From owner-freebsd-security Tue Jul 2 17:59:19 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9324E37B400 for ; Tue, 2 Jul 2002 17:59:16 -0700 (PDT) Received: from hotmail.com (f196.law11.hotmail.com [64.4.17.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5D9F743E4A for ; Tue, 2 Jul 2002 17:59:16 -0700 (PDT) (envelope-from kimokasawa@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Tue, 2 Jul 2002 17:59:16 -0700 Received: from 68.49.49.165 by lw11fd.law11.hotmail.msn.com with HTTP; Wed, 03 Jul 2002 00:59:15 GMT X-Originating-IP: [68.49.49.165] From: "Kim Okasawa" To: freebsd-security@FreeBSD.ORG Subject: Any security issues with root's cron job? Date: Wed, 03 Jul 2002 09:59:15 +0900 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 03 Jul 2002 00:59:16.0152 (UTC) FILETIME=[DA9E7B80:01C2222C] Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dear all, I want to set up a crob job to run a script (Perl or shell). The script will be read/write/exec by root only (i.e. 700 or -rwx------). It will run /sbin/ipfw periodically to change rules according to need. Can anyone think of any potential security risks to such practice? Any suggestions and comments are greatly appreciated. Thank you! Best Regards, Kim Okasawa _________________________________________________________________ Join the world’s largest e-mail service with MSN Hotmail. http://www.hotmail.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message