From owner-freebsd-security@freebsd.org Mon May 31 11:37:48 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 31EF3645372 for ; Mon, 31 May 2021 11:37:48 +0000 (UTC) (envelope-from j.chen1070116@yahoo.com) Received: from sonic302-21.consmr.mail.ne1.yahoo.com (sonic302-21.consmr.mail.ne1.yahoo.com [66.163.186.147]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4FttZL4kxMz4fQ2 for ; Mon, 31 May 2021 11:37:46 +0000 (UTC) (envelope-from j.chen1070116@yahoo.com) X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1622461064; bh=eWoSZe6jyw5VRp+1xwjvga6xrfkx8QGpEg4TIAoqBUU=; h=X-Sonic-MF:Date:From:To:Subject:From:Subject; b=gcO9dCwNHGE2tVU7Jspy+nky9XqBE9Kn/8TBZsSNyxLk4yxeF7h/BnG5atZLigVASR/GBXBuUXzUWSYFY/WzyX6LmpnOA/l9/M0M35ByRQwd9HwaAMRG5IQ7ZS8+P82Jo331qBBPANhkbZifleaCxNls1pE23l6i+vZnX9H6Kuuwv/u4fJB5S0rxbl/LwBqdtRS0yMdIDadmie4bd29qrYTNtqEOLwUde+OqiGXKcDHLrLNmveuy2RhMf8O+nywgKPdHXZPjgXvIH2FgjUR1c+tKKV9evLp8uBTXQGz1KONFOT/T4cV5ydAIIIs4sgYGev2DgtM8T5hULv4U1vNklQ== X-YMail-OSG: ee.amMUVM1kHGSxKFIRSaI7U_d.glYak0B3PNevy9MIn7uh8S5ruL2.SyYkr8xB 8q34KYhIx.yU_xwqNb8BVIv8DP9u3u2bJt_dFnOd4lbVI5hC.0NXTX_8.1rijGP0v_3dvN.xUtO2 bn7X4PwCNwohbrzthN25.3HoBa4QoVfq_xPtdNzodosbUvgrguU46aV_P3X8dTTBS5fgA8749ojY XOb.AMlhnRwMQ3S888_eYtgH2ef0hjMEoOtQHixz5dAwq7podInl.HYpgvqu.hJqsC6kUs6hMe4i IFb0SkEm6NLElt_9kFPXGlJ5JEubT7XlwHHpTAtPyEEuR9t2IJDELB8no0UJkPCVf0XfQKXc3WOd yJGSjvefsCsrqVLXRLTx5apt3e7ejRcVzb5kEax64h7BHId7o7WZSDe_.SOPMQUsUSLyuLl0RYPV QfOex.876M4Du4wPOrJR1hrNaFkYHSu.z9YrjBFTYp308LNzjmJVcc1n8Q7YzJK4niVmNc7xvbSG 9tbUxI8eETKmZtWNnmAt8UjfA7sr5OeUqsGOHz0Ho6dYDBMtFWMriIP4rdYKoubP3ggN6W00SqNl b6rQiv.K2xu_3YhNg2dyvYr3JRhW7HU75zztrm4HwTcVeMYT9a246EQ8Y7UY9MiQ3bCXlQPX94H. pU09xlSN3c2BN7jI2Z3pGe.g7tJC1i3mTCR9voGeabVor3cj9455E4ZSAy7YaHwsFKr7iIIiKXXj E7693h19Om3zn2R8jXruW0XOX9HlVuuNMZw2on6Qz.2F_JIHvcDs5hKXTGQ70AcUPXGfOQpqHoQl z9Cv9UYu8LHHYq2WA2zzjO7nXXA2Y18EwTg6Knc6zbI4ZVabPcnwhLm70OwobvmGWW6OOHT5TlaR K_LlP4hpGbzf152lWTDMY4sHNKFcUFfdS2_Zm0Z096_bTOtabnGiYPC0HyprCQiQhA7pdWzvcBAA _2_llsSK76EndIoN00jWwm9HjMpbEHh6UyxEESTk.LqmR4UBUE4tWEdx8iXWz2hgtvKKYmAebpML JJxVokbVv6TfYHOOYbImDGCTECm7cpqAzj7.u2eenTIw86RHSlEtpxud2YrGiF1mHCYkqZsPAFJL 9i1L4z3zzxOBpRhziojuHYxvs.fMialgHs.KbkRwRqxExH9.DvsP6Kw9NZijQAFugiIx5iPonIqs 6JvEcMjSoHpmExYqPDE4f11TejYuOFGseRybO1ch76BY5_QgFGpwwCFV_4O7mydJzNT3pLKWQbO3 iT8aBc2tLub8OLP1KKdjXgG9krVt3a.Af3lz0QOn8P1skPM3dpHpsFfkMUPhv1opf6gohDsucULm TvsFjotggXL50rHezyN5MPjrtdHJf5GK4Z0hK7Xv_bmf_1BQequFRrbnO0JbYJ6ACUT9tEKpIFqr DxfcB.m77ekg8iSHcNu720Dx4Iahvh48Hm_aK2X89Vs6JfPYdmGfkwyfK8JBxQs83CB1u5ZmvLUP