Date: 17 Jan 1997 15:08:34 -0500 From: Jay Sachs <sachs@interactive.net> To: Will Mitayai Keeso Rowe <mitayai@dreaming.org> Cc: questions@FreeBSD.org Subject: Re: vapour security check output Message-ID: <87u3og6p4t.fsf@luddite.org> In-Reply-To: Will Mitayai Keeso Rowe's message of Fri, 17 Jan 1997 02:10:28 -0500 (EST) References: <Pine.BSI.3.95.970117020615.1500C-100000@dreamlabs.dreaming.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> An annoying thing about security check is that if there are ' or spaces > in file names or directories (i deal with MAC people... sigh) you get > lots of error messages. The one i've included is from a system that only > has a few. I have 154 at last count, so i didn't want to overload the > net with my example. :) Yeah, the 'find' in /etc/security uses the -X flag since it pipes into xargs after the sort. You could substitute the following for the offending while-loop: while test $# -ge 1; do mount=$1 shift find $mount -xdev -type f \ \( -perm -u+x -or -perm -g+x -or -perm -o+x \) \ \( -perm -u+s -or -perm -g+s \) -exec ls -lgTd {} \; | sort +9 done > $TMP This maintains the same sort grouping; the downside is that the sort depends explicitly on the # of fields output by the ls command -- if that number changes, the sort will break. -jay > > Anyone know of a nice way of fixing this, and if so do you think it's > something that could be/should be included in the standard distribution > (if it already isn't since i last did a make world recently)? > > -Mit > On Fri, 17 Jan 1997, BOFH wrote: > > > checking setuid files and devices: > > find: /usr/local/pkg/may/d'adamo: illegal path > > find: /usr/local/pkg/may/d'adamo/dadal1.txt: illegal path > > find: /usr/home/batsy/Req/secure-web/put "httpd" here: illegal path > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87u3og6p4t.fsf>