Date: Wed, 04 Oct 2000 11:32:43 -0600 From: Warner Losh <imp@village.org> To: "John" <john@digitalinet.com> Cc: "Mike Tancsa" <mike@sentex.net>, freebsd-security@FreeBSD.ORG Subject: Re: Fwd: BSD chpass Message-ID: <200010041732.LAA37782@harmony.village.org> In-Reply-To: Your message of "Wed, 04 Oct 2000 13:15:55 EDT." <008001c02e26$c20c6100$03030303@dns> References: <008001c02e26$c20c6100$03030303@dns> <4.2.2.20001004011210.035225e0@mail.sentex.net> <200010041719.LAA37604@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <008001c02e26$c20c6100$03030303@dns> "John" writes: : chmod a-s /usr/bin/chpass : or chmod 700 /usr/bin/chpass : : Solution or not ? I believe that will work out just fine. workaround. It will protect you from the exploit, but much functionality that these commands provide will be lost. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010041732.LAA37782>