m.sSueJ8SGjcRwxK4DaLNJL51uHThLGvxQzqCm09rs5.m.Ye2AJzEsPsjO5FWzH8JM.7ZmqbWOM1 4D07gkWe0P5supWF2VixCJ4.ytRKIbjbEqMLrnp69mBFsNvORUXduWKzzG5Jrr1djigzxNNthG_v lX9UddLdsVgqYmrM9nqoxLTB9r8npf6nitLclj6T78P650joc8zMU4CTI6VLOoGbywr3d_IWOAXj OjhqPab.IzMjg6bLciM0aU3TVn6VmwtGUYV6yJw0J0Qq85Op2p1WdlppFlcHbReOgx4Z6e3DqTRU oDm9m9qqC4cZPdQwkoiHc4YuDbAY_7MPyZb_rH6L_rISk_k3FnRZx09tZWMFW0fcUHq6K0uRqAXA 1bOSbPF.RN6wB5v2wGUGq3HgW90XnfAAuXFZPYCrKRHQjzSZ94MlpNXQrVML5oStKQ_s65i_UUFf R.pHXboy2Mpbckd9ADQdShElxaevM4EUb2BHLbXqTQSHBKOZfALrzAULLuMF_hV2n.Kc5zWZCoHz bmfQMR9dP8acpVgZdUddNf7_qHAC_BIDelrmzyttVrt17nEsu6m0QmXc8mTdBJvxZzp3.zb9k.qh qiBDarH2DPzh2K0rJZLjPjZ4evkLAZse2wo.SiUeqCxZTcPdxoDMdeI3Pf56PU4GiFpusGQG8U5w 02tY6KDlNsS940rYyl5SkTcQwTr47VWDNOdhHvmfXk99xdqgM.HubeQxz9xw0Z6e93cH2Xycq8zZ _ghPL3wMifwCH65wcqgRYfIiahIEUT97w8vAnviH3yYOKNqgZhpZMiULocvFSsTrM.iiVRM9Nyh2 zOWMQPmEiO0d5SKPkrxIYJ4wDySZp3XdLUj0Ealgva83VDBHRWv9ZzswGVbDjzPq2FdWQSoCKBrz xLGfvKJqKU4FoZKeAzVU- X-Sonic-MF: Received: from sonic.gate.mail.ne1.yahoo.com by sonic302.consmr.mail.ne1.yahoo.com with HTTP; Mon, 31 May 2021 11:37:44 +0000 Date: Mon, 31 May 2021 11:37:24 +0000 (UTC) From: Jane Chen To: "freebsd-security@freebsd.org" Message-ID: <1307075529.1919818.1622461044660@mail.yahoo.com> Subject: =?UTF-8?B?6Iux5qC85ouJ5aeG6K+0?= MIME-Version: 1.0 References: <1307075529.1919818.1622461044660.ref@mail.yahoo.com> X-Mailer: WebService/1.1.18368 YMailNorrin X-Rspamd-Queue-Id: 4FttZL4kxMz4fQ2 X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.78 / 15.00]; FREEMAIL_FROM(0.00)[yahoo.com]; R_SPF_ALLOW(-0.20)[+ptr:yahoo.com]; HAS_ATTACHMENT(0.00)[]; DKIM_TRACE(0.00)[yahoo.com:+]; MIME_BASE64_TEXT(0.10)[]; DMARC_POLICY_ALLOW(-0.50)[yahoo.com,reject]; NEURAL_HAM_SHORT(-0.88)[-0.875]; FROM_EQ_ENVFROM(0.00)[]; RCVD_TLS_LAST(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; FREEMAIL_ENVFROM(0.00)[yahoo.com]; ASN(0.00)[asn:36646, ipnet:66.163.184.0/21, country:US]; RBL_DBL_DONT_QUERY_IPS(0.00)[66.163.186.147:from]; DWL_DNSWL_NONE(0.00)[yahoo.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[yahoo.com:s=s2048]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[multipart/mixed,multipart/alternative,text/plain]; RCPT_COUNT_ONE(0.00)[1]; SPAMHAUS_ZRD(0.00)[66.163.186.147:from:127.0.2.255]; RCVD_IN_DNSWL_NONE(0.00)[66.163.186.147:from]; TO_DN_EQ_ADDR_ALL(0.00)[]; RWL_MAILSPIKE_POSSIBLE(0.00)[66.163.186.147:from]; RCVD_COUNT_TWO(0.00)[2]; MAILMAN_DEST(0.00)[freebsd-security] X-Mailman-Approved-At: Mon, 31 May 2021 15:50:51 +0000 