From owner-freebsd-bugs  Tue May 21 01:20:07 1996
Return-Path: owner-bugs
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id BAA07506
          for bugs-outgoing; Tue, 21 May 1996 01:20:07 -0700 (PDT)
Received: (from gnats@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id BAA07480;
          Tue, 21 May 1996 01:20:04 -0700 (PDT)
Resent-Date: Tue, 21 May 1996 01:20:04 -0700 (PDT)
Resent-Message-Id: <199605210820.BAA07480@freefall.freebsd.org>
Resent-From: gnats (GNATS Management)
Resent-To: freebsd-bugs
Resent-Reply-To: FreeBSD-gnats@freefall.FreeBSD.org,
        W.Belgers@nl.cis.philips.com
Received: from relay.philips.nl (ns.philips.nl [130.144.65.1])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id BAA07062
          for <FreeBSD-gnats-submit@freebsd.org>; Tue, 21 May 1996 01:13:06 -0700 (PDT)
Received: (from smap@localhost) by relay.philips.nl (8.6.9/8.6.9-950414) id KAA19557 for <FreeBSD-gnats-submit@freebsd.org>; Tue, 21 May 1996 10:12:27 +0200
Received: from unknown(192.26.173.32) by ns.philips.nl via smap (V1.3+ESMTP) with ESMTP
	id sma019409; Tue May 21 10:11:29 1996
Received: from giga.lss.cp.philips.com (giga.lss.cp.philips.com [130.144.199.31]) by smtp.nl.cis.philips.com (8.6.10/8.6.10-0.9z-02May95) with SMTP id KAA26840 for <FreeBSD-gnats-submit@freebsd.org>; Tue, 21 May 1996 10:13:18 +0200
Received: by giga.lss.cp.philips.com (?/?)
    id KAA00792; Tue, 21 May 1996 10:11:28 +0200 (MET DST)
Message-Id: <199605210811.KAA00792@giga.lss.cp.philips.com>
Date: Tue, 21 May 1996 10:11:28 +0200 (MET DST)
From: W.Belgers@nl.cis.philips.com (Walter Belgers)
Reply-To: W.Belgers@nl.cis.philips.com
To: FreeBSD-gnats-submit@freebsd.org
X-Send-Pr-Version: 3.2
Subject: bin/1226: permissions binaries directories
Sender: owner-bugs@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk


>Number:         1226
>Category:       bin
>Synopsis:       binaries directories owned by bin, not root
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Tue May 21 01:20:02 PDT 1996
>Last-Modified:
>Originator:     Walter Belgers
>Organization:
Ir. W.H.B. Belgers                     work: W.Belgers@nl.cis.philips.com
Origin Corporate Internet Services     home:               walter@giga.nl
Bldg VN 513, PO Box 218, 5600MD Ehv    phone/fax: (+31 40 27) 82753/83962
>Release:        FreeBSD 2.1-STABLE i386
>Environment:
>Description:

The directories /bin /sbin /usr/bin /usr/sbin /usr/local/bin
/usr/local/sbin are all owned by bin, group bin. This makes it possible
for anybody with bin privileges to become root easily. It is best to
make them owned root.wheel.

>How-To-Repeat:
>Fix:
	
chown root.wheel /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin
>Audit-Trail:
>Unformatted:
Walter Belgers