[3112] in bugtraq
Re: wabi 2.2 sol 2.x and more, SUN, The insecure network is the ,
daemon@ATHENA.MIT.EDU (Greg Woods)
Mon Aug 12 12:18:48 1996
Date: Mon, 12 Aug 1996 08:07:30 MDT
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: Greg Woods <woods@ucar.edu>
X-To: Heiko.Herold@dei.unipd.it
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <9608101251.AA10509@arianna.dei.unipd.it>; from "Herold Heiko" at
Aug 10, 96 2:51 pm
> Anyone else with good or bad permissions ?
On two newly-installed Solaris 2.5.1 systems, /etc is group-writeable
by the "sys" group, which includes "bin", "sys" and "adm" user entries.
This makes it relatively easy for anyone who can gain access to one
of those accounts to break root.
Anybody know why it is shipped this way? Is there something that
will break if I just change the permissions to root-write-only?
--Greg