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 X-Content-Filtered-By: Mailman/MimeDel 2.1.34 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 31 May 2021 11:37:48 -0000 VHJ1dGggaW4g6ZmE4oaS5Lu244CC44CC44CCCjIwMjEtMDUtMzEKCuS4peWzu+WGrOWto+aatOmj jumbqui/nuaXpeadpeiireKYu+WHu+e+juWbve+8jOWvvOiHtOmBk+i3r+e7k+WGsOOAgeS6pOmA muWPl+mYu++8jOiHs+WwkTE15Lq65q275Lqh77yM6LaF6L+HMuS6v+S6uuWkhOS6juWkqeawlOeb uOWFs+eahOitpuaKpeS4i+OAguW+t+W3nuWPl+WIsOWGsuWHu+acgOS4pemHje+8jDQwMOS4h+aI t+WutuW6reWSjOS8geS4mumBreaWreeUteWGsuWHu+OAggoK4oCc6L+Z5piv5oiR5LuO5pyq6KeB 6L+H55qE5Zy65pmv44CC5aSn6YeP56C05Z2P44CC6L+Z5bCG5piv5LiA5Liq5ryr6ZW/55qE5oGi 5aSN6L+H56iL44CC4oCd5YyX5Y2h5bee5biD5Lym55Ge5YWL5Y6/77yIQnJ1bnN3aWNrIENvdW50 ee+8ieitpumVv+e6pue/sOKAp+iLseagvOaLieWnhu+8iEpvaG4gSW5ncmFt77yJ5Zyo5ZGo5LqM 5pep5Lqb5pe25YCZ5Y+s5byA55qE5paw6Ze75Y+R5biD5Lya5LiK6K+044CC6b6Z5Y236aOO5Zyo 5ZGo5LiA5Y2I5aSc5ZCO6KKt4pi75Ye75LqGR3Jpc3NldHRvd27plYfpmYTov5HlnLDljLrjgIIK Cu+8iOWkp+KWpOe6quKWqOWFg++8iQo= From owner-freebsd-security@freebsd.org Mon May 31 22:58:46 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id BE9A163212C for ; Mon, 31 May 2021 22:58:46 +0000 (UTC) (envelope-from gordon@tetlows.org) Received: from mail-ua1-x92d.google.com (mail-ua1-x92d.google.com [IPv6:2607:f8b0:4864:20::92d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Fv9h53MhTz3N6n for ; Mon, 31 May 2021 22:58:45 +0000 (UTC) (envelope-from gordon@tetlows.org) Received: by mail-ua1-x92d.google.com with SMTP id c10so346374uan.6 for ; Mon, 31 May 2021 15:58:45 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=3XEUHXz+9629NRaARG0JrZv2TpKYhlgYc93mkMLjRSk=; b=JyuWtI+ZkCJ0qxymeKq7kyxkVyigK8lupfsPJedZ5/xnJLvTFluDUbUhqtapmMKqhH yjJhoHXrCfYOG90I1CU0QCMCFBJ3wZS/WqEYHvyh3rN6R6ZpElGtG9WWngGcnz09tT2o 0WB7TfcJ6lxdCywbWW2OKHoHkoGxOlWFl/nJzcC7VPbUIIBK9CPL7ff7fTzcXvJtOxoJ BkA6wMDE58vawTY3JIvwTxmj+Ad4mk+R9FCPpQSzeohYwmHLowbVY41M7xFuBGi1pfQh 9n5Er9Gkr9JMnoaRhhycIXHpwr1zO6FG34z5a3jJQ/j0Oc5br+ln2op8iwBxiCIyeqDf auMw== X-Gm-Message-State: AOAM531uXflnOpZX8cbKNz0L1vxfb9dn0faHwHwAJHKd0/8DUUX1n9uW 13x2Gp3d3ZFA2yb2+xwWAECOjYOiW0mNNkTr/epH X-Google-Smtp-Source: ABdhPJxDHXYP0DtNEbs0tdf26EIrfL2bmiZMqR+AYZEDUdqjVLKiIQxYP9opRhlla2aOlZUi5t5MbVQ0L77ZKc8TYs4= X-Received: by 2002:ab0:3418:: with SMTP id z24mr11724844uap.130.1622501924460; Mon, 31 May 2021 15:58:44 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Gordon Tetlow Date: Mon, 31 May 2021 15:58:33 -0700 Message-ID: Subject: Re: sysrc bug To: Fas Xmut Cc: "freebsd-security@freebsd.org" Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4Fv9h53MhTz3N6n