[7359] in bugtraq
Re: JetAdmin software
daemon@ATHENA.MIT.EDU (James Clough)
Wed Jul 22 18:48:43 1998
Date: Wed, 22 Jul 1998 11:01:21 -0600
Reply-To: James Clough <clough@BOI.HP.COM>
From: James Clough <clough@BOI.HP.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.LNX.3.96.980715151833.14083A-100000@happy.digitaldune.net>
This security defect was brought to our attention and
fixed a year or so ago. You can download the newest
version of JetAdmin for UNIX from www.hp.com.
James
--
clough@boi.hp.com
> a few days ago i was wondering around on a solaris machine,
> and noticed
> /tmp/jetadmin.log, root owned and mode 666, so naturally i
> symlinked it to
> /.rhosts, and returned the next day to find a mode 666 /.rhosts..
> the JetAdmin version seems to be (Rev. D.01.09), maybe i just have an
> older version of jetadmin, if anyone could verify and or
> check some other
> platforms for the problem, i would appreciate it.
