From owner-freebsd-security Thu Jun 27 22:41:46 1996 Return-Path: owner-security Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id WAA08931 for security-outgoing; Thu, 27 Jun 1996 22:41:46 -0700 (PDT) Received: from mexico.brainstorm.eu.org (root@mexico.brainstorm.eu.org [193.56.58.253]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id WAA08918 for ; Thu, 27 Jun 1996 22:41:43 -0700 (PDT) Received: from brasil.brainstorm.eu.org (brasil.brainstorm.eu.org [193.56.58.33]) by mexico.brainstorm.eu.org (8.7.5/8.7.3) with ESMTP id HAA05517; Fri, 28 Jun 1996 07:41:28 +0200 Received: (from uucp@localhost) by brasil.brainstorm.eu.org (8.6.12/8.6.12) with UUCP id HAA07832; Fri, 28 Jun 1996 07:41:05 +0200 Received: (from roberto@localhost) by keltia.freenix.fr (8.8.Alpha.5/keltia-uucp-2.8) id BAA22624; Fri, 28 Jun 1996 01:37:20 +0200 (MET DST) From: Ollivier Robert Message-Id: <199606272337.BAA22624@keltia.freenix.fr> Subject: Re: CERT Advisory CA-96.12 - Vulnerability in suidperl (fwd) To: root@edmweb.com (Steve Reid) Date: Fri, 28 Jun 1996 01:37:20 +0200 (MET DST) Cc: guido@gvr.win.tue.nl, freebsd-security@FreeBSD.ORG In-Reply-To: from Steve Reid at "Jun 27, 96 04:02:10 pm" X-Operating-System: FreeBSD 2.2-CURRENT ctm#2111 X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk It seems that Steve Reid said: > I'm using FreeBSD 2.1.0-RELEASE. Is it sufficent to remove the suid bit > from the suidperl binaries? Or do I also have to search for scripts with > the suid bit? Removing the setuid of suidperl is enough. Setuid scripts are not valid and the setuid bit is there only for suidperl. -- Ollivier ROBERT -=- The daemon is FREE! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 2.2-CURRENT #11: Thu Jun 13 11:01:47 MET DST 1996