X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.93 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; DKIM_TRACE(0.00)[tetlows.org:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[tetlows.org,quarantine]; NEURAL_HAM_SHORT(-0.93)[-0.935]; FREEMAIL_TO(0.00)[protonmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RBL_DBL_DONT_QUERY_IPS(0.00)[2607:f8b0:4864:20::92d:from]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[tetlows.org:s=google]; FREEFALL_USER(0.00)[gordon]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-security@freebsd.org]; SPAMHAUS_ZRD(0.00)[2607:f8b0:4864:20::92d:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::92d:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-security] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 31 May 2021 22:58:46 -0000 This isn't a security bug as it requires root privilege to empty /etc/rc.conf. If you have root privilege, you can do that already. Also, changing the root shell is bad for many reasons and I'm not surprised that something doesn't work. That said, it certainly is less than desirable and should probably be more robust in case of this failure. I would recommend opening a bug for this and see if we can get someone to pick it up. Thanks for the report! Gordon Hat: security-officer On Sat, May 29, 2021 at 11:10 PM Fas Xmut via freebsd-security wrote: > > I don't know if it is a security bug or not. When I use sysrc today, the error operations emptied my /etc/rc.conf, that's a small disaster, because my /etc/rc.conf is updated day by day, but now, it is empty. > > First, change your default root shell to sh/ksh or their derived shell. (I have tested, csh will not trigger that bug). > > Second, backup /etc/rc.conf to any other place. > > Then do the following commands: > > ------------------------------------------------------------------------ > # sysrc something_enable="NO" > # sysrc something_enable="YES > > " > awk: newline in string YES > ... at source line 1 > something_enable: NO -> YES > ------------------------------------------------------------------------ > > Now see what is inside /etc/rc.conf ? Everything is empty! only one thing in it: > > ------------------------------------------------------------------------ > something_enable="YES > " > ------------------------------------------------------------------------ > > Sent with [ProtonMail](https://protonmail.com) Secure Email. > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"