[4726] in bugtraq
Re: Netscape Admin Servers /tmp/deamonstat
daemon@ATHENA.MIT.EDU (Joe Zbiciak)
Thu Jun 19 12:00:22 1997
Date: Tue, 17 Jun 1997 14:15:45 -0500
Reply-To: Joe Zbiciak <jzbiciak@DALDD.SC.TI.COM>
From: Joe Zbiciak <jzbiciak@DALDD.SC.TI.COM>
X-To: matt@PLATO.WEST.SUN.COM
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <199706171609.JAA07588@plato.West.Sun.COM> from "Matthew
Archibald" at Jun 17, 97 09:09:24 am
'Matthew Archibald' said previously:
|
| Uhh... Yeah??
|
| -rw-r--r-- 1 root other 14428 Jun 13 08:17 daemonstat.10.0.4.10.80
| -rw-r--r-- 1 root other 14428 Jun 13 08:21 daemonstat.129.153.6.177.80
| -rw-r--r-- 1 root other 3676 Jun 17 09:07 daemonstat.any.30437
| root:
|
|
| Must be something else changing the mode to 666 since my Fastrack
| admin server is out of the box with no mods.
|
It could be an unset UMASK...
On a different note, when are these files created? (ie. when do you
fire up these servers?) If you do it from an rc file then you should
be safe; otherwise if you do it at an arbitrary time after boot, is
there the possibility of someone beating you to tmp and making links
all over? (ie. ln -s /etc/shadow /tmp/daemonstat.any.80 or whatever)
Regards,
--Joe
--
+--------------Joseph Zbiciak--------------+
|- - - - jzbiciak@daldd.sc.ti.com - - - - -|
| - - http://www.primenet.com/~im14u2c - - | Not your average "Joe."
|- - - - Texas Instruments, Dallas - - - -|
+-------#include <std_disclaimer.h>--------+
