[11040] in bugtraq
Solaris 2.6/7 NTP permissions problem
daemon@ATHENA.MIT.EDU (john_smith@RD.QMS.COM)
Fri Jul 16 16:32:09 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Content-Description: "cc:Mail Note Part"
Message-Id: <9907149319.AA931969217@rd.qms.com>
Date: Wed, 14 Jul 1999 11:21:13 -0500
Reply-To: john_smith@RD.QMS.COM
From: john_smith@RD.QMS.COM
X-To: bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM
Hi All!
I reported this bug to Sun approx. 3 weeks ago. Haven't gotten a
response yet so I'm going ahead and releasing it.
Problem:
I've noticed that the XNTP daemon on Solaris 2.6 and 7 creates
its drift file (default=/etc/inet/ntp.drift) world-writable (666).
Even changing the permissions to something sane the permissions
eventually get set back to 666 (not sure if this is at daemon restart,
update of the drift file or both).
Work-around:
Simply add a umask command to the beginning of the XNTP startup
script (/etc/init.d/xntpd).
John Smith
QMS, Inc.
