Date: 17 Jan 1997 15:08:34 -0500 From: Jay Sachs <sachs@interactive.net> To: Will Mitayai Keeso Rowe <mitayai@dreaming.org> Cc: questions@FreeBSD.org Subject: Re: vapour security check output Message-ID: <87u3og6p4t.fsf@luddite.org> In-Reply-To: Will Mitayai Keeso Rowe's message of Fri, 17 Jan 1997 02:10:28 -0500 (EST) References: <Pine.BSI.3.95.970117020615.1500C-100000@dreamlabs.dreaming.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> An annoying thing about security check is that if there are ' or spaces
> in file names or directories (i deal with MAC people... sigh) you get
> lots of error messages. The one i've included is from a system that only
> has a few. I have 154 at last count, so i didn't want to overload the
> net with my example. :)
Yeah, the 'find' in /etc/security uses the -X flag since it pipes into
xargs after the sort. You could substitute the following for the
offending while-loop:
while test $# -ge 1; do
mount=$1
shift
find $mount -xdev -type f \
\( -perm -u+x -or -perm -g+x -or -perm -o+x \) \
\( -perm -u+s -or -perm -g+s \) -exec ls -lgTd {} \; | sort +9
done > $TMP
This maintains the same sort grouping; the downside is that the sort
depends explicitly on the # of fields output by the ls command -- if
that number changes, the sort will break.
-jay
>
> Anyone know of a nice way of fixing this, and if so do you think it's
> something that could be/should be included in the standard distribution
> (if it already isn't since i last did a make world recently)?
>
> -Mit
> On Fri, 17 Jan 1997, BOFH wrote:
>
> > checking setuid files and devices:
> > find: /usr/local/pkg/may/d'adamo: illegal path
> > find: /usr/local/pkg/may/d'adamo/dadal1.txt: illegal path
> > find: /usr/home/batsy/Req/secure-web/put "httpd" here: illegal path
> >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87u3og6p4t.fsf>