100000@netrail.net> In-Reply-To: <2950.870634971@time.cdrom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Yes I did check it out before reporting it I'm not an idiot. Perhaps it was set that way by somebody else before I took over the position, either way I noticed they were all globally executable. I'm glad that it's not the default of the installation. ------------------------------------------------------------------------- Jonathan A. Zdziarski NetRail Incorporated Server Engineering Manager 230 Peachtree St. Suite 500 jonz@netrail.net Atlanta, GA 30303 http://www.netrail.net (888) - NETRAIL ------------------------------------------------------------------------- On Sun, 3 Aug 1997, Jordan K. Hubbard wrote: :> I just realized that my version of freebsd 2.2.2 installs with a :> set-uid-root shutdown command allowing anybody who wants to to shutdown or :> reboot the server. Obviously I removed the bits, and got rid of the : :Uh, no, that's not correct. Shutdown's permissions, as installed in :2.2.2, are: : :-r-sr-x--- 1 root operator 139264 Jul 15 02:08 /sbin/shutdown : :Joe User *cannot* shut the system down because Joe user can't even :execute the damn thing. : :Did you actually CHECK this before you sent this bug report in? :-) : :> Also: I noticed that 2.2.2 installs /usr/bin/perl (4) and a setuid root :> version of it as well (found this out when I noticed that adduser and :> rmuser are perl and not c). If I'm not mistaken 4 has some major security :> problems with setuid perl, no? : :You need to read the CERT advisories - a patch for this has existed for :ages now. : : Jordan :
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95q.970803151150.18721A-100000>